Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa
File: 3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa (raw, json)
Hash identifier: 5bdR+enYCT9WlUC6j10EFFNMDDYMu18c/3/RfNYfeG4=
Subject key identifier: 5D:40:4D:D9:FF:3C:8A:C3:B9:EA:01:F6:93:11:66:3D:18:69:75:60
Certificate issuer: /CN=ABF793B534686EC2D5820CF153E43AAEF088BE41
Certificate serial: 5931F0088012A23707C2B6D205A2948F1DF0569C
Authority key identifier: AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa
Signing time: Sat 31 May 2025 13:00:00 +0000
ROA not before: Sat 31 May 2025 12:55:00 +0000
ROA not after: Sat 30 May 2026 13:00:00 +0000
asID: 141581
IP address blocks: 157.66.132.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 05 Jun 2025 20:32:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:31:f0:08:80:12:a2:37:07:c2:b6:d2:05:a2:94:8f:1d:f0:56:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABF793B534686EC2D5820CF153E43AAEF088BE41
Validity
Not Before: May 31 12:55:00 2025 GMT
Not After : May 30 13:00:00 2026 GMT
Subject: CN=5D404DD9FF3C8AC3B9EA01F69311663D18697560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:79:ff:47:71:6c:6f:33:a9:d9:61:eb:a9:1a:
1a:b7:07:5e:d4:a0:83:89:fc:94:57:60:de:3b:20:
79:56:4a:7f:ef:e6:6c:64:10:41:2b:54:34:2b:c0:
7f:bf:d2:c4:9a:a7:d1:9d:4b:62:6e:5f:c7:64:dd:
37:f0:e8:b1:d1:b2:75:f3:4d:d6:88:01:68:a1:35:
df:01:78:c5:97:e9:14:ad:0f:61:19:f4:5a:6b:6f:
c0:d6:fe:f7:44:7d:c7:c9:c3:cd:3a:e1:af:df:17:
b6:9a:34:b7:18:0d:d9:2a:5e:1e:78:cb:38:8b:6f:
04:eb:0b:a7:95:9f:41:5b:d9:28:61:43:ff:71:bb:
99:52:0d:8f:f3:2a:41:ed:d4:f1:32:7c:a8:42:44:
08:f0:57:08:b5:a9:b5:39:af:57:b4:ff:8d:2d:af:
06:76:8b:7a:83:42:57:31:6d:a4:78:34:63:bb:55:
ae:fc:63:21:45:25:26:97:48:8f:68:d8:d3:4b:17:
45:22:45:cb:a8:95:df:93:05:fd:44:19:47:d4:55:
7e:b3:49:9f:a2:ce:3e:a1:25:7b:2a:c6:62:ae:ee:
53:0e:3a:19:54:c8:d3:a5:03:07:92:77:5e:97:ed:
80:78:d4:a9:e2:26:47:1a:ae:19:2e:b6:f2:32:92:
82:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:40:4D:D9:FF:3C:8A:C3:B9:EA:01:F6:93:11:66:3D:18:69:75:60
X509v3 Authority Key Identifier:
keyid:AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.132.0/23
Signature Algorithm: sha256WithRSAEncryption
e1:76:21:1a:55:50:5e:55:95:3d:0f:cc:89:12:09:9a:66:85:
fd:5c:6d:08:21:2c:00:47:ed:66:3d:02:45:87:f9:06:5a:16:
57:87:21:ff:93:02:66:b6:ca:6c:88:86:a8:fb:2a:81:a4:c5:
b9:8c:e3:39:e1:b8:7e:e1:1b:f6:15:6c:a2:b3:9c:80:fc:01:
e7:47:01:10:a1:e5:fe:1e:1d:e7:f4:04:ce:8e:e4:66:53:1c:
b8:24:df:58:94:9a:0d:33:77:44:7b:5a:7e:24:35:4d:f4:3c:
56:a5:e6:b1:a6:20:1a:0e:78:a4:18:88:e8:74:b4:78:2f:b8:
d2:de:70:cc:31:2c:9d:2c:3b:f3:a4:89:3d:45:1d:18:68:bd:
cb:c9:1e:3c:70:7f:26:ba:21:e6:b6:af:01:25:e9:d4:a7:4c:
68:4f:3a:5b:73:11:09:60:43:94:ed:3b:55:f5:d4:f6:e6:96:
4a:b2:ae:66:28:f8:3e:5a:04:f9:51:a3:de:32:78:1d:81:f9:
69:c7:50:74:be:36:89:03:58:0a:26:c4:d1:97:54:18:ae:55:
6e:6d:06:fc:b9:41:f6:1f:a3:9d:3d:e8:d6:b6:7f:40:b4:7d:
f6:f6:6e:d3:10:1c:da:bd:65:ac:32:ac:aa:9b:f0:46:2c:97:
ce:5c:b4:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:16:51 2025 by rpki-client