Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137342e302f32342d3234203d3e203435373235.roa
File: 3230322e3135302e3137342e302f32342d3234203d3e203435373235.roa (raw, json)
Hash identifier: hcvJn/mXP+ts6T6N284tp49a4sdq1Ct3k6zK01zQyvo=
Subject key identifier: 19:8A:6A:DD:4C:B8:B0:EC:D6:07:8C:76:EC:D0:76:46:60:BB:B2:F7
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 322E74E526ED861DC7AB8CF36465A0994CD5E11A
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137342e302f32342d3234203d3e203435373235.roa
Signing time: Tue 25 Jul 2023 09:00:01 +0000
ROA not before: Tue 25 Jul 2023 08:55:01 +0000
ROA not after: Tue 23 Jul 2024 09:00:01 +0000
asID: 45725
IP address blocks: 202.150.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:2e:74:e5:26:ed:86:1d:c7:ab:8c:f3:64:65:a0:99:4c:d5:e1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Jul 25 08:55:01 2023 GMT
Not After : Jul 23 09:00:01 2024 GMT
Subject: CN=198A6ADD4CB8B0ECD6078C76ECD0764660BBB2F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:30:e2:95:d6:0d:85:b4:2d:0a:e5:fb:18:b2:
e1:08:2e:b3:fd:ce:7a:0a:d2:ad:4c:80:3c:0c:74:
a5:bb:5d:2e:4e:84:d9:3d:e6:f5:c2:83:d7:52:fd:
fb:bf:b8:8d:6f:a3:19:73:33:61:28:cb:c7:66:ab:
cb:1b:b1:b6:65:0a:69:ec:1c:18:c0:36:b9:3f:1e:
13:b0:01:fc:2f:01:9a:38:53:5e:2c:ae:7e:bd:9d:
86:02:a1:f4:7c:8d:01:2d:71:53:25:4a:81:90:99:
9e:ec:62:fe:70:2c:09:96:ff:aa:97:43:53:51:40:
6d:99:86:c4:d5:39:e7:06:fc:8f:4b:a3:90:f8:8a:
f2:1e:ad:cc:43:67:da:cd:79:d3:9f:3a:04:c1:1b:
69:9b:ee:37:71:09:97:0d:e5:d4:c2:38:dc:78:b9:
13:e0:5e:ab:4b:46:0d:96:3a:02:49:09:a4:37:0a:
9b:bb:0d:53:b3:8c:a2:4b:94:f7:d3:f7:87:f3:6f:
be:e1:dd:08:b1:a7:a4:02:e1:07:18:72:19:bc:65:
62:0b:95:b8:64:d3:04:ed:44:87:f3:a8:03:dd:f5:
aa:ad:c9:66:99:c9:3c:be:2b:66:5b:29:50:21:76:
e9:72:c0:2e:ba:38:9a:fd:ef:6c:2f:d5:80:0c:72:
fd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8A:6A:DD:4C:B8:B0:EC:D6:07:8C:76:EC:D0:76:46:60:BB:B2:F7
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137342e302f32342d3234203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.150.174.0/24
Signature Algorithm: sha256WithRSAEncryption
04:2d:04:31:f4:dd:83:ce:cb:5f:9d:20:4f:a9:56:d1:ca:73:
df:0b:15:88:fb:9d:40:e4:75:b6:f8:40:41:37:6e:51:9c:d2:
01:de:b3:95:f2:51:04:79:2d:90:20:c5:50:4f:09:0e:84:16:
aa:fa:ee:25:05:cd:72:bb:8e:a8:65:14:18:07:4b:d8:24:93:
0c:cb:4c:ed:c6:3a:43:0c:ff:a5:61:26:fc:60:cb:55:d0:2c:
27:35:db:12:4c:73:32:f6:94:86:a2:78:16:ab:5c:44:26:87:
e4:7b:23:68:95:5c:d1:68:a4:9a:9a:51:60:6a:f9:5f:80:bb:
a7:24:ba:02:67:56:a6:b6:c6:db:28:d8:34:e0:5b:ae:7e:b0:
81:f5:8c:2b:bb:36:a2:5b:b8:8d:ea:f9:bc:6d:9e:7c:6e:10:
ac:12:ff:43:c7:e5:36:31:54:44:28:21:c4:f4:63:53:22:ed:
52:6a:57:1b:ce:cc:2a:0d:c2:e1:ef:e4:bd:da:e3:fa:89:29:
55:d0:0e:76:77:87:15:f5:c2:f9:33:96:de:44:05:d8:cb:dc:
1c:20:e4:12:64:e6:9a:c9:f6:97:ad:22:20:2c:6e:bc:31:25:
b5:9e:1f:1c:7a:60:c3:cd:01:0d:ea:1a:a9:bd:19:72:09:59:
da:06:33:77
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUMi505Sbthh3Hq4zzZGWgmUzV4RowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy
NzQ1ODEwMzAeFw0yMzA3MjUwODU1MDFaFw0yNDA3MjMwOTAwMDFaMDMxMTAvBgNV
BAMTKDE5OEE2QURENENCOEIwRUNENjA3OEM3NkVDRDA3NjQ2NjBCQkIyRjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAMOKV1g2FtC0K5fsYsuEILrP9
znoK0q1MgDwMdKW7XS5OhNk95vXCg9dS/fu/uI1voxlzM2Eoy8dmq8sbsbZlCmns
HBjANrk/HhOwAfwvAZo4U14srn69nYYCofR8jQEtcVMlSoGQmZ7sYv5wLAmW/6qX
Q1NRQG2ZhsTVOecG/I9Lo5D4ivIercxDZ9rNedOfOgTBG2mb7jdxCZcN5dTCONx4
uRPgXqtLRg2WOgJJCaQ3Cpu7DVOzjKJLlPfT94fzb77h3Qixp6QC4QcYchm8ZWIL
lbhk0wTtRIfzqAPd9aqtyWaZyTy+K2ZbKVAhdulywC66OJr972wv1YAMcv1BAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUGYpq3Uy4sOzWB4x27NB2RmC7svcwHwYDVR0j
BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND
NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1
ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h
NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM3MzQyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypauMA0GCSqG
SIb3DQEBCwUAA4IBAQAELQQx9N2DzstfnSBPqVbRynPfCxWI+51A5HW2+EBBN25R
nNIB3rOV8lEEeS2QIMVQTwkOhBaq+u4lBc1yu46oZRQYB0vYJJMMy0ztxjpDDP+l
YSb8YMtV0CwnNdsSTHMy9pSGongWq1xEJofkeyNolVzRaKSamlFgavlfgLunJLoC
Z1amtsbbKNg04FuufrCB9YwruzaiW7iN6vm8bZ58bhCsEv9Dx+U2MVREKCHE9GNT
Iu1SalcbzswqDcLh7+S92uP6iSlV0A52d4cV9cL5M5beRAXYy9wcIOQSZOaayfaX
rSIgLG68MSW1nh8cemDDzQEN6hqpvRlyCVnaBjN3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org