Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/0/3136302e3139312e3138302e302f32332d3234203d3e20313533313530.roa
File: 3136302e3139312e3138302e302f32332d3234203d3e20313533313530.roa (raw, json)
Hash identifier: 3ecy4XTYCaCse1Ec6FGpK7qirmnlR3hUwk54fow4txg=
Subject key identifier: B9:0C:8C:79:5A:D8:54:CA:62:83:E6:CD:AD:F0:48:C8:C0:87:28:73
Certificate issuer: /CN=6247D1AAF3B15B50D3A73E44E59E2C000B94F8A4
Certificate serial: 4368051B38D0855D93D176E23E3CB2158EE06152
Authority key identifier: 62:47:D1:AA:F3:B1:5B:50:D3:A7:3E:44:E5:9E:2C:00:0B:94:F8:A4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6247D1AAF3B15B50D3A73E44E59E2C000B94F8A4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/0/3136302e3139312e3138302e302f32332d3234203d3e20313533313530.roa
Signing time: Tue 26 Nov 2024 03:07:30 +0000
ROA not before: Tue 26 Nov 2024 03:02:30 +0000
ROA not after: Tue 25 Nov 2025 03:07:30 +0000
asID: 153150
IP address blocks: 160.191.180.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Apr 2025 18:21:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:68:05:1b:38:d0:85:5d:93:d1:76:e2:3e:3c:b2:15:8e:e0:61:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6247D1AAF3B15B50D3A73E44E59E2C000B94F8A4
Validity
Not Before: Nov 26 03:02:30 2024 GMT
Not After : Nov 25 03:07:30 2025 GMT
Subject: CN=B90C8C795AD854CA6283E6CDADF048C8C0872873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:44:73:ea:24:0c:15:12:1c:97:2b:5b:59:fe:
9c:ec:6c:9f:b6:40:5a:2a:d8:e2:93:66:e3:c3:9e:
04:35:08:df:df:14:ac:ab:f1:dc:0a:5d:31:b0:bd:
7b:91:2f:0c:f0:65:37:7e:6f:0e:82:a4:6f:70:1c:
8f:0b:f0:ad:2f:81:7b:f4:49:55:69:f4:08:bf:a8:
28:c5:12:df:e8:2a:7b:df:2c:d4:27:ac:c1:89:ad:
82:3d:4f:13:52:31:a8:85:55:91:59:66:b6:6c:6d:
74:a9:39:93:10:94:91:fb:9c:9c:ad:66:6d:d2:f4:
65:e6:81:38:cd:82:46:8c:c8:32:7b:8b:da:72:0f:
7d:7f:b6:d7:50:40:59:97:b4:c4:cb:37:82:97:1b:
71:44:ea:a3:66:97:d4:66:8c:1b:a8:0a:0f:93:7a:
a4:fa:65:79:7b:3c:34:01:d5:08:10:fd:ce:0f:16:
bc:f1:f4:85:67:94:73:22:5f:f3:94:a6:4d:16:cb:
26:40:d1:9a:d3:61:d9:6f:da:9a:74:02:56:15:14:
13:88:0b:bc:6a:a2:52:5f:e3:9a:18:dd:5a:01:cb:
42:bf:0c:8b:7f:88:b9:21:4a:f9:d8:b1:e3:44:22:
7a:99:be:47:19:78:df:fe:11:e2:a3:97:36:f9:bc:
c9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0C:8C:79:5A:D8:54:CA:62:83:E6:CD:AD:F0:48:C8:C0:87:28:73
X509v3 Authority Key Identifier:
keyid:62:47:D1:AA:F3:B1:5B:50:D3:A7:3E:44:E5:9E:2C:00:0B:94:F8:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/0/6247D1AAF3B15B50D3A73E44E59E2C000B94F8A4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6247D1AAF3B15B50D3A73E44E59E2C000B94F8A4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/0/3136302e3139312e3138302e302f32332d3234203d3e20313533313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.191.180.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:9d:ae:58:c3:1c:8e:69:bc:c8:56:40:35:a0:d9:01:ca:87:
ce:cb:c8:4f:cd:9f:74:aa:88:cf:3a:90:07:fd:83:48:43:45:
47:e9:27:bd:4c:18:f6:96:59:4c:e6:f3:77:6f:e2:d4:22:d7:
b1:22:2c:18:65:e6:cb:a4:07:11:5c:fa:86:69:6d:6b:2d:c2:
12:ce:1d:bb:12:38:37:f6:97:6c:f6:83:c9:f9:aa:bb:b8:9d:
3f:71:41:6a:57:87:a0:f6:f2:9d:97:44:0c:47:0f:69:9b:27:
40:52:06:00:d5:f7:4a:42:8b:95:76:2e:d3:6e:17:52:f2:9f:
83:51:49:69:d2:bf:f5:ee:3a:d3:28:43:8b:18:0c:e6:0a:a9:
f0:f7:e1:44:c2:f7:26:f7:43:c9:2a:49:71:c2:80:4f:8d:0c:
a0:b0:d8:78:e6:0d:9f:fc:83:ec:7a:b0:95:61:50:f8:08:d6:
88:30:2a:80:98:f4:2b:0e:b6:f1:00:de:d1:8f:45:a9:5b:82:
fb:b1:d3:9e:8b:09:a4:e3:cd:53:8e:90:b3:6c:48:eb:b9:98:
cc:24:47:73:cc:96:a1:c8:f3:cd:f4:c6:c9:2f:c8:05:59:b5:
fe:65:df:eb:37:8f:d0:a0:97:96:c7:58:0c:40:4d:ae:38:24:
5b:6e:ef:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:14:23 2025 by rpki-client