Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132362e302f32332d3233203d3e203338353035.roa
File: 3230332e3135332e3132362e302f32332d3233203d3e203338353035.roa (raw, json)
Hash identifier: UU0p13vraY1hzpheLTSJdJfGH2fCiN59ydep8vjPFmE=
Subject key identifier: BE:85:3D:7F:E6:2A:C8:B7:C0:E4:09:7C:71:96:59:D0:CC:F1:0D:1F
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 612F424A8CE61DA5F0F0392662F731285E101647
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132362e302f32332d3233203d3e203338353035.roa
Signing time: Mon 07 Aug 2023 16:55:44 +0000
ROA not before: Mon 07 Aug 2023 16:50:44 +0000
ROA not after: Mon 05 Aug 2024 16:55:44 +0000
asID: 38505
IP address blocks: 203.153.126.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:2f:42:4a:8c:e6:1d:a5:f0:f0:39:26:62:f7:31:28:5e:10:16:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 7 16:50:44 2023 GMT
Not After : Aug 5 16:55:44 2024 GMT
Subject: CN=BE853D7FE62AC8B7C0E4097C719659D0CCF10D1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ae:09:23:98:4e:ae:51:7a:15:2a:3e:6f:9d:
15:e6:24:1a:da:1b:ea:35:2a:36:4f:19:05:67:00:
fc:5b:87:c1:c3:27:04:6d:0d:4f:1b:7d:10:c2:49:
17:85:b4:84:a7:27:b4:da:e1:c7:ae:57:e3:02:9b:
62:3a:f7:44:1c:87:db:c8:71:17:2a:2b:49:3b:3a:
ae:36:9a:d4:84:2d:1b:29:d5:ca:17:c0:7c:5a:51:
78:17:62:d1:fa:be:40:8a:42:a8:7c:bf:92:4d:38:
a1:08:7f:0d:7f:ee:18:a2:f4:13:30:ec:7e:71:eb:
be:d5:f2:20:38:5f:af:a2:be:0c:65:d2:b2:75:78:
94:29:15:bc:78:ea:12:78:c1:3f:bf:c4:59:a6:a2:
f4:65:d9:2d:ab:65:28:61:c8:7d:11:6a:ab:53:59:
57:ef:cb:6f:65:f3:cb:b6:8f:ec:10:70:0b:2c:fe:
3e:36:19:34:06:52:2d:8d:d9:0c:fb:da:64:18:cc:
b0:f1:7a:c1:b1:6e:2a:1d:1b:59:69:f7:b3:44:7b:
1f:02:3c:22:23:bd:2c:5c:ab:0c:38:6a:0c:87:6a:
b6:70:88:78:a6:0c:1a:ac:df:ff:9b:b7:6f:e9:b1:
d6:d8:86:1b:59:be:0d:81:4f:06:1c:32:eb:d1:a8:
d3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:85:3D:7F:E6:2A:C8:B7:C0:E4:09:7C:71:96:59:D0:CC:F1:0D:1F
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132362e302f32332d3233203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.126.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:05:5d:97:f2:88:24:5a:93:b9:e5:55:a4:4a:f6:4f:51:23:
d3:44:4e:e2:1c:5e:7b:bc:33:af:9d:30:3c:83:58:87:b3:fd:
18:11:27:6d:24:59:72:e8:ff:53:a9:b0:4d:a9:48:a3:7f:5e:
19:5a:77:c7:26:24:b1:d7:f7:41:9d:c1:50:28:65:02:2f:59:
da:b7:05:f9:90:3a:72:2e:c6:4e:ef:a9:61:0b:57:4d:95:f9:
c4:11:48:a6:a6:7b:50:12:55:e1:f7:d4:16:da:c6:ac:b4:50:
f8:f4:33:96:08:3c:9f:1b:fd:27:55:be:ec:db:3b:d0:f4:3c:
30:e9:84:98:54:fe:7f:a1:b6:56:b8:a8:86:a0:66:be:3f:fa:
24:3b:84:cb:59:94:2c:fa:41:47:20:b2:db:76:1a:2c:e2:74:
84:c1:3e:d3:4e:3a:73:29:98:28:ba:c1:81:3b:29:2b:43:b7:
33:f7:ec:8c:4c:2d:95:d7:cd:69:63:07:f5:dd:97:37:87:12:
f3:bc:17:6c:f5:56:a7:29:d1:ed:24:a2:52:23:30:69:b7:04:
31:e0:13:22:c3:39:00:de:0f:7b:ba:f8:d7:74:1c:f9:09:2a:
3f:5c:4f:e7:a5:01:a4:d3:7b:2a:4b:37:2c:af:c7:69:ef:d2:
ed:46:e8:e2
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUYS9CSozmHaXw8DkmYvcxKF4QFkcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE
MTFEMzNBNjAeFw0yMzA4MDcxNjUwNDRaFw0yNDA4MDUxNjU1NDRaMDMxMTAvBgNV
BAMTKEJFODUzRDdGRTYyQUM4QjdDMEU0MDk3QzcxOTY1OUQwQ0NGMTBEMUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXrgkjmE6uUXoVKj5vnRXmJBra
G+o1KjZPGQVnAPxbh8HDJwRtDU8bfRDCSReFtISnJ7Ta4ceuV+MCm2I690Qch9vI
cRcqK0k7Oq42mtSELRsp1coXwHxaUXgXYtH6vkCKQqh8v5JNOKEIfw1/7hii9BMw
7H5x677V8iA4X6+ivgxl0rJ1eJQpFbx46hJ4wT+/xFmmovRl2S2rZShhyH0RaqtT
WVfvy29l88u2j+wQcAss/j42GTQGUi2N2Qz72mQYzLDxesGxbiodG1lp97NEex8C
PCIjvSxcqww4agyHarZwiHimDBqs3/+bt2/psdbYhhtZvg2BTwYcMuvRqNM/AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUvoU9f+YqyLfA5Al8cZZZ0MzxDR8wHwYDVR0j
BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD
QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE
MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05
NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzYyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5l+MA0GCSqG
SIb3DQEBCwUAA4IBAQDRBV2X8ogkWpO55VWkSvZPUSPTRE7iHF57vDOvnTA8g1iH
s/0YESdtJFly6P9TqbBNqUijf14ZWnfHJiSx1/dBncFQKGUCL1natwX5kDpyLsZO
76lhC1dNlfnEEUimpntQElXh99QW2sastFD49DOWCDyfG/0nVb7s2zvQ9Dww6YSY
VP5/obZWuKiGoGa+P/okO4TLWZQs+kFHILLbdhos4nSEwT7TTjpzKZgousGBOykr
Q7cz9+yMTC2V181pYwf13Zc3hxLzvBds9VanKdHtJKJSIzBptwQx4BMiwzkA3g97
uvjXdBz5CSo/XE/npQGk03sqSzcsr8dp79LtRuji
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org