Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32332d3233203d3e20313533303633.roa
File: 3136302e32322e3232322e302f32332d3233203d3e20313533303633.roa (raw, json)
Hash identifier: CWtbKHIfY5xSYpa/CCWe/pHamTrtIWxkB4wjMAaAp6c=
Subject key identifier: 01:B5:AD:FD:E8:F0:FA:7D:55:03:F3:27:DB:7B:6E:01:EE:30:05:AE
Certificate issuer: /CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017
Certificate serial: 1923B20F9E4D562168736CAF67462A19FC1E5545
Authority key identifier: 9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32332d3233203d3e20313533303633.roa
Signing time: Wed 10 Jul 2024 13:13:15 +0000
ROA not before: Wed 10 Jul 2024 13:08:15 +0000
ROA not after: Wed 09 Jul 2025 13:13:15 +0000
asID: 153063
IP address blocks: 160.22.222.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 18 Jul 2024 19:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:23:b2:0f:9e:4d:56:21:68:73:6c:af:67:46:2a:19:fc:1e:55:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017
Validity
Not Before: Jul 10 13:08:15 2024 GMT
Not After : Jul 9 13:13:15 2025 GMT
Subject: CN=01B5ADFDE8F0FA7D5503F327DB7B6E01EE3005AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:18:ff:f3:e9:08:19:99:6b:91:04:ba:5e:e5:
cc:b1:fb:ba:c6:07:ee:3c:94:25:00:98:f5:cc:28:
6f:c5:76:b3:62:65:40:b9:4d:5d:03:5e:eb:a0:27:
5e:4f:de:87:d8:85:12:6e:5d:51:b8:3a:0b:45:2f:
e0:d3:49:0e:3c:dc:17:99:c8:d5:57:82:a0:e3:4c:
e7:9e:eb:29:ee:6a:ef:fe:fd:a3:fc:89:0e:b9:e2:
08:87:69:48:ba:b8:fb:5f:f5:38:6f:8a:2b:d2:71:
0f:0f:5e:7d:12:ff:f9:9d:84:03:b1:c1:13:3f:4a:
60:28:01:5c:42:06:d8:2e:3c:8e:1b:b5:a9:88:20:
12:15:00:78:ff:d5:5f:5e:ad:b3:fc:4e:91:20:93:
ab:10:d8:48:93:c5:e0:8c:7e:92:ee:ee:18:09:98:
66:c1:2e:63:09:85:81:69:f3:db:99:55:80:03:15:
5d:77:c3:a3:07:68:6f:9d:91:01:f3:6b:22:e7:e9:
2e:53:2a:c9:ed:22:33:2d:a6:31:92:7c:8f:31:86:
1a:7a:a5:46:cf:dc:ad:7c:46:2b:5c:9d:ec:68:bf:
dc:fd:8e:32:ee:e3:6a:91:7b:6c:0c:9f:47:d5:e1:
4b:bb:59:5a:bf:9a:fd:1c:45:53:4a:13:72:01:00:
f0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B5:AD:FD:E8:F0:FA:7D:55:03:F3:27:DB:7B:6E:01:EE:30:05:AE
X509v3 Authority Key Identifier:
keyid:9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32332d3233203d3e20313533303633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.222.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:04:d0:43:4e:fb:ae:b6:ba:99:0d:01:e2:1b:05:7c:b8:d8:
82:88:b8:a2:8d:8f:a6:29:e2:2c:d7:c9:8d:e6:53:49:bf:4b:
82:7c:9f:a0:9e:0f:90:75:90:3b:2d:21:19:ae:53:a0:fd:1f:
23:0b:2f:74:05:3b:fa:68:1c:c9:26:fa:cb:98:5c:7a:7b:ed:
7b:c0:d2:fd:6f:01:4e:a1:b4:32:f1:9e:35:57:43:28:99:24:
22:0b:4b:84:2e:1a:a1:20:53:c8:bd:79:df:b2:73:ac:3d:aa:
49:59:cb:ab:e9:65:4b:5f:54:f6:1a:77:c9:ab:c3:12:63:6c:
82:fd:19:0b:b9:8e:ce:23:b5:6b:d1:d1:80:fa:f1:24:06:25:
37:6d:71:15:21:61:d6:a3:75:31:b1:87:c1:37:39:90:5d:0f:
af:4a:e9:c5:d4:fc:93:86:59:77:8a:b7:6d:6a:f7:76:a9:e3:
8c:f6:13:67:9e:8b:69:82:b6:ee:ac:a9:a0:19:21:a9:40:34:
f6:aa:c5:8d:a7:2a:ab:17:e0:c7:17:e1:61:74:af:ad:c2:c5:
69:c6:b3:ed:54:20:66:71:e5:af:7a:c7:cd:88:1b:37:57:d0:
e0:86:ee:0c:39:26:b3:9f:2a:c6:79:fc:85:9a:01:fd:2a:e9:
90:e9:ff:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 21:13:12 2024 by rpki-client on console-ams.rpki-client.org