Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3135302e3130372e3130342e302f32342d3234203d3e203338353035.roa
File: 3135302e3130372e3130342e302f32342d3234203d3e203338353035.roa (raw, json)
Hash identifier: x8dJ5OrBFS194RAGJlGe2o/PM83HhXzuptMfKIzIV20=
Subject key identifier: 60:7B:24:9A:E2:34:AC:90:3B:B2:54:2E:FD:B8:57:91:FE:9D:6A:7A
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 44A1227EC177A88A12411D3EF6DC0C9E09A8D630
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3135302e3130372e3130342e302f32342d3234203d3e203338353035.roa
Signing time: Thu 10 Aug 2023 08:00:01 +0000
ROA not before: Thu 10 Aug 2023 07:55:01 +0000
ROA not after: Thu 08 Aug 2024 08:00:01 +0000
asID: 38505
IP address blocks: 150.107.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:a1:22:7e:c1:77:a8:8a:12:41:1d:3e:f6:dc:0c:9e:09:a8:d6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 10 07:55:01 2023 GMT
Not After : Aug 8 08:00:01 2024 GMT
Subject: CN=607B249AE234AC903BB2542EFDB85791FE9D6A7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7c:01:59:99:cb:39:39:7f:40:7d:21:be:b2:
12:e8:4e:0e:32:96:cf:1a:ce:ac:24:57:97:49:ee:
f9:d3:14:9e:8f:51:fa:73:02:61:d3:0f:c7:5a:a6:
a2:99:ad:da:90:96:6e:8c:c0:d0:f7:90:3b:bf:0e:
c5:5e:f1:0c:35:c6:ce:a3:3b:d2:91:4c:0b:27:15:
1d:b0:d5:c4:55:79:37:d1:22:fe:bd:bf:dc:0d:92:
4d:fb:91:9a:76:30:cf:a0:13:0d:ec:ce:05:6a:03:
71:16:29:94:ba:c0:28:f8:a0:e7:ff:83:b4:48:a7:
57:f5:c9:4f:e2:0d:7f:46:75:46:30:49:bd:ca:47:
78:55:a1:04:3f:ac:79:60:c9:79:af:95:c4:49:52:
0f:4f:21:a9:c8:cd:be:a1:9f:0c:95:ce:fa:90:95:
86:3e:a1:6d:57:f5:7d:06:82:12:34:60:f4:77:5a:
b0:fe:6d:a4:c0:19:08:d9:e4:e8:49:e3:41:7e:1b:
35:ac:35:06:67:f5:ff:29:56:20:01:2b:25:15:f3:
9c:f7:a3:b4:90:4d:01:6f:b3:29:fa:d1:a8:d5:9f:
0d:af:a2:9f:c2:98:36:c3:68:01:5f:30:b6:64:06:
14:9c:45:28:c8:d0:b4:a2:32:be:53:5a:64:7b:e8:
49:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7B:24:9A:E2:34:AC:90:3B:B2:54:2E:FD:B8:57:91:FE:9D:6A:7A
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3135302e3130372e3130342e302f32342d3234203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.107.104.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:c2:51:7a:8b:50:18:2f:fc:f3:a0:de:83:ac:df:78:68:f7:
77:fc:c1:07:58:5b:3a:b2:47:7c:9e:f4:02:a7:db:b7:22:21:
ec:98:ab:6e:81:d0:4f:01:b1:87:65:79:ba:3d:c7:16:35:58:
7a:78:68:a8:28:52:c8:c6:68:bf:89:f8:f1:a5:f7:7c:0d:5a:
c1:4a:f8:b9:4d:2e:de:c9:23:9e:cc:6c:d1:fc:15:81:4e:9d:
3f:6a:fe:cb:25:f4:f0:2e:5c:ce:41:d6:92:66:7c:8f:8e:2a:
b0:23:3f:b2:97:aa:22:d6:de:50:dc:a9:5d:bf:7b:40:6b:c8:
9d:3a:8a:a6:e8:09:1d:16:41:0d:04:ed:dd:99:9d:23:ed:92:
f1:a0:23:24:c1:ed:29:00:b0:ac:7e:3a:96:6b:9e:67:01:dc:
df:e5:3b:ab:20:7d:c5:e2:1d:88:5c:3f:2d:9e:5f:71:a2:88:
8a:82:ee:34:56:bd:39:6a:8e:76:13:ac:54:5c:84:5f:d3:92:
80:33:70:7f:e7:62:0e:ed:dc:1b:d7:3a:33:a5:47:0e:8e:e5:
66:31:a9:9e:4b:cb:52:f4:2e:66:87:1e:40:4e:6b:e2:40:64:
e0:ee:99:c9:3e:00:83:5e:7c:20:35:9f:1e:4b:32:f6:02:dc:
80:88:e5:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org