Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132362e302f32342d3234203d3e203338353035.roa
File: 3230332e3135332e3132362e302f32342d3234203d3e203338353035.roa (raw, json)
Hash identifier: S/LExWRSUgqqp3TusFDrVpuRi2KBJNsy1NpNi+R/BK4=
Subject key identifier: BD:6F:79:75:87:A0:32:61:F3:F2:EB:05:10:C4:1B:81:97:7C:F1:EF
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 1970FD78CD2C2DAE6B00B53366516F7D8E28354D
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132362e302f32342d3234203d3e203338353035.roa
Signing time: Thu 10 Aug 2023 08:00:00 +0000
ROA not before: Thu 10 Aug 2023 07:55:00 +0000
ROA not after: Thu 08 Aug 2024 08:00:00 +0000
asID: 38505
IP address blocks: 203.153.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:70:fd:78:cd:2c:2d:ae:6b:00:b5:33:66:51:6f:7d:8e:28:35:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Aug 10 07:55:00 2023 GMT
Not After : Aug 8 08:00:00 2024 GMT
Subject: CN=BD6F797587A03261F3F2EB0510C41B81977CF1EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:8b:79:6c:13:a2:f4:b3:21:1d:db:b0:bc:
e7:85:83:36:1a:89:f7:88:41:53:87:18:41:24:c6:
ed:09:ea:11:c7:52:f1:c1:ad:a7:d6:c2:6e:4c:78:
c8:c6:c1:dd:61:64:d9:eb:09:46:fe:29:ad:a2:be:
fb:e6:7b:1b:66:c6:e1:a0:4b:bb:ba:24:22:02:53:
61:6c:8b:b3:af:46:bc:24:67:06:ef:5d:ae:d4:aa:
c1:72:95:35:14:94:a8:8e:59:8a:76:6c:f2:04:6d:
6e:42:62:ea:c5:42:15:98:41:2f:87:36:11:1b:05:
76:a0:88:fa:1d:15:45:85:86:54:95:85:c5:a5:c3:
63:b1:07:a7:e2:50:69:6e:c2:29:37:8b:e6:e5:a2:
35:e1:31:ac:80:99:80:ff:c3:4a:9a:ba:df:ab:de:
a3:38:23:d7:2c:85:4f:0a:fa:be:d2:f1:ba:6c:6c:
a4:6d:ae:60:46:05:82:9b:ab:78:9f:65:4c:00:6e:
bb:a7:79:09:2b:1f:5c:6c:81:25:36:f0:90:ba:48:
d3:61:85:f9:e6:d5:6a:5b:f0:65:4e:ef:26:a6:1c:
33:38:4d:e2:ae:30:cb:6f:fb:62:59:24:99:58:ef:
f5:4c:98:4d:ef:7b:17:8c:13:fa:ef:1c:37:79:57:
68:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6F:79:75:87:A0:32:61:F3:F2:EB:05:10:C4:1B:81:97:7C:F1:EF
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132362e302f32342d3234203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.126.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ec:98:a6:bb:39:37:53:f0:fc:24:eb:2c:7e:6b:1f:b5:63:
fd:bb:24:7a:80:1c:3b:fa:2f:dc:1d:ba:fa:1b:1f:89:e4:bb:
e8:5a:cb:18:67:e5:a9:bd:a5:83:c2:b5:e3:d7:5a:40:2d:2e:
d0:3d:2f:5d:4a:11:e2:fb:c3:97:05:7e:b8:5d:06:a8:bc:34:
ed:1f:a8:bd:31:3d:92:53:38:eb:f4:1a:ff:5f:b4:7d:c9:a3:
8d:21:7d:60:02:7e:1f:47:e5:a1:fc:14:23:e3:61:7c:75:81:
75:9c:bb:d5:c7:62:5a:a1:01:1b:c5:ea:24:36:b0:b2:cd:cf:
2e:5f:bb:6d:72:83:a4:92:a6:7f:47:b1:73:29:5f:51:bd:3e:
ae:0e:51:c7:c4:d4:ed:24:15:d5:85:8f:f5:e4:d0:ef:89:a5:
b9:6d:bc:fb:a1:07:51:12:0b:04:14:27:73:cc:dc:d8:57:c0:
13:eb:fa:fe:f5:b8:d5:ed:e6:5c:d1:34:f0:e0:99:e6:7a:48:
56:b7:0e:cd:5d:0b:bc:56:48:94:ae:53:40:fa:5d:f8:50:22:
a9:2f:73:62:ab:66:a8:4b:34:cf:ba:f4:8f:76:3b:b2:2a:e8:
9a:01:39:7b:07:03:dd:c1:67:94:4e:5a:d2:d8:75:98:39:86:
ab:96:4b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org