Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: DBZ+xumUkEUq+bCT7F5+j1Kv472nEdgcBzLtTpgi+iQ=
Subject key identifier: 5E:57:2F:6B:9C:AD:CC:8C:C0:2E:2D:F1:66:9F:74:73:39:D5:7E:6D
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 2FFD0DA53BB0184041D0C527FE4F1C803BEA77F9
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa
Signing time: Sun 28 Jul 2024 06:00:01 +0000
ROA not before: Sun 28 Jul 2024 05:55:01 +0000
ROA not after: Sun 27 Jul 2025 06:00:01 +0000
asID: 139994
IP address blocks: 140.213.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Apr 2025 04:03:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:fd:0d:a5:3b:b0:18:40:41:d0:c5:27:fe:4f:1c:80:3b:ea:77:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Validity
Not Before: Jul 28 05:55:01 2024 GMT
Not After : Jul 27 06:00:01 2025 GMT
Subject: CN=5E572F6B9CADCC8CC02E2DF1669F747339D57E6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dd:13:dd:c5:fa:13:50:ec:60:f3:94:82:7b:
b9:a7:ae:4c:60:aa:92:4d:66:3f:bd:64:37:b8:32:
85:61:b3:17:ff:b3:60:27:28:1c:8a:5b:e4:c5:31:
95:51:ca:c0:e1:b0:29:8e:ff:5c:95:d5:93:11:52:
8b:72:49:5a:5a:d5:bf:6a:3a:08:b0:bb:fa:b6:30:
9f:36:e5:2d:e3:67:45:e5:ca:91:4e:3e:29:18:8f:
44:cc:0b:bd:fa:03:fd:ae:d5:be:8b:24:85:55:53:
55:a7:36:f2:1b:c9:e2:38:dd:07:b5:59:d1:ad:7d:
de:68:23:5d:4a:f2:0a:10:fe:87:03:9b:11:fd:8f:
87:f9:96:50:b5:ab:36:64:17:a7:7c:e5:ef:d5:76:
a5:f6:26:61:02:77:3e:13:dd:e8:53:6b:da:81:5b:
e8:d4:1e:7b:19:27:59:70:ee:6c:bd:90:07:b0:77:
77:80:50:b8:1f:a2:9f:33:d7:9f:23:15:9b:05:7a:
72:17:6a:47:c7:3a:c9:b8:42:76:94:70:63:e0:51:
72:00:d6:86:79:d9:9c:f3:25:58:c5:51:b4:38:e8:
73:40:5f:d2:81:58:2b:23:29:cc:95:9c:a1:b0:37:
98:46:5d:13:7a:bd:26:34:60:67:83:b4:8f:0d:80:
a3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:57:2F:6B:9C:AD:CC:8C:C0:2E:2D:F1:66:9F:74:73:39:D5:7E:6D
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139362e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.196.0/24
Signature Algorithm: sha256WithRSAEncryption
98:5a:b5:42:ef:e9:30:9c:ff:c9:bb:8c:5a:0c:a2:f1:41:0f:
6c:7f:25:db:9c:bb:f4:46:ec:36:b8:51:ff:06:a8:90:49:9d:
a0:4f:6e:66:65:93:87:a4:a1:fb:60:06:06:9b:30:dc:f3:21:
c2:50:ce:d9:35:7d:92:ef:74:94:e0:02:0f:ee:51:1b:4c:3e:
de:a8:90:40:cc:e9:26:de:61:28:9d:72:7d:2b:f0:40:23:55:
ba:d0:be:4b:86:e5:83:fc:fc:00:f1:c7:64:a0:f6:ce:ba:f4:
8d:81:60:c7:bf:b9:1f:48:ad:cc:1c:32:e9:82:b2:99:62:89:
b9:fd:da:71:10:22:2c:f0:4a:49:5f:72:50:b8:10:3e:dc:16:
e0:c7:65:10:b5:d9:89:03:bb:17:2d:2a:24:7a:34:bb:05:2f:
7b:f2:8a:b2:d3:b3:4e:e7:82:83:ea:0d:98:13:b9:31:fc:9f:
6b:b7:a3:6c:00:42:10:2b:30:81:73:31:d0:d3:48:b0:8d:24:
94:60:58:3c:28:a9:a0:9d:cd:0f:08:cd:de:ec:61:df:81:35:
2a:c2:81:ff:12:cf:bf:4e:8c:44:1a:5b:a6:8b:ed:e7:96:5f:
e5:26:b1:b4:7f:91:16:31:80:22:1e:13:74:8c:df:22:08:80:
2c:5d:53:b5
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIUL/0NpTuwGEBB0MUn/k8cgDvqd/kwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyODA1NTUwMVoX
DTI1MDcyNzA2MDAwMVowMzExMC8GA1UEAxMoNUU1NzJGNkI5Q0FEQ0M4Q0MwMkUy
REYxNjY5Rjc0NzMzOUQ1N0U2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALLdE93F+hNQ7GDzlIJ7uaeuTGCqkk1mP71kN7gyhWGzF/+zYCcoHIpb5MUx
lVHKwOGwKY7/XJXVkxFSi3JJWlrVv2o6CLC7+rYwnzblLeNnReXKkU4+KRiPRMwL
vfoD/a7VvoskhVVTVac28hvJ4jjdB7VZ0a193mgjXUryChD+hwObEf2Ph/mWULWr
NmQXp3zl79V2pfYmYQJ3PhPd6FNr2oFb6NQeexknWXDubL2QB7B3d4BQuB+inzPX
nyMVmwV6chdqR8c6ybhCdpRwY+BRcgDWhnnZnPMlWMVRtDjoc0Bf0oFYKyMpzJWc
obA3mEZdE3q9JjRgZ4O0jw2Ao8sCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBReVy9r
nK3MjMAuLfFmn3RzOdV+bTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz
MjMxMzMyZTMxMzkzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz
NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAIzVxDANBgkqhkiG9w0BAQsFAAOCAQEAmFq1Qu/pMJz/ybuM
Wgyi8UEPbH8l25y79EbsNrhR/waokEmdoE9uZmWTh6Sh+2AGBpsw3PMhwlDO2TV9
ku90lOACD+5RG0w+3qiQQMzpJt5hKJ1yfSvwQCNVutC+S4blg/z8APHHZKD2zrr0
jYFgx7+5H0itzBwy6YKymWKJuf3acRAiLPBKSV9yULgQPtwW4MdlELXZiQO7Fy0q
JHo0uwUve/KKstOzTueCg+oNmBO5Mfyfa7ejbABCECswgXMx0NNIsI0klGBYPCip
oJ3NDwjN3uxh34E1KsKB/xLPv06MRBpbpovt55Zf5SaxtH+RFjGAIh4TdIzfIgiA
LF1TtQ==
-----END CERTIFICATE-----
Generated at Sun Apr 13 10:37:59 2025 by rpki-client