Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132312e302f32342d3234203d3e203338353035.roa
File: 3230332e3135332e3132312e302f32342d3234203d3e203338353035.roa (raw, json)
Hash identifier: Dr1mMhVKcrAQNeAxmdgzy46lYI6LqcEj+YRYvnAfnZU=
Subject key identifier: 16:5D:54:CC:05:16:6F:8B:FB:1D:1B:F3:AD:F8:F5:53:C3:9E:4C:0C
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 3A7AA0499543D4C8F09B820A9CE131DE02744179
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132312e302f32342d3234203d3e203338353035.roa
Signing time: Thu 10 Aug 2023 08:00:02 +0000
ROA not before: Thu 10 Aug 2023 07:55:02 +0000
ROA not after: Thu 08 Aug 2024 08:00:02 +0000
asID: 38505
IP address blocks: 203.153.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:7a:a0:49:95:43:d4:c8:f0:9b:82:0a:9c:e1:31:de:02:74:41:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 10 07:55:02 2023 GMT
Not After : Aug 8 08:00:02 2024 GMT
Subject: CN=165D54CC05166F8BFB1D1BF3ADF8F553C39E4C0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:69:44:11:a8:59:57:64:74:0d:79:89:0c:2a:
75:51:74:f5:9a:ef:a4:9c:78:09:b8:99:56:9c:57:
9e:c7:92:06:c1:a8:dc:e3:71:13:2d:05:28:df:dc:
54:76:b7:81:6e:a6:a5:d4:64:6a:e9:22:4f:e4:73:
e8:c1:39:66:2d:a4:ba:b3:91:42:d2:02:2e:51:65:
67:ac:2c:d6:56:5b:84:f5:39:68:b3:59:20:35:da:
ac:45:3e:0f:19:1d:e3:fd:93:fc:4f:89:e9:57:56:
45:56:33:3f:f7:d6:1b:0e:42:10:36:c2:42:fc:6f:
90:e3:b7:92:44:01:f1:2c:e8:27:0a:e4:5e:87:9c:
a2:c8:69:19:55:19:9a:c6:93:45:ab:a4:83:89:cf:
66:8a:d6:24:38:88:98:9a:8a:f5:67:fe:0a:66:d9:
2e:2a:e4:01:92:af:1a:b4:ff:01:81:a4:d5:ab:da:
c2:9c:20:4a:f1:ed:e5:80:53:fe:d1:0a:6a:6d:8b:
22:71:47:92:d5:6a:84:1e:f1:f6:03:7e:7f:93:de:
63:6f:2d:e5:f6:de:68:19:4b:c6:ec:b1:cb:29:2d:
3f:39:79:f7:0e:b2:68:11:c8:48:49:8c:dd:de:ed:
87:65:b0:b5:d0:e4:6e:36:2b:49:30:8a:55:64:04:
8e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:5D:54:CC:05:16:6F:8B:FB:1D:1B:F3:AD:F8:F5:53:C3:9E:4C:0C
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132312e302f32342d3234203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.121.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e7:f3:22:10:f8:15:87:dc:0a:fa:11:9e:5a:98:85:b5:25:
e2:eb:25:6b:74:84:e9:5d:ee:d5:3a:b1:1d:ca:c5:b2:b5:b8:
40:0f:12:11:54:17:e6:c7:d5:a3:3e:db:00:d8:2b:b3:15:fb:
11:8d:40:80:6e:f1:42:c8:72:df:28:78:6c:8d:2a:42:a2:62:
48:96:51:6b:c3:50:65:76:79:29:20:ca:2a:f2:45:be:dc:88:
78:7c:8b:10:5a:31:42:8b:18:f3:9c:d2:f6:f8:50:f5:0d:77:
89:58:f5:d7:1c:09:2a:e4:71:7d:0c:18:ac:03:37:28:dd:84:
8e:e8:6f:38:aa:87:a6:cb:64:3a:7b:d1:f0:b4:66:db:75:9e:
ae:72:e7:da:08:eb:aa:82:fb:e8:63:97:66:05:38:c0:82:b2:
58:3e:54:18:48:23:3c:15:81:75:00:90:9d:66:36:fe:ab:55:
1f:84:2d:bb:76:eb:36:29:48:9c:b6:ea:8a:a1:f8:22:9d:2c:
69:e7:43:ff:8d:b0:18:42:68:d8:e3:49:6e:e0:1c:ea:ba:0d:
2f:81:1f:6d:40:b1:89:d7:0b:e2:d9:df:cb:12:82:19:18:ae:
28:96:80:7c:9d:5b:0e:f2:0e:f8:5f:16:76:84:d9:77:fe:24:
ef:0d:bf:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org