Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa
File: 3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa (raw, json)
Hash identifier: ozZ36chopn6qVXGQcPpSvKHrbkpICO1jy6g194w4jaQ=
Subject key identifier: 3D:45:F3:50:27:AE:AC:47:CF:83:46:1B:83:A5:4F:46:DA:B5:57:DB
Certificate issuer: /CN=ABF793B534686EC2D5820CF153E43AAEF088BE41
Certificate serial: 43D01046CC7984351229A4DA6018AE932CFF907E
Authority key identifier: AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa
Signing time: Sat 31 May 2025 13:00:00 +0000
ROA not before: Sat 31 May 2025 12:55:00 +0000
ROA not after: Sat 30 May 2026 13:00:00 +0000
asID: 141581
IP address blocks: 157.66.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Jun 2025 21:51:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:d0:10:46:cc:79:84:35:12:29:a4:da:60:18:ae:93:2c:ff:90:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABF793B534686EC2D5820CF153E43AAEF088BE41
Validity
Not Before: May 31 12:55:00 2025 GMT
Not After : May 30 13:00:00 2026 GMT
Subject: CN=3D45F35027AEAC47CF83461B83A54F46DAB557DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:30:a6:bd:01:74:61:ef:69:1b:68:de:ac:93:
04:95:6b:1c:25:9f:ce:a3:90:46:80:d9:2c:ec:d4:
8c:5a:1e:24:f5:8a:e9:f2:45:3c:c0:d5:c4:d2:be:
8d:a4:c1:6d:86:c4:56:ad:cf:00:15:7a:23:f2:c9:
e5:20:db:83:22:0a:0d:8d:2c:f5:ca:71:55:4b:0b:
ad:d2:73:68:8a:a9:d5:04:db:3a:ce:3f:09:8f:be:
10:16:aa:63:b5:7b:e7:5f:cf:fb:4b:96:63:4f:3f:
57:bb:c6:4f:9e:7d:15:e1:be:df:a0:cf:5d:4e:9a:
8d:eb:87:37:50:7f:a2:e9:b6:25:3e:18:d1:55:37:
25:57:de:e6:69:a5:14:83:24:75:a5:fe:f9:6f:29:
a2:ee:71:98:e7:25:05:32:96:c2:94:29:29:e8:6c:
67:18:fa:0a:50:f8:b2:25:38:38:15:d2:a6:a2:ae:
38:c6:fb:0c:78:73:9f:15:2a:b7:75:d0:55:73:87:
9a:77:5c:77:6b:c3:8d:d3:18:7c:9e:42:09:9c:39:
7c:c3:be:84:f5:45:11:3f:9e:47:2c:30:ed:1d:10:
eb:e2:7a:af:f7:79:da:20:96:6c:63:03:be:92:e7:
8d:74:0f:71:2e:b8:da:16:bb:b1:ba:a8:e6:d4:a6:
5a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:45:F3:50:27:AE:AC:47:CF:83:46:1B:83:A5:4F:46:DA:B5:57:DB
X509v3 Authority Key Identifier:
keyid:AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.133.0/24
Signature Algorithm: sha256WithRSAEncryption
e6:47:d4:bf:e2:8b:26:40:05:a9:e8:01:76:e6:b6:c4:88:5f:
c6:fa:92:6e:a5:1e:dd:e2:3d:f1:de:8b:65:4f:43:1a:0a:32:
47:9e:f8:1c:a8:d6:40:04:fd:f0:14:49:5c:3e:65:9a:dc:97:
cf:4c:41:0b:89:cf:28:2f:57:bb:c8:d9:8b:16:45:43:c3:88:
53:e5:94:e2:4e:f0:f1:17:0d:b5:eb:4c:3c:71:b7:28:25:90:
e5:dc:0f:79:c2:d0:5d:89:e6:b7:95:2b:46:ef:54:f3:fd:6c:
ea:09:87:3a:3e:1c:b8:7d:a2:21:bb:a6:97:81:5f:19:4f:a2:
16:fc:16:ca:4f:e7:c9:5c:69:93:b6:fd:ea:91:c2:9e:60:25:
f9:c8:67:30:03:ab:9e:8f:99:a6:bb:6e:cf:3d:ce:36:47:15:
1f:1c:a6:9e:84:61:4a:0d:f0:25:0e:33:0f:6f:1f:b4:56:9c:
15:14:28:d4:4b:a2:60:95:7b:ba:bc:a4:e7:90:df:f2:da:4e:
66:97:b4:59:ac:1a:25:ba:e7:98:a3:34:3b:c9:ae:b6:d3:1b:
aa:21:b5:7d:e5:10:e3:cb:72:87:d2:7e:21:51:17:bc:1c:db:
08:e0:bf:bc:47:a4:42:7e:14:72:42:16:74:3a:1d:f3:15:89:
9d:2b:99:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:48:22 2025 by rpki-client