Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138342e302f32342d3234203d3e203438343635.roa
File: 3130332e3132352e3138342e302f32342d3234203d3e203438343635.roa (raw, json)
Hash identifier: mEg+QEqujplPa+4HbCRx3c4HL1dnOKSDniYWo68GfXk=
Subject key identifier: A8:1A:2F:6E:9A:26:D3:91:55:FB:69:BA:8D:A4:8D:83:44:C4:A1:C5
Certificate issuer: /CN=129285A478A166EE0B54DBCDA60771DA54C4F65F
Certificate serial: 14DEEC5DA9C9EFFE2A4E5F578E7717B67FFA43DA
Authority key identifier: 12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138342e302f32342d3234203d3e203438343635.roa
Signing time: Mon 15 Jul 2024 02:42:14 +0000
ROA not before: Mon 15 Jul 2024 02:37:14 +0000
ROA not after: Mon 14 Jul 2025 02:42:14 +0000
asID: 48465
IP address blocks: 103.125.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Apr 2025 01:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:de:ec:5d:a9:c9:ef:fe:2a:4e:5f:57:8e:77:17:b6:7f:fa:43:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=129285A478A166EE0B54DBCDA60771DA54C4F65F
Validity
Not Before: Jul 15 02:37:14 2024 GMT
Not After : Jul 14 02:42:14 2025 GMT
Subject: CN=A81A2F6E9A26D39155FB69BA8DA48D8344C4A1C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c6:45:0c:50:25:a4:f0:3b:b8:8e:b4:36:ec:
c6:6f:08:06:96:6d:83:2b:ef:1e:9d:42:7d:17:39:
a9:94:4e:25:16:e2:67:64:ec:51:59:d3:ca:7a:bf:
5c:6e:8c:21:1c:12:9f:b4:d4:48:ca:05:53:ea:2e:
fe:95:60:bd:8d:6a:ad:79:58:51:81:39:ad:25:75:
3a:2b:2c:f3:62:36:25:27:3b:5f:7f:6a:55:3e:9a:
17:05:01:e9:c7:6d:58:1d:f5:02:d1:9f:81:f9:1e:
da:79:2b:2b:f4:29:eb:b4:c4:56:9e:57:7a:84:83:
bb:d1:34:a5:b1:9c:c8:c9:3c:73:c5:b8:27:a0:64:
11:c6:36:00:34:ed:15:64:57:52:17:43:dd:a5:69:
dd:13:e1:4a:4f:98:e8:e0:29:7a:33:95:ba:6a:4a:
a8:f7:a1:b5:0b:06:36:36:cd:43:3d:cf:18:ce:cb:
73:a5:2b:3f:e5:a8:81:f7:6f:dc:65:3c:04:47:7c:
2b:6c:76:74:b8:7a:52:7d:45:55:fa:96:bc:f9:ab:
78:fe:cd:9b:65:be:a3:2f:1c:6b:ab:0a:5d:75:5b:
87:4e:35:b2:fa:3c:6d:bd:b5:4d:61:d8:42:05:e6:
e8:16:8e:30:40:8f:ca:5d:d4:ed:f1:ea:a7:ce:db:
0f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1A:2F:6E:9A:26:D3:91:55:FB:69:BA:8D:A4:8D:83:44:C4:A1:C5
X509v3 Authority Key Identifier:
keyid:12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138342e302f32342d3234203d3e203438343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.125.184.0/24
Signature Algorithm: sha256WithRSAEncryption
14:00:41:c9:75:92:d3:77:46:f9:92:22:04:8a:d9:70:83:06:
49:ab:c3:2a:a5:10:86:92:30:c1:13:5e:52:3b:53:41:ee:8d:
8d:cd:81:9b:ec:6d:97:c5:48:3e:8a:61:29:51:49:0e:2a:66:
fc:b0:c1:63:50:2f:06:61:58:73:35:d9:a5:4b:4a:e4:08:a9:
b2:0c:cd:3a:3a:36:e6:60:b0:a0:27:4e:f5:36:3e:05:ff:18:
8c:3b:b1:88:4e:14:5f:de:fb:1d:d3:45:94:eb:b3:ea:eb:c5:
0e:1c:4d:61:b8:d1:d0:fd:06:ef:92:93:a5:b1:d4:e0:01:56:
8c:a1:0b:71:6b:60:7b:65:93:bb:85:d6:7a:46:7f:8e:b4:6e:
8d:df:33:7d:11:f1:f2:6e:38:54:c5:98:4c:69:30:98:51:ad:
3b:f3:16:2e:36:30:de:08:4a:5e:26:5b:94:b7:71:f2:1d:17:
90:cf:03:ba:77:82:5f:9c:93:c0:5a:3b:1f:07:33:1e:22:51:
76:71:44:2a:80:9b:54:90:c3:ce:4c:36:cd:f6:d3:cf:9f:f4:
09:95:28:7d:75:74:56:5e:74:e4:f3:16:51:d0:d2:3d:59:cb:
8c:07:90:86:fa:75:fe:ea:60:1c:5d:39:1d:e3:0f:e2:40:fc:
9e:a8:72:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:01:42 2025 by rpki-client