Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3233203d3e203338353035.roa
File: 3230332e3135332e3132302e302f32332d3233203d3e203338353035.roa (raw, json)
Hash identifier: Nx0BZvHCbfl0ZJo9pgYHNYURg/wvjiq7qvCAMAw8xaY=
Subject key identifier: DD:9D:9B:91:76:B5:A3:73:8D:99:AA:CF:0C:ED:84:80:9B:2F:5E:66
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 3368FA415E370AFED644CC18FB366645ED0CA8E2
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3233203d3e203338353035.roa
Signing time: Mon 07 Aug 2023 16:54:48 +0000
ROA not before: Mon 07 Aug 2023 16:49:48 +0000
ROA not after: Mon 05 Aug 2024 16:54:48 +0000
asID: 38505
IP address blocks: 203.153.120.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:68:fa:41:5e:37:0a:fe:d6:44:cc:18:fb:36:66:45:ed:0c:a8:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 7 16:49:48 2023 GMT
Not After : Aug 5 16:54:48 2024 GMT
Subject: CN=DD9D9B9176B5A3738D99AACF0CED84809B2F5E66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:58:f2:b9:b8:88:af:a4:5d:4a:cd:23:ca:da:
b6:63:26:72:18:30:5a:8d:ab:c4:b3:7c:a5:83:62:
eb:79:ef:e1:13:80:bd:4a:53:fc:96:b7:b0:ed:a5:
b1:f5:25:d0:96:08:47:05:0d:91:ba:b9:69:fc:41:
71:b9:c4:11:ba:b3:14:46:f7:13:e9:08:a0:44:e3:
42:62:30:6d:ca:c2:e1:a1:1a:0c:01:b8:09:44:0a:
ea:30:21:75:38:bf:f7:1c:d1:36:ec:23:1d:52:6f:
8a:03:df:e5:af:5c:97:38:bc:e6:ac:cb:be:b0:6b:
69:42:ec:b5:7b:21:83:80:d8:62:0b:12:a7:6e:7b:
a7:5a:50:9a:e9:0f:56:e8:69:d4:11:15:e2:eb:86:
0d:b0:6f:4c:b6:f8:3c:fa:0f:fc:6a:28:e9:3a:a7:
cd:4f:97:74:2a:59:2c:a0:68:4a:5a:a4:d8:20:41:
ef:8d:f6:4a:89:7b:0c:4d:7c:38:a6:0f:b5:b0:01:
5e:a5:ec:45:21:3b:c3:ed:bd:e1:75:3f:98:fe:ff:
52:cd:25:ec:89:38:4c:ed:bf:b0:e5:e7:88:e6:09:
9a:01:45:b3:cc:7b:63:e8:49:c7:f5:07:86:07:ae:
11:48:53:45:67:12:43:b7:cf:42:58:67:78:51:c1:
01:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9D:9B:91:76:B5:A3:73:8D:99:AA:CF:0C:ED:84:80:9B:2F:5E:66
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3233203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.120.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:fd:41:be:b4:f1:98:70:55:46:02:97:fa:39:f1:96:03:cb:
f4:c8:0c:10:68:d7:37:0b:7e:1d:64:bc:3b:d8:be:61:f3:e1:
d9:a9:bc:c1:33:3f:7d:79:c6:72:c9:9d:e9:ba:e9:89:d7:9f:
96:3d:a2:c6:44:d5:23:15:98:f9:0f:a3:35:76:77:f0:46:25:
d3:08:0d:b4:ad:02:20:a9:bb:ba:5d:b0:ea:98:50:ee:54:ec:
32:5a:49:f6:0a:96:0e:a9:e2:13:ff:f6:c1:37:5a:52:43:a7:
67:74:8f:be:1e:70:03:12:84:25:72:2e:6b:d9:6c:40:95:b5:
5c:7f:74:74:19:bc:38:2d:05:74:b1:44:1a:0e:32:2d:b4:02:
e8:8a:29:5d:98:73:ea:01:a5:74:33:b6:a0:22:74:52:89:ee:
22:7a:3b:42:1d:f2:f3:64:99:35:ca:82:ae:a2:f0:de:c8:c2:
0d:a9:63:ee:f1:b3:76:13:29:ab:41:34:c3:cb:07:63:50:2a:
d8:7f:d8:68:34:e3:84:66:5e:ab:c7:38:21:9c:bf:f9:59:d3:
8a:98:c4:7a:3c:29:8a:fc:4c:71:b9:1a:34:34:89:e7:01:52:
e5:63:5a:a2:3c:4e:e2:5c:23:6a:63:15:40:59:b4:d4:c9:38:
60:7f:b4:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org