Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234312e302f32342d3234203d3e20313337333439.roa
File:                     3130332e3137352e3234312e302f32342d3234203d3e20313337333439.roa (raw, json)
Hash identifier:          qW0hR+s5UmCqTRd4fVDFaUTSoJC0FuMStO1ENVSuLOU=
Subject key identifier:   7D:2C:4A:FE:08:89:24:1A:DE:76:78:E2:D8:31:00:FE:05:4F:46:BB
Certificate issuer:       /CN=A9DD956A549689BA0A3E2FC62291352AAABD591B
Certificate serial:       73048BF6C2816D804231E9922F3FB43A66D68120
Authority key identifier: A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234312e302f32342d3234203d3e20313337333439.roa
Signing time:             Tue 31 Oct 2023 07:15:37 +0000
ROA not before:           Tue 31 Oct 2023 07:10:37 +0000
ROA not after:            Tue 29 Oct 2024 07:15:37 +0000
asID:                     137349
IP address blocks:        103.175.241.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jul 2024 04:33:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            73:04:8b:f6:c2:81:6d:80:42:31:e9:92:2f:3f:b4:3a:66:d6:81:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9DD956A549689BA0A3E2FC62291352AAABD591B
        Validity
            Not Before: Oct 31 07:10:37 2023 GMT
            Not After : Oct 29 07:15:37 2024 GMT
        Subject: CN=7D2C4AFE0889241ADE7678E2D83100FE054F46BB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:5f:32:71:f9:0e:ee:bb:f1:f5:95:6a:21:f9:
                    16:4a:d1:e5:bf:a1:d4:8b:62:58:b1:d4:82:67:33:
                    e6:7b:27:77:be:1c:c0:d1:6f:7e:6e:d6:e4:f7:12:
                    7f:78:26:50:ea:a2:6b:d3:73:07:41:52:f2:af:21:
                    c1:6b:9b:5c:57:1a:dc:34:a2:a5:19:d0:08:3f:a2:
                    4d:e9:61:0b:9c:56:22:bf:a6:61:a6:4d:a4:b2:f9:
                    d4:48:f6:37:68:93:06:b4:a1:27:be:ef:3c:35:f1:
                    54:b8:04:f7:ca:e8:21:99:b8:29:bb:35:7c:c0:6d:
                    59:b5:50:bd:dc:83:ac:56:ec:2e:9d:7c:ef:41:a5:
                    b9:af:86:d5:78:24:eb:6e:0b:94:05:cb:1e:1a:e7:
                    c1:eb:3f:84:b4:bf:54:12:c7:6a:25:8e:98:e3:33:
                    6e:1e:e2:5d:4b:e7:36:eb:6f:fc:4a:fa:23:14:cb:
                    c8:d5:b3:95:1c:9d:05:b2:79:52:4e:5c:2d:ba:be:
                    eb:0f:53:d5:be:9f:f1:84:53:de:db:fc:45:a5:86:
                    1d:47:a8:02:d0:de:0a:f0:9c:69:79:23:01:76:c9:
                    b8:60:07:75:56:5b:a5:67:dc:e3:d9:85:2e:a5:15:
                    75:e9:86:a8:cd:78:0c:56:97:40:e4:0e:e7:ee:02:
                    2b:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:2C:4A:FE:08:89:24:1A:DE:76:78:E2:D8:31:00:FE:05:4F:46:BB
            X509v3 Authority Key Identifier:
                keyid:A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/A9DD956A549689BA0A3E2FC62291352AAABD591B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234312e302f32342d3234203d3e20313337333439.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.175.241.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b1:d9:b4:19:e9:b3:ec:f5:a5:4c:6e:c8:1f:62:18:db:05:21:
         b8:ba:ad:07:37:4f:3d:51:6f:a8:a5:f0:4b:e5:2a:a3:ee:9e:
         44:26:a2:37:b3:f3:49:3c:8d:6d:d7:ed:6f:06:34:4f:9e:19:
         1f:75:17:6d:79:25:92:b7:d5:3e:43:95:b8:03:ca:e4:63:15:
         05:4a:41:ff:fa:80:89:84:55:b0:ba:d1:47:85:af:ad:8e:fe:
         5b:92:1c:d6:e0:b3:86:5e:c2:d7:fd:50:c6:05:c1:4c:2b:c8:
         5c:39:2f:4e:fe:cc:bb:43:67:f4:1f:5c:2c:7c:ac:2b:83:7d:
         32:45:fd:f8:77:2f:36:6c:16:6c:6b:8c:c3:48:3e:28:63:4c:
         83:d0:d9:88:92:e1:70:41:0e:b7:02:10:09:8d:71:23:3c:58:
         73:36:33:93:e2:35:5f:2f:c1:78:4d:cd:d3:52:8a:b7:c1:71:
         80:f7:4c:a2:8f:f3:1b:35:46:6f:b0:1c:61:6e:4f:fc:32:99:
         53:1a:68:da:a4:92:6d:82:79:6a:df:5c:44:e4:4d:51:de:49:
         af:2d:d5:de:3b:ea:26:41:dd:b0:c2:80:ec:b0:90:59:4a:5a:
         fb:38:bf:f2:71:d6:5e:00:60:15:83:99:18:0e:a9:99:78:5e:
         84:24:08:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 14:28:05 2024 by rpki-client on console-fra.rpki-client.org