Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313339393439.roa
File:                     3130332e3132362e3131392e302f32342d3234203d3e20313339393439.roa (raw, json)
Hash identifier:          S8wHQHvMCO+ia5NRrdl7yGsp87eg+zQt574AYHq9ce4=
Subject key identifier:   17:59:A9:06:B2:19:40:BE:F1:68:BE:25:71:7F:26:33:FA:65:49:42
Certificate issuer:       /CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8
Certificate serial:       773677250C09CFC03467862410E5BB955FFE38DE
Authority key identifier: 6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313339393439.roa
Signing time:             Wed 31 Jan 2024 03:46:41 +0000
ROA not before:           Wed 31 Jan 2024 03:41:41 +0000
ROA not after:            Wed 29 Jan 2025 03:46:41 +0000
asID:                     139949
IP address blocks:        103.126.119.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 04 Nov 2024 06:23:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            77:36:77:25:0c:09:cf:c0:34:67:86:24:10:e5:bb:95:5f:fe:38:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8
        Validity
            Not Before: Jan 31 03:41:41 2024 GMT
            Not After : Jan 29 03:46:41 2025 GMT
        Subject: CN=1759A906B21940BEF168BE25717F2633FA654942
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:39:73:ee:5d:df:3f:fe:37:57:a2:41:61:e6:
                    c5:a1:70:54:73:d0:70:ca:d4:b5:d5:1c:f9:64:cd:
                    8f:83:bb:57:94:1f:8e:41:b4:0b:ab:cb:59:4e:e6:
                    4d:d1:46:83:5c:5e:2b:da:89:20:7e:f3:eb:57:7b:
                    7d:99:16:87:0c:ac:4b:87:f8:34:11:91:4a:d2:15:
                    3a:93:c3:5a:fa:f8:03:5c:bd:18:69:04:51:be:51:
                    ce:65:92:aa:96:8d:7a:81:cf:44:07:69:e6:d7:df:
                    36:79:47:e6:5c:36:e4:31:56:dc:b1:07:39:7f:d1:
                    e8:77:c6:3d:e9:ea:f4:93:b6:cb:7b:29:5d:c1:6b:
                    63:fb:c9:da:37:87:60:49:bc:e4:df:23:95:11:53:
                    1f:35:40:d0:d2:2e:b4:d5:f1:a8:9f:f7:24:2f:a6:
                    09:ee:52:2f:45:c1:0d:80:6b:88:39:c9:2f:c5:92:
                    4c:88:42:1b:68:1c:c0:6c:fd:cf:ff:2a:a5:76:8a:
                    ae:5b:c0:39:4f:72:b3:b0:aa:4b:5d:d7:9d:ad:34:
                    64:5d:64:6d:11:c9:e8:1b:29:fb:cb:3d:67:8e:a6:
                    ff:45:81:d9:a1:f7:dd:d8:85:37:a7:72:dc:1b:d4:
                    08:cf:06:9c:92:3a:38:1f:6c:32:9b:fa:67:c1:5a:
                    48:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:59:A9:06:B2:19:40:BE:F1:68:BE:25:71:7F:26:33:FA:65:49:42
            X509v3 Authority Key Identifier:
                keyid:6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313339393439.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.126.119.0/24

    Signature Algorithm: sha256WithRSAEncryption
         bd:a4:6d:65:a9:82:0e:dd:c9:4e:48:55:2d:ca:09:40:67:30:
         ce:96:e6:bc:b1:c8:b5:3d:38:7f:39:68:ca:97:29:22:72:38:
         7f:75:eb:51:2c:06:03:58:7d:b2:e2:f1:a9:d4:12:17:39:04:
         e0:09:e3:1e:ce:14:5d:78:6a:1c:28:a0:a1:ce:a3:67:af:3c:
         06:db:77:61:36:2e:39:d3:28:4b:9f:57:b5:1c:ce:59:a5:2d:
         4d:73:84:06:b4:40:6e:c3:a2:88:3c:29:42:85:e9:03:7f:8e:
         8b:d6:83:ef:79:1b:f0:d2:4a:21:7a:a0:69:dc:1d:bf:1c:46:
         bd:17:00:a4:c0:91:69:2a:e4:4d:ef:8b:24:b6:37:f3:25:a1:
         f9:51:dd:42:4d:ba:e4:ba:e9:16:8e:32:8e:58:22:0c:ef:c8:
         60:ba:bd:0c:5d:74:b9:5d:04:dd:c4:cb:7e:ee:a8:c5:d8:90:
         61:66:5e:a2:84:21:df:0f:29:67:a0:f8:58:46:ba:15:28:40:
         c1:fa:f5:30:3e:89:d8:de:7d:95:6d:29:17:64:45:0b:e9:5e:
         1b:91:98:21:c5:14:1d:32:54:25:4c:1c:ab:1c:56:c7:85:90:
         4a:74:40:8d:99:c9:d0:fa:ac:59:4c:3c:00:33:46:0f:35:51:
         5e:24:94:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 08:26:37 2024 by rpki-client on console-fra.rpki-client.org