Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135332e302f32342d3234203d3e203435373235.roa
File: 34332e3233302e3135332e302f32342d3234203d3e203435373235.roa (raw, json)
Hash identifier: 6ZXLiLCcZUpKna/uW+GV+XG7z36DK/K6fm21zmkMOpw=
Subject key identifier: C3:42:9F:CC:95:71:53:02:C3:64:D3:5D:6C:EF:96:FF:1D:39:35:2D
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 1907437340E1EE332E0C5B6B10E7CA2FC5B5794E
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135332e302f32342d3234203d3e203435373235.roa
Signing time: Tue 25 Jul 2023 08:00:01 +0000
ROA not before: Tue 25 Jul 2023 07:55:01 +0000
ROA not after: Tue 23 Jul 2024 08:00:01 +0000
asID: 45725
IP address blocks: 43.230.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:07:43:73:40:e1:ee:33:2e:0c:5b:6b:10:e7:ca:2f:c5:b5:79:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Jul 25 07:55:01 2023 GMT
Not After : Jul 23 08:00:01 2024 GMT
Subject: CN=C3429FCC95715302C364D35D6CEF96FF1D39352D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:75:8e:8e:f0:ec:12:dd:8e:8e:0b:0c:e8:36:
78:d6:74:da:ad:fa:29:b6:0c:d3:b5:0a:c2:5a:2e:
12:26:7f:ab:4e:4d:34:21:1c:24:3f:3a:05:5f:92:
5d:43:1b:54:da:ba:ce:c0:cf:a4:a2:b2:89:5b:35:
27:3f:4b:b3:3f:54:df:6c:cd:c3:0a:9a:88:71:61:
86:d0:00:7e:2e:90:9a:cc:ec:c4:c3:14:36:d0:e7:
e8:d1:a6:4f:46:2f:11:e8:ae:ee:14:3b:f0:4e:92:
98:b2:8a:df:d5:0e:87:e8:00:1f:7a:e7:2f:ff:bf:
75:7f:2c:ce:00:21:79:44:97:38:e6:a3:9e:93:25:
44:6f:e5:14:a4:80:b5:7f:dc:6c:3e:63:72:f2:79:
f8:bf:b4:e8:72:0f:5b:85:8e:f8:df:1d:d4:ca:d5:
ac:fa:69:f8:98:84:cb:94:d4:16:5d:62:45:42:48:
02:5d:44:a2:45:ae:94:1a:7e:7c:97:63:09:42:32:
ef:b7:13:2c:0a:64:bc:ef:43:55:5c:4c:bf:0a:82:
39:20:46:b2:03:2e:46:4b:94:a7:0c:10:26:ec:37:
47:e6:29:80:aa:49:10:ea:df:00:e4:d5:98:2a:40:
26:a6:39:bc:20:93:aa:33:fb:32:fb:31:d0:05:23:
11:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:42:9F:CC:95:71:53:02:C3:64:D3:5D:6C:EF:96:FF:1D:39:35:2D
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135332e302f32342d3234203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.230.153.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:b0:0b:05:ce:df:41:4c:1d:41:8d:25:c7:05:6d:b0:23:a5:
1d:38:91:29:df:4e:bd:51:c5:73:69:04:7d:76:05:a0:7b:1a:
e0:33:69:4c:03:b9:f2:f8:3c:60:7c:cb:7e:61:e5:3e:ae:b8:
31:c2:c8:8d:d8:77:d7:9b:09:64:32:89:ae:c7:9c:48:e6:6d:
67:8b:e0:a3:ec:81:50:03:b9:b2:bb:8e:9a:f8:eb:b1:c5:5a:
dd:e1:ac:0a:ff:5f:a1:a8:6c:73:c7:c4:45:06:69:64:83:c9:
cf:cf:78:dc:9c:40:76:32:fd:5f:0d:5e:af:4e:af:e3:3a:95:
6b:a2:91:72:ae:6e:94:31:15:0d:7b:f6:53:f6:05:06:71:04:
89:cd:69:ef:6e:10:f9:92:7f:61:c0:c9:ae:4f:db:6e:ee:1e:
80:cc:74:67:9c:ab:ae:e0:c4:cc:2a:eb:40:1c:4b:1b:4e:68:
d0:62:ee:19:f7:93:dc:6e:b1:cb:db:c7:5b:5f:61:5b:52:e0:
2a:cf:73:29:16:a7:71:fa:26:81:9a:56:d3:93:1d:75:4e:35:
dd:91:12:7e:e4:32:c3:02:53:a6:a1:d0:0f:df:c2:d4:0e:f5:
34:d2:fa:41:eb:65:d6:07:c5:5d:11:c0:e2:9b:4d:c1:61:a8:
87:e9:37:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org