Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: Ee9XXvP+ZbV7f59wUu5jdHGiInzKjRaph67FS1lYhsU=
Subject key identifier: A7:41:D4:A4:7A:A9:B3:7B:2D:8B:93:74:EA:AC:2F:A5:D3:FB:DF:16
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 342BFF4D529EC357D21DC001F6D6EBC572FFB5D1
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa
Signing time: Sun 28 Jul 2024 05:00:00 +0000
ROA not before: Sun 28 Jul 2024 04:55:00 +0000
ROA not after: Sun 27 Jul 2025 05:00:00 +0000
asID: 139994
IP address blocks: 140.213.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Apr 2025 04:03:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:2b:ff:4d:52:9e:c3:57:d2:1d:c0:01:f6:d6:eb:c5:72:ff:b5:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Validity
Not Before: Jul 28 04:55:00 2024 GMT
Not After : Jul 27 05:00:00 2025 GMT
Subject: CN=A741D4A47AA9B37B2D8B9374EAAC2FA5D3FBDF16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:09:dd:e9:f8:45:35:eb:74:a2:78:70:aa:e8:
e8:38:11:52:ff:80:15:aa:14:9d:d1:80:d5:27:b9:
3e:97:df:78:95:d7:3a:9e:62:11:7d:dc:95:75:53:
8a:20:89:8e:36:45:3f:c1:a9:72:00:ca:91:0c:e6:
b5:7c:64:c8:1c:46:25:1b:34:6b:34:be:b6:a1:df:
ea:82:61:d6:0a:dd:28:6f:3c:3d:57:bd:59:f8:47:
8d:2a:75:d0:0d:55:6a:46:e0:26:9d:4d:6b:5b:13:
06:ab:9a:40:3d:56:2f:20:90:a5:0a:c9:ca:63:a6:
fd:5c:c4:62:94:a0:4a:b6:f9:65:7b:eb:68:f7:c6:
48:36:85:8a:d1:af:48:b1:cf:18:16:33:29:83:88:
7c:46:b8:d2:05:74:98:bf:da:aa:19:34:4f:a5:0c:
11:16:a1:32:95:13:5a:79:bb:f8:34:53:dc:8e:18:
69:6d:3e:8c:72:e3:8b:da:3b:d9:11:13:52:36:21:
28:a2:e2:6e:51:8c:a9:5b:e2:07:6a:2c:dd:b6:72:
67:6a:8c:0e:1b:6a:18:06:fa:22:fe:c1:96:bd:8d:
d3:97:a9:fe:32:7f:5d:b7:df:66:6c:aa:9a:51:c4:
a6:b5:4f:8a:05:79:29:d1:87:c7:da:77:75:97:bc:
1e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:41:D4:A4:7A:A9:B3:7B:2D:8B:93:74:EA:AC:2F:A5:D3:FB:DF:16
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230322e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.202.0/24
Signature Algorithm: sha256WithRSAEncryption
73:2f:83:04:8e:bd:ad:f1:da:80:b8:1f:6d:88:53:ce:8a:3e:
8d:33:48:6b:19:5c:80:34:fc:bd:c2:30:d6:7f:d8:6d:95:be:
31:b9:9c:ff:65:fc:41:2f:21:a9:1d:c4:c6:ad:f6:d5:7b:0f:
8a:b1:ea:cf:6d:f8:bd:8c:cb:bc:ba:54:eb:29:de:21:50:a5:
ec:2e:bc:9a:a3:42:e4:de:4a:2d:1e:15:61:76:55:67:92:0f:
d5:7b:31:c9:b3:25:3d:e9:5e:14:74:e3:ee:95:5f:86:19:d2:
38:20:87:19:39:51:7b:66:55:bb:73:2a:a5:14:4e:00:6a:c9:
32:e7:3e:57:71:a3:46:d7:41:6e:ca:1b:4f:c4:74:01:15:d2:
b5:f3:a5:9c:d2:4b:b0:e0:b8:c1:a1:73:9a:ec:b5:ef:91:4b:
63:84:e1:16:ce:97:80:02:b1:95:d1:3e:d3:75:9d:7b:52:fe:
72:f3:4f:9a:2c:f1:8d:e7:f4:8e:16:d3:30:83:22:fb:df:d9:
ae:84:19:d0:22:bb:a5:2f:0f:9a:02:d4:0b:19:26:9b:f9:92:
9a:0e:19:fa:07:8a:c7:c5:ff:13:16:2b:eb:70:5c:fe:9c:8f:
4b:8b:71:1e:ad:62:ac:49:e8:8a:00:53:36:53:42:a6:35:8e:
9d:31:e2:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 10:30:09 2025 by rpki-client