Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132322e302f32332d3233203d3e203338353035.roa
File: 3230332e3135332e3132322e302f32332d3233203d3e203338353035.roa (raw, json)
Hash identifier: B2hjZo30u6LUfVO2rpMdzhhivJyS6cax87uYf56pkTg=
Subject key identifier: D9:96:87:7D:1A:50:BA:AF:28:F3:77:8E:D0:44:AC:1C:A2:84:A3:82
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 5A473A2F5EFE16B495A75023901FAB7E35173189
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132322e302f32332d3233203d3e203338353035.roa
Signing time: Mon 07 Aug 2023 16:55:02 +0000
ROA not before: Mon 07 Aug 2023 16:50:02 +0000
ROA not after: Mon 05 Aug 2024 16:55:02 +0000
asID: 38505
IP address blocks: 203.153.122.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:47:3a:2f:5e:fe:16:b4:95:a7:50:23:90:1f:ab:7e:35:17:31:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 7 16:50:02 2023 GMT
Not After : Aug 5 16:55:02 2024 GMT
Subject: CN=D996877D1A50BAAF28F3778ED044AC1CA284A382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:aa:49:82:fd:a5:a6:f8:8e:4c:39:0b:74:e0:
99:37:dc:09:02:8c:39:c9:01:7a:26:2f:0a:e3:da:
db:d8:bc:80:b9:44:61:08:d6:39:b1:ed:2d:76:79:
90:7b:af:2d:85:07:84:a4:84:fe:fc:f1:0a:bf:d8:
73:72:4b:c8:7d:d6:d2:5b:f5:6b:3d:54:3e:05:30:
a0:6f:a6:53:c6:49:48:ec:1a:8d:56:a0:29:1b:60:
6b:cd:a0:6d:98:26:03:e2:34:ba:02:77:3a:cd:53:
c0:d7:23:a8:fd:90:71:9d:19:e0:79:1e:49:1e:2a:
33:18:8f:d7:c4:0b:b0:04:3c:77:bb:58:88:96:fc:
46:86:a9:4f:17:dc:d7:87:0f:92:27:51:3b:4b:c8:
50:04:50:3e:20:45:52:e9:e1:fe:52:a5:1d:86:89:
9b:54:da:99:93:92:5f:0f:61:04:66:fb:81:2c:16:
e1:3c:99:99:3c:ca:d4:86:b5:13:e6:0a:b4:10:30:
d0:d2:59:01:85:09:10:63:36:e6:7a:71:ba:be:81:
98:75:8c:dc:07:ef:2f:55:83:f9:20:ec:fd:98:ad:
a8:b2:3a:7f:84:f4:c1:f0:29:5c:e5:e1:d8:b9:ea:
d9:07:5f:91:bd:39:73:ca:b8:32:45:a8:f5:52:ff:
0f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:96:87:7D:1A:50:BA:AF:28:F3:77:8E:D0:44:AC:1C:A2:84:A3:82
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132322e302f32332d3233203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.122.0/23
Signature Algorithm: sha256WithRSAEncryption
72:30:88:b4:86:b9:1e:01:0d:e9:04:f0:11:ec:fd:be:c1:3c:
dc:56:10:18:96:ee:19:a4:4f:ad:ca:39:d7:ae:e6:4f:50:9e:
aa:68:fa:ef:aa:14:7f:be:b6:46:68:80:b6:62:dc:d0:c7:fb:
9c:04:e0:e6:d0:4c:20:75:16:80:f2:5a:17:93:0e:33:16:d1:
3d:6c:fa:67:d3:ad:df:62:6b:56:6d:03:3b:dc:69:1f:e6:07:
f8:9e:f5:72:7b:f6:76:f0:7b:20:91:cb:2f:d2:8f:7f:ac:d5:
c8:7a:91:be:72:1a:5d:a6:85:70:4e:d4:46:c8:7e:0e:09:d8:
72:f0:93:cc:68:6e:8e:81:2e:76:36:46:c4:2e:8d:69:a1:30:
f8:f9:ba:d6:e2:7b:dc:f4:e9:35:3d:60:62:31:66:bd:5a:8c:
ce:74:3f:e4:af:ce:ff:b8:7d:4a:8f:50:3f:29:99:dc:70:0a:
80:18:d1:c2:81:84:6f:bf:46:67:d5:f1:b5:09:37:cf:f0:49:
cf:4c:56:d4:cc:57:51:73:60:27:55:b3:a5:08:75:17:dd:8f:
4a:fe:b6:03:7e:bf:79:8d:21:d0:64:e9:42:7c:8f:41:26:5d:
3f:df:d5:80:84:f2:0e:24:68:d5:e0:41:2f:d5:fb:92:73:3a:
62:80:6d:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org