Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa
File: 3135372e31352e34342e302f32342d3234203d3e20313532333931.roa (raw, json)
Hash identifier: SfrI7AGq+MrnsnFYlz2nc/CqrF1BiTchdaUC/zNj8bk=
Subject key identifier: C8:45:83:A5:5F:08:19:8D:98:02:C8:49:F2:76:DE:AC:DA:0D:A3:EF
Certificate issuer: /CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B
Certificate serial: 3F3185F55442CE94C08AAA4A7614FB5E6A1A0169
Authority key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa
Signing time: Fri 29 Mar 2024 05:54:00 +0000
ROA not before: Fri 29 Mar 2024 05:49:00 +0000
ROA not after: Fri 28 Mar 2025 05:54:00 +0000
asID: 152391
IP address blocks: 157.15.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 08:11:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:31:85:f5:54:42:ce:94:c0:8a:aa:4a:76:14:fb:5e:6a:1a:01:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B
Validity
Not Before: Mar 29 05:49:00 2024 GMT
Not After : Mar 28 05:54:00 2025 GMT
Subject: CN=C84583A55F08198D9802C849F276DEACDA0DA3EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:dd:3f:74:11:86:4e:09:e1:a1:45:8e:3b:11:
5c:03:b8:b1:56:3c:fc:48:67:2b:1f:c4:fd:d4:26:
b9:6a:dc:6d:93:ac:4c:37:a5:3f:5f:2b:57:81:82:
0b:0a:25:cc:4b:4a:a6:70:97:ee:eb:95:f2:51:9d:
d4:a7:f4:cc:71:c5:73:87:74:81:0f:92:56:0b:84:
1a:25:1d:49:11:62:cf:a5:ca:63:78:57:6a:22:74:
69:81:8c:be:4b:96:79:ad:52:24:f1:fb:33:ab:1d:
1a:4e:a1:31:43:36:9a:7b:74:27:30:bc:39:98:d6:
3d:08:88:7d:fa:76:d8:ff:34:6c:b3:18:2e:87:9d:
7a:e6:ca:b6:77:a3:60:b1:fe:3e:43:c0:92:65:69:
7e:67:9f:7a:30:79:da:4d:53:33:a4:e6:1c:b0:28:
ad:4f:e3:86:b2:06:da:8b:42:6e:c2:ac:1b:31:39:
df:68:78:5a:f9:61:1d:be:37:4b:5d:2d:10:a9:04:
e5:44:e7:58:0b:fc:28:b9:6a:a2:21:f1:88:09:0e:
ac:95:99:d4:2f:4f:8d:96:a2:d4:e6:56:29:4f:9e:
53:b1:44:11:77:36:e4:f3:97:3f:70:c7:ee:06:40:
e1:80:d6:7d:f7:4b:f0:86:bf:fa:b9:33:e8:c7:67:
8b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:45:83:A5:5F:08:19:8D:98:02:C8:49:F2:76:DE:AC:DA:0D:A3:EF
X509v3 Authority Key Identifier:
keyid:46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.44.0/24
Signature Algorithm: sha256WithRSAEncryption
90:89:f7:85:a9:19:3b:40:c3:03:5f:5d:f8:2d:41:5a:ad:fc:
de:36:d4:25:20:46:17:72:e7:10:5a:d0:23:7c:91:72:89:a0:
99:ee:26:fb:5c:4c:d2:5c:58:b8:a8:0f:63:63:d4:3e:8a:07:
ab:74:32:2d:8b:dd:b8:fe:8a:3a:d2:97:c8:24:92:c9:50:58:
00:23:e3:22:69:09:93:68:37:e2:8c:f4:3c:c5:20:4e:f0:e0:
e4:c5:e2:92:34:d5:6b:c8:21:6f:d9:e9:b5:18:51:26:0d:72:
e1:18:ce:ad:90:7d:a2:50:b3:da:fa:0c:20:df:f8:2f:e9:b4:
93:5f:64:2d:db:12:20:af:1b:7f:17:03:c6:2e:28:7a:fa:d3:
60:c5:0e:44:9c:17:ea:e6:cc:57:88:9f:7f:8d:43:30:1b:d0:
9a:ca:5e:5b:4a:9d:f1:8c:0a:d7:91:66:f4:80:9c:82:00:f8:
d5:5d:48:7d:ee:bd:7d:b4:27:d8:2c:a9:0c:a7:2c:64:16:9c:
af:22:c8:08:81:87:38:b6:7d:c1:4b:1b:bf:2f:62:57:b0:5f:
9f:d6:ef:44:18:5f:18:0d:43:a2:da:26:cc:7b:36:6d:ae:68:
59:fe:77:61:e9:2c:13:11:5c:af:5b:c4:3f:bc:c7:6b:7a:30:
a7:51:6d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:08 2024 by rpki-client on console-fra.rpki-client.org