Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323838.roa
File: 3232332e32352e3130342e302f32342d3234203d3e20313530323838.roa (raw, json)
Hash identifier: aLoUBWOlqpkd1S6rtO5JAlvBMFstz4yTHxIZNFz3AZI=
Subject key identifier: AC:39:2F:B4:55:80:11:9B:B3:83:F0:2F:A0:D7:B0:BA:6A:BB:69:55
Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Certificate serial: 46E4C34BBBB2F962A7F97178AAC877AA93929D74
Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323838.roa
Signing time: Mon 15 Jan 2024 07:54:19 +0000
ROA not before: Mon 15 Jan 2024 07:49:19 +0000
ROA not after: Mon 13 Jan 2025 07:54:19 +0000
asID: 150288
IP address blocks: 223.25.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 13:20:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:e4:c3:4b:bb:b2:f9:62:a7:f9:71:78:aa:c8:77:aa:93:92:9d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Validity
Not Before: Jan 15 07:49:19 2024 GMT
Not After : Jan 13 07:54:19 2025 GMT
Subject: CN=AC392FB45580119BB383F02FA0D7B0BA6ABB6955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9c:13:3b:4f:a1:4e:02:dd:22:d7:99:23:9b:
ed:4e:73:1d:24:e3:85:ad:57:57:f9:eb:df:2c:31:
51:51:88:b4:57:89:35:82:5f:94:1c:09:6e:8f:9f:
85:33:02:d1:49:d3:dd:db:6d:a4:1e:39:d5:2d:51:
00:ab:ad:8c:95:45:47:81:74:99:8d:3d:a3:b9:d5:
58:ad:6d:cf:5c:98:42:cc:4f:ec:96:eb:12:81:9a:
76:55:db:c2:43:16:a0:dc:5e:8a:df:8a:ac:2f:d7:
42:49:e5:f0:d9:73:89:b1:32:4a:64:5d:5b:4b:78:
7c:f6:80:4f:03:ee:bc:1a:2c:93:04:bf:8a:e7:dd:
2e:34:fb:28:f0:6f:0c:4f:ee:45:57:98:6b:e5:c2:
aa:e4:0e:86:05:a7:0a:a0:13:95:21:56:4b:6c:77:
7a:a6:b6:5d:76:01:0e:ce:b8:59:94:35:0a:c6:e0:
57:aa:c6:1a:2a:65:a2:37:6d:70:d3:b6:2d:09:e2:
6d:8f:33:79:eb:01:67:66:f4:ad:d3:24:fd:1d:90:
72:15:6b:91:8d:6d:56:79:f4:7a:e1:5e:44:2a:16:
8b:0c:80:4c:b1:e0:48:02:22:77:d9:69:36:d1:6a:
89:95:c4:0d:1d:60:fa:d8:59:e4:e7:a5:2c:20:4b:
39:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:39:2F:B4:55:80:11:9B:B3:83:F0:2F:A0:D7:B0:BA:6A:BB:69:55
X509v3 Authority Key Identifier:
keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.25.104.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f1:8d:ea:2d:a2:9a:cb:51:83:82:de:7f:00:b7:bb:89:d8:
e1:14:7b:8e:b8:a5:41:fb:2c:6b:88:c0:93:f7:1b:92:79:ee:
64:5d:3a:45:e9:7b:8a:9a:c5:84:10:58:b9:80:48:7f:a6:20:
bf:55:31:14:2c:b1:68:71:2c:3c:d5:25:a5:a8:0f:be:33:7c:
0d:7e:f5:3f:6c:ea:d9:0d:b3:f2:32:b9:2b:05:a7:cb:45:ac:
d4:ca:29:d4:9a:28:22:29:83:ba:07:78:d0:11:ea:21:80:c5:
cf:70:12:2c:34:2f:cb:5f:67:dd:2d:e5:3f:11:d6:a8:f6:59:
23:03:f9:4b:2e:51:e1:4a:b9:69:1f:ae:4f:7e:c6:bc:7f:25:
87:87:86:a4:a5:fc:41:9e:b3:e7:0d:c3:d6:f7:2e:7e:f7:31:
f1:5f:89:4f:46:6e:98:9a:19:0f:fc:4b:34:9f:96:e1:0f:b2:
d9:52:31:a7:87:e2:ce:5f:e1:7f:a3:8c:cc:be:d6:59:5b:6a:
c8:8f:e2:20:bb:32:e8:72:7c:fa:00:45:04:bd:4a:7e:85:1c:
c0:e5:7f:3a:61:0d:52:8d:72:97:30:59:76:9b:d2:58:8c:e9:
b5:59:ea:76:b6:bc:42:b2:76:09:11:5b:82:cf:3b:51:8c:a5:
e9:d6:c1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:08 2024 by rpki-client on console-fra.rpki-client.org