Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa
File: 3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa (raw, json)
Hash identifier: UO4n/QPLdiq3w7SZwMWRmHdlhooI5dye/oQUfy543Dw=
Subject key identifier: 91:65:26:A1:A1:48:89:72:F0:65:76:26:47:56:90:FC:B0:FD:EF:65
Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2
Certificate serial: 03BCA7EB27D5C44B6A6112809A06943F19CFCDCA
Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa
Signing time: Sat 16 Nov 2024 18:00:00 +0000
ROA not before: Sat 16 Nov 2024 17:55:00 +0000
ROA not after: Sat 15 Nov 2025 18:00:00 +0000
asID: 139962
IP address blocks: 110.76.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Apr 2025 04:40:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:bc:a7:eb:27:d5:c4:4b:6a:61:12:80:9a:06:94:3f:19:cf:cd:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2
Validity
Not Before: Nov 16 17:55:00 2024 GMT
Not After : Nov 15 18:00:00 2025 GMT
Subject: CN=916526A1A1488972F0657626475690FCB0FDEF65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a8:f6:12:c1:86:55:a2:eb:a7:55:d4:fe:3a:
a9:68:73:59:d2:d0:b6:6f:bc:92:c5:73:d2:36:59:
f8:c6:26:45:29:7d:45:8c:38:37:82:66:dc:33:31:
49:5a:6f:b5:98:5e:d9:3d:83:1a:89:e9:d3:b5:a6:
da:b3:41:9d:44:87:b7:0f:35:63:ee:9f:7c:c9:6b:
4f:a9:69:ad:83:76:59:75:a1:89:e1:64:8d:ff:0e:
04:27:cf:ce:f9:82:40:79:0c:71:c5:87:67:df:35:
ca:82:d6:64:f9:1e:3e:eb:1c:aa:5e:09:58:7c:ae:
d3:f3:71:b2:b3:c5:de:62:65:31:0c:33:69:f3:fe:
35:07:43:c6:0b:bb:ca:58:39:7d:35:5f:9a:dc:37:
bf:d6:e2:bb:94:d4:27:84:27:d8:97:b3:cf:64:bc:
5e:c4:0c:3d:a8:af:12:14:14:91:a1:a6:8c:22:3a:
14:34:84:ed:ef:7a:7a:67:fb:35:2c:f3:62:2c:3f:
54:a4:c0:ef:cb:43:a7:21:65:d2:ba:4e:5b:98:2a:
af:fe:ff:92:5f:ce:f8:2b:0d:5a:d5:99:48:52:ff:
35:9d:a2:61:2d:80:ad:ab:41:9e:40:4c:b9:00:29:
50:97:ca:df:07:6c:fb:b9:90:54:b9:f9:99:d7:1b:
14:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:65:26:A1:A1:48:89:72:F0:65:76:26:47:56:90:FC:B0:FD:EF:65
X509v3 Authority Key Identifier:
keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.76.151.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:af:cf:18:2d:85:11:8b:13:5d:ad:c1:08:12:d3:11:31:35:
11:4f:48:4e:88:84:8f:5d:1b:64:8b:7c:63:46:39:b5:7f:32:
3e:dd:f3:04:24:0a:50:64:8d:32:85:db:7a:d7:ed:b7:2e:4e:
53:76:85:f7:ec:8e:b4:fb:44:9b:a6:f7:e6:31:c7:f6:13:6a:
34:19:0a:c3:84:15:47:6f:51:22:dc:41:1d:65:33:e2:df:5b:
0a:b3:82:94:8c:1d:ff:07:ff:69:db:e1:98:bf:ac:ab:dd:39:
1e:a4:61:5c:80:ba:53:3d:df:90:fb:56:3a:27:76:62:70:bf:
01:ab:5d:97:b7:09:db:7f:10:e6:d7:07:08:31:64:b3:02:c2:
10:6c:e5:87:f4:64:f7:66:96:1c:40:bf:23:44:a0:86:c5:d7:
43:97:94:9a:e2:d4:5d:8c:2a:32:a4:ac:88:58:22:b9:33:d9:
a6:f4:ff:b2:34:57:86:49:b4:bb:8f:16:90:3a:3f:31:6c:54:
00:55:81:1b:a6:b8:43:e9:6c:72:6a:df:16:1a:0b:c4:d3:0a:
88:af:b6:7d:59:ec:be:c6:60:36:ac:71:c7:9e:db:2c:26:07:
c5:94:ce:ad:14:f0:59:50:82:67:96:4d:ba:2d:d4:74:28:0f:
6c:e5:4d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 04:12:28 2025 by rpki-client