Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32332d3234203d3e20313337333439.roa
File: 3130332e3137352e3234302e302f32332d3234203d3e20313337333439.roa (raw, json)
Hash identifier: Wlw4H0Pp0OIkqfAw+cqM7+AjZMOqE1urcL13Q2qYThs=
Subject key identifier: A1:C7:66:06:B9:FF:E0:A7:EB:E5:64:D5:07:24:23:7D:05:6F:81:02
Certificate issuer: /CN=A9DD956A549689BA0A3E2FC62291352AAABD591B
Certificate serial: 153872FBF73B87C40F637236D24CB2F8E1507A2B
Authority key identifier: A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32332d3234203d3e20313337333439.roa
Signing time: Tue 31 Oct 2023 07:15:47 +0000
ROA not before: Tue 31 Oct 2023 07:10:47 +0000
ROA not after: Tue 29 Oct 2024 07:15:47 +0000
asID: 137349
IP address blocks: 103.175.240.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 04:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:38:72:fb:f7:3b:87:c4:0f:63:72:36:d2:4c:b2:f8:e1:50:7a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9DD956A549689BA0A3E2FC62291352AAABD591B
Validity
Not Before: Oct 31 07:10:47 2023 GMT
Not After : Oct 29 07:15:47 2024 GMT
Subject: CN=A1C76606B9FFE0A7EBE564D50724237D056F8102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1b:ac:8d:ac:dc:34:bd:de:f8:a4:61:ce:3b:
4b:20:33:2e:81:5a:c7:0d:20:a9:e2:63:07:b8:11:
d2:39:e1:43:55:34:92:f2:49:ca:4f:57:de:fe:b3:
ad:8b:df:35:2a:58:b7:e9:f5:6f:8a:9f:b5:c9:ea:
ea:e7:cc:20:d3:0c:12:38:78:49:53:e0:be:b4:c8:
f9:1c:5d:8e:45:56:15:cb:9f:7a:ce:4b:83:15:48:
4e:e9:55:67:78:da:25:20:cb:7d:72:2f:78:5e:23:
01:30:7d:3c:58:fa:2c:0c:f6:a2:dd:88:cd:96:cd:
7b:00:52:5d:d7:c2:29:ce:97:eb:4c:07:b4:5e:49:
b2:bc:bd:84:bf:3d:6d:de:69:fa:01:2d:5b:ab:5f:
c7:fc:3e:b7:9f:eb:ea:f9:08:3d:2d:6b:c7:0b:1d:
53:b1:c8:01:72:f0:3c:72:e0:67:ec:a1:c3:38:4e:
35:97:78:bd:21:ca:f9:f2:c5:d0:34:37:3b:45:2d:
45:74:d1:08:fd:b8:63:45:11:0f:50:2c:0d:05:81:
17:34:42:60:7b:10:68:b2:83:2e:d7:47:27:53:a6:
a0:c1:35:50:22:38:28:4b:f4:bf:0f:14:3b:32:29:
64:ca:5e:53:19:6d:88:88:3c:9e:a9:d9:35:97:76:
7e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C7:66:06:B9:FF:E0:A7:EB:E5:64:D5:07:24:23:7D:05:6F:81:02
X509v3 Authority Key Identifier:
keyid:A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/A9DD956A549689BA0A3E2FC62291352AAABD591B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32332d3234203d3e20313337333439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.175.240.0/23
Signature Algorithm: sha256WithRSAEncryption
04:0e:d3:61:4a:00:b9:11:dc:7f:89:23:d1:ca:a1:7d:0c:89:
88:69:27:81:ad:b5:8e:70:96:d4:cb:c5:f1:d9:83:c4:82:7a:
36:dc:56:bd:e5:41:90:ce:2a:75:a4:d0:3b:84:e0:54:15:ba:
19:21:f9:a5:85:08:09:64:c1:c5:a7:b8:24:4f:68:47:48:ef:
3d:8c:34:5a:93:00:87:06:93:fc:14:ae:16:58:63:fc:60:21:
87:51:20:8a:1b:21:05:9c:38:40:ec:90:30:24:61:88:f7:f8:
6f:71:ff:bc:9a:48:99:17:aa:84:3d:03:0e:53:bc:68:82:0a:
0e:75:fa:af:98:d3:41:3a:ce:50:d4:f2:0d:74:91:c0:ea:05:
ce:8a:02:8d:0f:18:df:5f:4b:47:bb:d4:2d:ef:14:32:6b:d0:
68:94:96:99:84:64:b3:c2:95:2d:db:36:c6:14:0b:11:47:38:
b2:8f:67:31:cb:75:81:77:fe:d8:e7:10:3b:2c:75:df:61:a9:
3e:1d:31:87:b3:b1:2c:11:cd:b9:c2:fa:93:1f:37:dc:f7:e5:
da:08:83:f7:cb:69:01:f4:2c:75:09:02:6c:47:38:24:3e:ee:
cd:66:2c:57:7d:3d:b8:bb:77:32:ec:41:05:98:d7:b5:06:e9:
15:da:f2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 14:21:10 2024 by rpki-client on console-ams.rpki-client.org