Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa
File: 3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa (raw, json)
Hash identifier: nfd6VAtijTxKhS52VrSgYUi1LKqktZgYv2Km/8C1tb8=
Subject key identifier: BC:24:AA:B4:05:43:5F:7E:B4:1F:FD:62:2F:51:7A:6E:58:98:4F:A5
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 175E0DB12EBDBB5FACF5D91D0366B9461BE5859C
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa
Signing time: Thu 02 Jan 2025 09:00:00 +0000
ROA not before: Thu 02 Jan 2025 08:55:00 +0000
ROA not after: Thu 01 Jan 2026 09:00:00 +0000
asID: 152359
IP address blocks: 157.10.254.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:5e:0d:b1:2e:bd:bb:5f:ac:f5:d9:1d:03:66:b9:46:1b:e5:85:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 2 08:55:00 2025 GMT
Not After : Jan 1 09:00:00 2026 GMT
Subject: CN=BC24AAB405435F7EB41FFD622F517A6E58984FA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:64:33:49:5e:8c:a4:9e:7c:49:f9:b5:42:c0:
51:50:a7:8d:c0:91:b1:67:64:8b:49:5a:84:13:f6:
e9:8e:b2:bb:11:51:db:fb:d6:e5:d4:aa:18:8e:01:
61:9c:a7:22:48:ef:4c:2d:6a:9e:18:67:27:80:1d:
50:34:c8:32:e8:95:7c:9e:9a:0a:7d:47:05:f9:85:
f5:c6:52:8a:d6:52:25:72:b9:aa:9a:3b:5c:2b:8e:
ad:f6:03:ad:f1:53:1d:4b:b6:23:27:3d:b5:af:10:
54:e4:b1:2d:30:51:a7:52:7f:85:50:4d:b2:d0:4c:
04:4c:03:a2:43:ad:c5:4a:0b:50:46:20:ca:1f:10:
8b:92:0a:d2:5b:09:40:56:b0:4b:bd:41:b3:0d:10:
ce:6d:27:bb:7e:5c:20:ed:98:a3:be:17:a7:e3:4d:
aa:04:b4:dc:77:9c:89:32:04:f5:5f:db:40:b6:19:
46:73:aa:39:9e:10:bd:b3:75:b1:07:6a:7b:2f:65:
5f:eb:8b:78:4d:c3:cb:4b:73:11:32:b6:bf:e3:5d:
08:bd:bc:a3:dd:95:e4:ed:79:25:99:78:6c:04:b9:
c8:58:f0:87:7f:cf:29:b8:45:4b:a1:5c:d8:cd:b3:
7b:2a:57:51:b4:66:2f:59:4e:fe:5a:1c:58:5d:29:
f0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:24:AA:B4:05:43:5F:7E:B4:1F:FD:62:2F:51:7A:6E:58:98:4F:A5
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3235342e302f32332d3234203d3e20313532333539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.254.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:47:ac:39:28:73:56:ff:75:e8:f3:3b:31:74:50:3c:95:32:
b0:09:fc:c8:25:5c:7c:76:9e:9b:fd:0e:0c:b9:65:f3:20:4c:
42:d9:f2:93:40:45:6a:f7:fa:66:60:cc:89:af:b9:9b:35:1d:
3c:3e:bc:60:a4:4c:0d:03:0a:7a:3c:34:f9:ac:65:da:73:83:
34:44:f6:0a:e3:e2:ff:b1:27:0c:a6:af:3e:bb:88:cb:69:cb:
73:f2:75:fc:7f:fa:16:ff:28:b7:c3:e0:28:c2:1c:2b:7d:3c:
b3:e0:6a:7d:fb:6b:e3:7e:3f:77:cf:5e:f6:43:f8:ee:95:0a:
38:0f:0c:2f:f0:f4:dd:08:fd:32:80:27:12:46:fb:04:7d:97:
9f:3e:f8:2c:98:6e:0d:87:52:6f:e7:31:87:f8:47:a9:42:5c:
09:8a:fa:e3:a1:eb:ef:5b:0d:cc:ba:fe:36:78:f9:24:cc:a8:
d2:05:58:bb:85:5c:ca:bd:49:35:b9:43:e7:33:87:e3:60:78:
4e:9c:93:61:d0:66:ac:72:5c:26:34:df:6c:8d:3a:a9:bc:e1:
a8:67:49:14:bb:4a:f9:df:78:bb:59:1d:9a:1d:d9:85:d9:42:
86:ea:3b:f2:1b:4b:5a:7c:6b:f3:c9:56:ac:03:3a:68:c9:4c:
1f:95:e4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:39:11 2025 by rpki-client