Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32332d3233203d3e203435373235.roa
File: 34332e3233302e3135322e302f32332d3233203d3e203435373235.roa (raw, json)
Hash identifier: aDUORgzknWLoJlKPsDpRo8iHtOLirR1Cc1phfzCbzWg=
Subject key identifier: 23:49:A1:C3:31:52:18:95:70:70:CA:38:F8:68:A3:C7:DB:4F:B8:20
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 649B8CD1BE7B9D706D7FEC21143855F898474E9E
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32332d3233203d3e203435373235.roa
Signing time: Wed 25 Oct 2023 08:00:01 +0000
ROA not before: Wed 25 Oct 2023 07:55:01 +0000
ROA not after: Wed 23 Oct 2024 08:00:01 +0000
asID: 45725
IP address blocks: 43.230.152.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:9b:8c:d1:be:7b:9d:70:6d:7f:ec:21:14:38:55:f8:98:47:4e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Oct 25 07:55:01 2023 GMT
Not After : Oct 23 08:00:01 2024 GMT
Subject: CN=2349A1C3315218957070CA38F868A3C7DB4FB820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:5c:ac:dd:fc:e9:1f:21:2e:d5:2c:60:22:
61:38:74:6f:22:16:07:31:08:96:71:2c:a8:f4:64:
f9:70:89:0b:dc:7f:1b:d4:6e:2f:7c:90:e2:ad:99:
5e:5c:e6:0f:91:b5:3c:5b:8d:d6:e3:0b:cb:39:32:
59:06:71:92:d9:36:92:a0:b3:8b:41:dc:3e:b9:f7:
ee:50:bb:96:fe:c5:f3:0c:8c:b1:b6:bc:69:da:8f:
aa:6a:b0:1a:c7:d3:13:2f:3f:40:d0:d6:fa:22:57:
25:8d:ed:70:bb:59:42:59:6c:0b:e4:9d:00:e7:e8:
13:73:17:89:7c:fd:ab:c7:55:8c:89:1a:62:6f:f4:
3f:13:a0:39:71:f6:d6:18:be:dc:32:0b:e9:19:ac:
dc:8b:2f:9f:be:3f:20:08:de:fd:d0:95:08:df:7d:
00:b3:ea:43:67:10:b5:f6:29:66:35:f8:b5:23:68:
bc:dc:8c:90:59:a6:47:aa:8e:a5:c0:06:bb:4a:fe:
25:66:28:be:67:60:77:e3:cb:07:24:a4:6e:b5:be:
69:d3:ec:75:66:da:d1:cc:31:ba:d0:80:d2:1b:7a:
0b:18:41:67:5a:f1:fd:8a:e1:64:7e:88:b7:79:65:
67:5d:d7:bf:28:a4:59:cc:69:38:02:2b:b2:91:9e:
2a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:49:A1:C3:31:52:18:95:70:70:CA:38:F8:68:A3:C7:DB:4F:B8:20
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32332d3233203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.230.152.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:5b:db:59:aa:f0:fd:30:9f:04:dd:39:9e:94:12:13:f2:a2:
f6:72:49:64:ba:2f:15:30:70:c6:a5:0a:fc:e7:a0:bd:ee:17:
c9:31:e3:c3:37:4c:45:4d:92:a0:20:26:59:9b:a5:0f:b4:36:
69:7c:a5:01:fa:7d:67:5d:da:9c:26:e6:2d:7c:df:a7:38:2d:
fa:8e:5e:a0:08:73:2a:4a:9f:64:fc:98:6f:af:c5:77:ba:14:
38:9e:1d:fb:de:a5:c6:f9:64:93:4f:7c:d8:5c:eb:0c:6b:55:
ae:ab:9f:9d:30:3c:03:fe:70:90:ae:35:69:26:c4:2e:ce:f3:
dc:06:4b:4c:fa:d4:3f:a9:7f:ca:57:f0:99:44:89:8f:54:3a:
96:8b:67:b5:52:32:5e:8e:b5:3b:c8:3e:f3:6e:ac:1f:d0:82:
d6:88:01:d9:e1:f5:63:6a:ce:5c:ad:76:97:0c:6f:f5:37:fd:
8c:de:f5:82:90:cb:62:1e:2c:40:8a:93:f6:64:e4:13:6b:e2:
e8:93:bc:f6:a8:f9:47:c4:49:e1:19:53:fe:ea:44:b8:18:4b:
e0:d7:75:d9:51:63:11:6a:aa:75:ca:2f:a9:0d:eb:fc:2e:5e:
39:61:b9:ed:ac:a8:e8:1a:3f:59:c4:53:81:1d:dc:81:5f:6c:
7a:a4:55:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org