Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3135372e302f32342d3234203d3e20313532303833.roa
File: 3135372e31302e3135372e302f32342d3234203d3e20313532303833.roa (raw, json)
Hash identifier: gEgLUoF7lnEVB3p3rr3MIWFf77jfQMCqHOUz3KVVZjg=
Subject key identifier: D2:75:90:60:72:5E:BC:60:D6:F3:20:3E:9F:03:97:C9:E9:0A:29:F0
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 49B40A1EB142DC335CDAD671CCEC85739333A895
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3135372e302f32342d3234203d3e20313532303833.roa
Signing time: Fri 13 Dec 2024 07:00:00 +0000
ROA not before: Fri 13 Dec 2024 06:55:00 +0000
ROA not after: Fri 12 Dec 2025 07:00:00 +0000
asID: 152083
IP address blocks: 157.10.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:b4:0a:1e:b1:42:dc:33:5c:da:d6:71:cc:ec:85:73:93:33:a8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 13 06:55:00 2024 GMT
Not After : Dec 12 07:00:00 2025 GMT
Subject: CN=D2759060725EBC60D6F3203E9F0397C9E90A29F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:15:21:b6:a3:b6:bb:3e:b5:98:52:7c:a0:c6:
24:b5:ac:d5:c0:1a:ba:03:7f:49:54:92:d2:9f:ef:
f6:59:a4:5d:c8:96:5c:01:9f:61:13:d1:77:d5:26:
38:9a:58:be:09:a6:e9:1b:44:d6:4f:f9:cd:88:26:
07:f3:c3:28:f7:83:09:9c:2b:ec:b0:5b:9c:4b:40:
a6:1c:b2:72:b9:3f:58:5f:0c:05:5b:b1:4c:f7:b1:
21:9e:b0:c2:7c:9f:75:e0:e5:9c:a6:fb:8e:d0:19:
6c:08:77:83:50:1e:0d:83:49:7b:93:bb:8c:79:3b:
4a:85:d8:74:f6:3b:f4:15:48:31:f3:26:5e:a0:bc:
ae:c9:2e:02:a6:e5:f6:94:c3:74:49:73:2e:23:2c:
fe:22:cd:56:7d:88:2c:11:f4:e5:1c:ad:29:10:40:
fa:46:d2:76:b9:b2:5a:1d:9c:19:e1:8d:66:09:d9:
7f:8e:49:b3:a7:23:08:8f:13:8a:7d:b6:39:d4:04:
e3:b5:bf:26:26:c0:2d:d7:8d:cf:6f:6c:37:4c:28:
a9:28:01:6c:bb:46:9a:57:5b:ef:39:8a:77:7a:a6:
f9:47:cd:b0:cb:d5:68:e0:e3:83:74:c1:33:6c:09:
68:3f:7f:f4:0d:a3:0d:32:04:25:6f:0c:4b:19:4e:
27:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:75:90:60:72:5E:BC:60:D6:F3:20:3E:9F:03:97:C9:E9:0A:29:F0
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3135372e302f32342d3234203d3e20313532303833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.157.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d4:f9:39:cd:36:3d:a7:8c:4f:7c:ec:08:b3:bd:0e:52:db:
ff:36:79:d0:d4:2f:00:be:f1:51:ce:c0:dd:d1:1d:3a:45:4a:
c1:f4:4b:32:f7:b1:44:0a:91:c7:0e:e2:25:ae:00:62:4c:69:
d8:f1:16:de:6c:3e:39:be:c3:dc:79:98:de:19:b1:42:a4:6b:
61:81:b0:52:ec:07:bc:e2:36:0a:a4:3d:1e:55:05:d2:e5:a4:
fd:72:48:f4:56:0f:ec:6a:a9:e2:db:82:fa:29:33:8b:b2:3f:
44:ed:79:46:56:44:15:4b:74:8a:00:ce:63:fb:c9:6e:86:62:
13:1f:b5:42:17:d4:75:57:4d:42:6c:44:ed:91:2d:ae:09:a2:
37:7f:a3:8c:10:e1:14:65:1a:a2:37:63:e0:d4:41:83:33:10:
6c:d1:28:bd:38:1f:e2:10:75:77:d7:c9:1d:b3:71:b2:d7:b3:
4a:89:cc:5b:b6:54:c8:7f:16:c7:7b:82:fa:0a:21:60:ed:28:
f3:82:5e:5f:95:af:19:cd:c4:7d:7f:65:a7:71:78:0a:42:34:
8e:70:a6:ca:93:e5:05:bc:73:bf:55:32:0c:0d:37:5d:b9:ec:
ec:1d:81:36:2b:dc:89:a5:cd:cc:a7:e0:28:f7:9b:4f:07:c1:
4d:8f:4a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:17:24 2025 by rpki-client