Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32342d3234203d3e20313337333439.roa
File: 3130332e3137352e3234302e302f32342d3234203d3e20313337333439.roa (raw, json)
Hash identifier: EEEVDelGoqZwggBURRWomvVEBrXRkUyHxhngPvlvblc=
Subject key identifier: 68:D3:2F:D2:9D:0F:E9:4B:82:19:54:CC:D7:17:C4:79:20:86:62:E4
Certificate issuer: /CN=A9DD956A549689BA0A3E2FC62291352AAABD591B
Certificate serial: 505A9A449F82CD27CF7044D492A6E02275EE4343
Authority key identifier: A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32342d3234203d3e20313337333439.roa
Signing time: Tue 31 Oct 2023 07:15:25 +0000
ROA not before: Tue 31 Oct 2023 07:10:25 +0000
ROA not after: Tue 29 Oct 2024 07:15:25 +0000
asID: 137349
IP address blocks: 103.175.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 04:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:5a:9a:44:9f:82:cd:27:cf:70:44:d4:92:a6:e0:22:75:ee:43:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9DD956A549689BA0A3E2FC62291352AAABD591B
Validity
Not Before: Oct 31 07:10:25 2023 GMT
Not After : Oct 29 07:15:25 2024 GMT
Subject: CN=68D32FD29D0FE94B821954CCD717C479208662E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a9:e5:8d:68:e8:f9:19:df:16:53:0c:84:eb:
65:a6:17:3f:89:db:f4:26:a7:5c:87:d7:70:17:36:
2b:a8:b5:ea:b0:57:33:0b:c2:ea:93:52:27:12:f9:
8d:cb:67:c7:95:8e:5c:5f:64:37:1e:55:4a:49:f2:
60:c1:50:b2:6c:a4:dc:39:8c:e6:e4:ce:5b:c1:af:
1a:64:3a:5e:fd:69:ed:99:8f:48:b5:5e:86:f1:44:
98:89:64:02:9a:a9:38:a8:58:a3:e4:f8:9e:0f:fd:
ad:93:d7:fe:d7:16:22:e6:86:9f:48:78:0c:a9:e4:
9e:15:08:12:b1:26:bc:1c:da:f2:f3:5a:f7:ce:cf:
7f:c8:da:ad:41:06:13:6e:59:f9:90:28:6e:de:5c:
99:b7:87:ff:5f:48:bc:ff:9b:23:9f:07:43:e5:91:
13:19:85:08:41:ee:fb:88:09:9a:19:2b:af:d4:17:
cc:56:5e:12:8b:0a:68:63:5e:67:9d:d5:fd:50:da:
0f:04:f0:c8:1e:a8:63:43:23:a9:07:12:33:6b:3f:
ad:e9:75:23:8b:1f:d3:40:ae:47:1f:95:55:e8:c6:
6e:7f:65:a0:cf:06:ac:14:74:ba:c3:52:0d:be:df:
08:19:f5:09:0b:a5:f4:77:83:a5:1f:dd:4b:58:27:
7f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D3:2F:D2:9D:0F:E9:4B:82:19:54:CC:D7:17:C4:79:20:86:62:E4
X509v3 Authority Key Identifier:
keyid:A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/A9DD956A549689BA0A3E2FC62291352AAABD591B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32342d3234203d3e20313337333439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.175.240.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:b3:6a:ff:b2:96:dc:3b:8a:af:60:55:11:df:30:e0:70:4f:
3c:cc:0e:1c:d5:fa:a0:b6:43:51:b8:d0:5b:38:15:fc:3f:c5:
fd:70:81:a7:1a:3a:f9:f0:72:df:a6:79:78:bf:5d:64:24:82:
57:de:b1:ec:2a:70:b8:f8:ed:31:13:2f:8e:78:13:66:82:b2:
66:c6:97:e1:e6:d5:54:87:05:69:aa:ed:d0:4e:55:b8:c1:88:
c6:e3:be:30:67:df:fd:48:8d:fd:5b:3b:07:73:bf:08:97:c6:
71:67:4c:52:f8:8f:8b:a8:0d:46:43:c0:95:ed:6e:9e:fd:19:
1b:c3:2a:a1:5e:b1:eb:2f:c6:21:4c:ae:41:1c:f9:3a:9e:1c:
61:ea:e6:0b:69:28:4c:e9:79:f4:6a:c4:93:96:66:cd:00:8c:
87:78:05:9f:52:70:25:bf:b0:19:d5:80:1a:ae:98:5f:b3:66:
62:b6:38:e8:4f:d4:c4:de:f1:12:51:3a:83:46:2d:76:59:cb:
41:73:ef:7c:ce:36:8c:c1:bc:ee:48:62:e3:0f:bb:9c:86:f2:
b4:f3:2c:b1:12:ee:29:25:38:ea:7e:90:a8:71:48:6e:4c:4b:
cc:82:d8:8c:b4:6b:3b:9c:6e:5f:c1:de:22:1d:04:25:c6:07:
79:0a:b4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 14:28:03 2024 by rpki-client on console-fra.rpki-client.org