Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32332d3233203d3e20313532303332.roa
File: 3230322e34372e3138342e302f32332d3233203d3e20313532303332.roa (raw, json)
Hash identifier: LluiPlN8iJVYsoCg1sXh6AMHVaWs0xm5ZC2tjtDTU2g=
Subject key identifier: 85:ED:A3:66:5E:E2:A9:BB:B3:18:7C:DE:29:CC:1D:D2:4F:90:F5:EC
Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8
Certificate serial: 2A893C3DC011102C36F6BE49F709146C39BD56CB
Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32332d3233203d3e20313532303332.roa
Signing time: Tue 01 Oct 2024 00:53:19 +0000
ROA not before: Tue 01 Oct 2024 00:48:19 +0000
ROA not after: Tue 30 Sep 2025 00:53:19 +0000
asID: 152032
IP address blocks: 202.47.184.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 20 Nov 2024 23:44:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:89:3c:3d:c0:11:10:2c:36:f6:be:49:f7:09:14:6c:39:bd:56:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8
Validity
Not Before: Oct 1 00:48:19 2024 GMT
Not After : Sep 30 00:53:19 2025 GMT
Subject: CN=85EDA3665EE2A9BBB3187CDE29CC1DD24F90F5EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f2:32:3c:ed:9f:a0:a2:39:8c:64:2a:9b:e7:
7f:5d:61:0b:64:7b:aa:8e:39:41:be:a3:4a:95:6b:
54:3f:48:4e:ba:76:af:f2:c5:ba:7a:92:f2:ef:fc:
96:12:a1:85:a5:dd:85:13:45:c0:04:ef:05:79:b9:
85:d3:87:ee:5b:f7:eb:7c:55:85:0a:20:18:9b:e9:
8d:6d:a3:21:75:39:35:ac:15:be:f0:cd:84:0b:07:
ec:58:a2:de:87:61:59:6d:50:27:4f:86:ea:b5:b2:
cc:e9:51:52:7d:ef:9b:9f:34:db:8b:b4:a8:4a:fb:
d3:23:08:c3:29:61:fb:ea:2f:74:bb:3b:94:8e:08:
d0:fb:ba:5b:3e:42:b0:8c:70:9a:5e:33:fd:94:55:
11:f2:f7:34:d0:2a:52:03:60:19:6d:2e:74:17:c0:
11:9d:95:5f:04:58:6c:e2:6e:72:d6:af:5e:87:48:
5e:2b:14:ad:57:20:4a:02:6d:f1:44:35:3e:bf:be:
7c:66:df:2d:6e:db:a8:4c:7d:36:74:c5:c8:81:93:
fe:ef:4a:bb:dc:42:e5:30:3b:81:76:42:fc:8b:70:
6c:58:b2:d6:12:aa:95:6e:02:d6:4b:52:96:e0:b6:
45:60:22:3a:6e:b3:ab:14:8a:a0:58:03:9b:b2:bb:
c4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:ED:A3:66:5E:E2:A9:BB:B3:18:7C:DE:29:CC:1D:D2:4F:90:F5:EC
X509v3 Authority Key Identifier:
keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32332d3233203d3e20313532303332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.47.184.0/23
Signature Algorithm: sha256WithRSAEncryption
38:a3:2d:8b:0f:75:41:db:77:20:37:2c:4e:f0:1e:11:6b:b4:
52:12:08:9a:16:bb:1b:fe:b4:26:b0:e8:c3:63:e2:16:ff:91:
30:d8:bb:b2:48:26:8b:68:e4:03:5a:fd:23:50:34:aa:94:70:
c8:57:ed:6f:87:b7:37:ee:48:18:ea:24:c4:ea:fc:24:94:d5:
bb:d0:5e:ed:ba:2f:65:2f:11:43:83:aa:96:40:4c:4f:72:5e:
6d:a9:d1:9b:0a:b0:dd:77:ad:f8:80:74:0e:bc:68:37:58:4a:
7a:bf:e9:b0:1b:5d:e7:b4:48:37:11:a3:1c:b5:3c:eb:3f:4c:
7e:fc:8b:0c:b8:b8:d6:3f:c9:4b:d1:9e:1c:49:35:30:ee:6a:
c8:69:94:49:21:de:00:eb:1f:20:5d:54:a0:d2:d2:f5:ae:72:
98:f0:3e:9e:1c:1b:30:df:a3:98:44:b3:3d:32:2f:32:05:fd:
29:8b:bf:18:aa:15:b7:04:19:6a:07:40:be:3c:70:f1:00:8a:
18:8f:d6:37:cf:6a:a1:61:4c:eb:d3:3d:d4:91:00:9b:1a:29:
16:58:d7:a6:35:7f:b5:ba:86:be:f3:13:a3:fa:fc:d3:40:10:
bd:aa:34:1c:38:7a:49:65:23:cf:ae:a1:04:28:6a:22:7c:e1:
95:b8:29:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 00:24:42 2024 by rpki-client on console-fra.rpki-client.org