Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32342d3234203d3e203338353035.roa
File: 3230332e3135332e3132342e302f32342d3234203d3e203338353035.roa (raw, json)
Hash identifier: leqkzYpjbNIKMvKP/jiVvtS85q0EaB1qsbom/BcWU4o=
Subject key identifier: 6E:F4:AA:46:06:62:95:BF:BD:2F:D6:8A:91:B9:53:80:7D:AA:7E:05
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 26EAD37DCED119011849AA1DEFE47FFA7B67864A
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32342d3234203d3e203338353035.roa
Signing time: Thu 10 Aug 2023 08:00:01 +0000
ROA not before: Thu 10 Aug 2023 07:55:01 +0000
ROA not after: Thu 08 Aug 2024 08:00:01 +0000
asID: 38505
IP address blocks: 203.153.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:ea:d3:7d:ce:d1:19:01:18:49:aa:1d:ef:e4:7f:fa:7b:67:86:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 10 07:55:01 2023 GMT
Not After : Aug 8 08:00:01 2024 GMT
Subject: CN=6EF4AA46066295BFBD2FD68A91B953807DAA7E05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c4:b2:4d:77:f0:45:10:a6:fa:17:60:7b:01:
8f:b1:e4:75:df:9f:41:e3:67:85:98:6a:64:c2:88:
9b:e2:18:1e:64:b3:d2:f9:f4:3e:8c:88:00:aa:db:
8b:80:e2:ab:93:bb:c1:21:69:36:0a:35:e7:b6:3e:
15:69:9a:98:6d:ab:00:65:51:ca:9c:59:7c:54:7d:
e7:1f:50:ee:66:b5:16:37:de:79:f5:b9:6b:87:dd:
0a:5a:24:bb:5c:dd:3a:fc:1e:a8:20:18:bd:d2:e5:
69:ab:b6:82:4f:2d:b6:3c:ff:28:30:39:7a:65:88:
eb:0a:23:19:85:d5:74:5d:8e:64:59:d4:9d:00:ef:
c9:67:b7:53:24:6e:0b:42:8b:3b:c3:cb:16:83:7c:
04:4c:c7:26:97:c7:22:9b:ca:ef:4f:03:9a:09:43:
69:1f:4a:d7:62:77:c0:d1:b9:a4:ac:6d:ce:75:47:
d4:4a:cd:7b:f9:40:bd:ad:76:6c:95:c5:0a:f9:0c:
4b:5e:84:e2:03:a0:cb:ff:a9:be:1e:42:8f:48:49:
11:58:be:4f:95:7a:51:f7:ff:a5:70:17:2c:a0:47:
1c:68:a0:04:2c:e2:6c:c1:b9:fd:b9:7f:40:e5:b1:
3e:53:ac:fc:16:41:f5:32:3d:9f:6e:19:41:4b:56:
82:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F4:AA:46:06:62:95:BF:BD:2F:D6:8A:91:B9:53:80:7D:AA:7E:05
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32342d3234203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.124.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:b8:c9:0e:57:77:cd:7e:84:f5:a8:46:50:ff:65:29:84:3b:
27:12:e1:53:92:7a:6d:1f:35:90:32:15:f7:f1:76:f8:b8:e7:
2b:db:59:b6:63:19:f3:0f:1e:de:9a:6a:2d:a1:c4:de:26:c3:
83:39:3f:38:61:91:95:0e:bb:22:88:cd:6b:a7:ee:b3:34:fd:
54:81:bb:73:66:74:4f:1c:d0:87:14:b3:8f:36:6e:84:75:dc:
6d:82:f3:d7:86:f9:93:9d:87:29:51:d5:25:1e:b6:a9:7a:50:
73:89:16:a9:fe:0c:91:d2:66:4b:98:4a:b8:9e:9d:2d:b1:55:
fc:b7:d8:11:22:a2:ac:b4:dc:f1:c1:30:73:af:82:12:31:6a:
50:76:8c:ca:4d:41:e6:50:d2:32:6e:45:6b:3f:a6:13:55:eb:
ae:33:79:8c:3e:e0:0d:d1:e1:05:3d:a6:6b:80:5c:ad:b7:1e:
81:40:aa:e7:02:4e:c8:16:70:70:15:a4:de:d0:e9:78:80:74:
11:7a:d1:f8:4c:aa:6a:fe:b5:8e:a4:6a:cd:a0:2f:d7:5e:26:
5f:75:05:cf:86:2b:c3:7a:56:f4:b9:27:cc:82:29:ee:56:be:
09:88:92:14:9a:61:92:5e:0f:e0:55:f4:c8:48:45:c0:56:dc:
b0:a0:cc:6f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUJurTfc7RGQEYSaod7+R/+ntnhkowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE
MTFEMzNBNjAeFw0yMzA4MTAwNzU1MDFaFw0yNDA4MDgwODAwMDFaMDMxMTAvBgNV
BAMTKDZFRjRBQTQ2MDY2Mjk1QkZCRDJGRDY4QTkxQjk1MzgwN0RBQTdFMDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCxLJNd/BFEKb6F2B7AY+x5HXf
n0HjZ4WYamTCiJviGB5ks9L59D6MiACq24uA4quTu8EhaTYKNee2PhVpmphtqwBl
UcqcWXxUfecfUO5mtRY33nn1uWuH3QpaJLtc3Tr8HqggGL3S5WmrtoJPLbY8/ygw
OXpliOsKIxmF1XRdjmRZ1J0A78lnt1MkbgtCizvDyxaDfARMxyaXxyKbyu9PA5oJ
Q2kfStdid8DRuaSsbc51R9RKzXv5QL2tdmyVxQr5DEtehOIDoMv/qb4eQo9ISRFY
vk+VelH3/6VwFyygRxxooAQs4mzBuf25f0DlsT5TrPwWQfUyPZ9uGUFLVoLLAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUbvSqRgZilb+9L9aKkblTgH2qfgUwHwYDVR0j
BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD
QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE
MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05
NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzQyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy5l8MA0GCSqG
SIb3DQEBCwUAA4IBAQALuMkOV3fNfoT1qEZQ/2UphDsnEuFTknptHzWQMhX38Xb4
uOcr21m2YxnzDx7emmotocTeJsODOT84YZGVDrsiiM1rp+6zNP1UgbtzZnRPHNCH
FLOPNm6EddxtgvPXhvmTnYcpUdUlHrapelBziRap/gyR0mZLmEq4np0tsVX8t9gR
IqKstNzxwTBzr4ISMWpQdozKTUHmUNIybkVrP6YTVeuuM3mMPuAN0eEFPaZrgFyt
tx6BQKrnAk7IFnBwFaTe0Ol4gHQRetH4TKpq/rWOpGrNoC/XXiZfdQXPhivDelb0
uSfMginuVr4JiJIUmmGSXg/gVfTISEXAVtywoMxv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org