Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3234203d3e20313532333931.roa
File: 3135372e31352e34342e302f32332d3234203d3e20313532333931.roa (raw, json)
Hash identifier: TNk4onAa35vBWTPc2OIAD40iV2ncocl/ynkFFA2WCyo=
Subject key identifier: D3:E7:2D:15:3C:16:98:0C:AB:FB:96:C1:B4:99:97:0B:E1:CA:AA:3F
Certificate issuer: /CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B
Certificate serial: 36D33724F60395B24B429C44D68CD13DAB531C2B
Authority key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3234203d3e20313532333931.roa
Signing time: Tue 02 Apr 2024 03:49:20 +0000
ROA not before: Tue 02 Apr 2024 03:44:20 +0000
ROA not after: Tue 01 Apr 2025 03:49:20 +0000
asID: 152391
IP address blocks: 157.15.44.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 05:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:d3:37:24:f6:03:95:b2:4b:42:9c:44:d6:8c:d1:3d:ab:53:1c:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B
Validity
Not Before: Apr 2 03:44:20 2024 GMT
Not After : Apr 1 03:49:20 2025 GMT
Subject: CN=D3E72D153C16980CABFB96C1B499970BE1CAAA3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:13:b4:1d:b2:04:db:65:a9:ef:80:ad:6e:95:
59:3f:8b:72:1b:c0:90:86:92:89:be:f5:74:96:8c:
10:5f:06:b5:0d:ff:49:7b:10:df:4c:2b:07:de:b7:
09:c2:65:a4:4e:6b:38:50:c8:33:ae:da:f5:3c:db:
48:43:be:f5:bb:61:40:bc:9c:69:0c:3e:14:95:92:
1c:e8:e6:fe:62:77:9a:18:32:02:95:7d:0b:0a:a5:
38:5e:74:82:90:c6:13:57:ca:09:20:e3:44:6e:9a:
20:19:f4:40:f1:e1:f0:f0:af:75:99:eb:0f:aa:fd:
c3:34:0c:d8:39:1f:8f:5e:01:0a:45:01:72:1a:c9:
72:a1:aa:d3:f0:06:57:14:ec:3e:97:fe:8b:7c:1f:
a5:6b:ff:3c:27:f6:5d:2b:de:d7:5d:62:0f:2a:e5:
52:2c:74:bc:04:4e:44:dd:ce:57:0c:b3:d9:3e:21:
42:f0:df:da:e6:28:9a:e5:2c:f2:eb:57:ae:90:8c:
88:22:b0:19:aa:50:cd:37:5d:59:f1:f9:42:7c:e6:
89:98:54:8f:55:55:0d:7f:e5:a6:10:aa:31:96:74:
4a:51:21:f7:87:82:73:49:41:73:eb:40:35:54:53:
1b:1f:fb:c3:9e:fc:10:01:c3:14:75:0a:8b:a7:dc:
17:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E7:2D:15:3C:16:98:0C:AB:FB:96:C1:B4:99:97:0B:E1:CA:AA:3F
X509v3 Authority Key Identifier:
keyid:46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3234203d3e20313532333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.44.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:12:ff:7f:aa:96:8e:8c:28:cc:b3:01:29:9b:2e:ee:c5:ba:
d5:80:f2:02:0f:36:24:40:cb:92:b0:af:b0:f5:15:73:a8:7b:
c2:24:c3:b8:84:67:43:ad:68:a8:48:1f:6a:4e:e0:ca:0e:97:
6b:95:c2:44:35:17:a5:6b:f8:6c:ce:b8:c0:f3:f7:85:b8:6e:
3b:3a:90:a2:3b:f7:a8:3a:a0:4e:bb:0c:28:b5:28:c7:69:20:
ac:76:99:2b:91:25:0a:95:cd:9f:07:79:fa:84:72:f2:0c:53:
80:ef:f5:d1:26:ff:b3:d1:fb:71:08:aa:b6:a3:16:c1:81:c7:
c1:30:04:7d:62:d8:39:82:3f:36:67:c9:35:ad:55:b2:fc:50:
23:ed:8a:cc:e0:46:c3:c8:81:39:b4:b1:cf:f0:91:cd:7a:b1:
af:35:c5:d6:8d:ec:47:c3:a1:f3:8d:01:9e:e9:70:0f:c7:ff:
95:36:a5:b7:1b:21:4b:0d:9b:0a:25:34:dc:3a:4e:60:ad:45:
80:94:8b:e1:da:03:98:ad:56:35:98:9f:db:0e:1b:9d:fe:90:
9b:35:43:d3:65:a2:1a:9e:a1:96:a4:52:1f:50:8b:6c:b6:2d:
69:7d:e3:7a:14:5e:2a:11:58:35:07:fe:88:dc:e5:62:ba:e8:
70:ae:4b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 07:48:28 2024 by rpki-client on console-fra.rpki-client.org