Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3135302e3130372e3130342e302f32332d3233203d3e203338353035.roa
File: 3135302e3130372e3130342e302f32332d3233203d3e203338353035.roa (raw, json)
Hash identifier: V0HtRENpKQfMXFnCbfSwYhyeOP36ccjeD4TgpdgHwSE=
Subject key identifier: B7:66:47:01:C1:EC:CD:66:34:C1:31:50:C6:37:99:B0:8E:7A:C5:27
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 6F495C1173504782150F82B96DA31271EE5AAF4C
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3135302e3130372e3130342e302f32332d3233203d3e203338353035.roa
Signing time: Mon 07 Aug 2023 16:54:05 +0000
ROA not before: Mon 07 Aug 2023 16:49:05 +0000
ROA not after: Mon 05 Aug 2024 16:54:05 +0000
asID: 38505
IP address blocks: 150.107.104.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:49:5c:11:73:50:47:82:15:0f:82:b9:6d:a3:12:71:ee:5a:af:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 7 16:49:05 2023 GMT
Not After : Aug 5 16:54:05 2024 GMT
Subject: CN=B7664701C1ECCD6634C13150C63799B08E7AC527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:d6:5d:89:1f:c0:7d:af:d0:f2:d6:3d:52:00:
8e:94:63:89:02:51:74:bc:d9:c1:37:4f:eb:ca:ea:
5f:55:6b:c4:a1:1f:0b:96:60:cb:08:0f:91:22:f1:
c6:c4:3f:1c:f6:d0:a0:7f:a8:8c:4a:fc:aa:7d:a1:
61:23:42:1e:24:d6:03:e3:42:8f:53:97:33:23:d9:
1a:67:0a:fe:b7:63:68:48:b2:f0:b0:7a:6c:e4:b1:
d2:00:79:9a:2e:69:b3:73:c6:ed:fa:10:0b:aa:2d:
e7:de:20:f7:ee:90:89:28:d6:7c:f8:a5:24:26:ab:
be:40:c0:23:cf:73:ad:cb:0e:fe:69:bf:8c:fb:47:
7d:d5:5c:00:76:53:5e:9f:89:21:9f:60:80:73:63:
8f:c6:f4:ee:7b:59:f4:ae:c0:bd:de:5b:a8:fd:06:
7d:7f:1d:4a:0f:fb:5d:6b:f1:ca:f5:fc:a6:73:fe:
62:0b:94:fe:ef:d2:ac:da:55:ec:8a:c0:c2:bc:a3:
c3:e7:f1:a5:76:17:b6:7f:11:3b:e3:ae:74:50:77:
40:f9:b2:90:b0:e6:02:5a:06:94:67:d7:18:b7:bc:
d6:60:1b:4c:22:00:eb:be:11:e9:a5:bf:9a:3e:04:
0d:50:ae:47:3e:60:30:d0:f3:99:fa:0c:67:a2:d9:
69:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:66:47:01:C1:EC:CD:66:34:C1:31:50:C6:37:99:B0:8E:7A:C5:27
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3135302e3130372e3130342e302f32332d3233203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.107.104.0/23
Signature Algorithm: sha256WithRSAEncryption
24:f3:03:2d:93:f1:b3:83:39:96:b3:2f:a3:b0:5e:0a:54:4b:
4e:b1:0c:9a:15:0a:5e:39:15:d2:f2:a1:7e:fb:04:fc:aa:ca:
07:2b:9a:ba:03:93:79:85:b4:1c:6a:13:e2:29:cc:cd:da:be:
5d:fa:c9:79:bb:10:bb:57:a3:5c:43:b6:6c:16:da:bb:4c:8e:
f0:28:b3:44:05:10:34:6b:dc:9a:7e:16:67:be:d4:b5:47:92:
23:a8:94:f0:e0:46:56:12:9c:ab:d5:96:68:57:bd:e9:35:24:
29:88:21:cd:eb:50:f6:a4:aa:93:48:4a:76:a9:b9:53:01:60:
8f:3b:72:67:31:61:91:2e:e2:53:d2:bb:60:8b:fa:32:1e:df:
97:e1:57:41:29:1b:05:cf:c5:74:be:cd:ce:e1:2a:b5:2f:0c:
5b:cf:b5:c5:2b:6d:ec:65:8b:84:e0:b2:c3:c2:0d:5f:1f:d6:
73:15:26:c0:78:a2:09:b7:92:5a:23:fa:fe:d4:66:de:2c:dc:
d9:2c:14:75:87:25:ad:db:95:d0:ca:77:21:94:9c:7e:ed:78:
c1:b0:ae:b3:53:8d:d0:33:78:1a:5e:82:91:cc:a2:76:27:f7:
96:33:0a:65:ad:bf:97:7a:55:72:21:c2:02:83:5f:cb:0c:eb:
20:5f:89:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org