Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231342e302f32332d3234203d3e20313532333738.roa
File: 3135372e31352e3231342e302f32332d3234203d3e20313532333738.roa (raw, json)
Hash identifier: uVSfeB0LX3uVjkrffVT84cD1BYGCf1f2Pn9BJNDdfwc=
Subject key identifier: 40:83:B3:88:03:27:A8:78:BC:E7:D3:ED:66:7B:A9:89:A3:0F:AF:AE
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 49E831D87BABA54462385B8D40F78C7C9B8EC0A6
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231342e302f32332d3234203d3e20313532333738.roa
Signing time: Fri 24 Jan 2025 08:00:00 +0000
ROA not before: Fri 24 Jan 2025 07:55:00 +0000
ROA not after: Fri 23 Jan 2026 08:00:00 +0000
asID: 152378
IP address blocks: 157.15.214.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:e8:31:d8:7b:ab:a5:44:62:38:5b:8d:40:f7:8c:7c:9b:8e:c0:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 24 07:55:00 2025 GMT
Not After : Jan 23 08:00:00 2026 GMT
Subject: CN=4083B3880327A878BCE7D3ED667BA989A30FAFAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e9:22:76:bc:65:37:6d:ed:52:b4:c4:ca:c1:
fc:bd:43:48:aa:6e:e1:bd:53:e4:b9:52:2d:c5:56:
6e:12:6e:65:02:1c:3e:c3:53:73:dc:d7:90:38:09:
08:a4:00:03:40:1f:c0:e2:3c:11:a5:06:1f:47:7f:
30:5a:ec:7c:38:a4:0f:f5:04:6c:ab:be:e2:5b:62:
66:0b:ee:18:4b:98:a9:64:f2:55:6b:79:8c:2d:cd:
fa:e0:11:cb:4a:4c:6a:f4:19:2c:06:8b:7d:bc:50:
6b:3a:ae:76:a6:fc:61:49:28:b0:b2:27:39:05:4b:
7a:9b:45:3f:7f:6a:f3:dd:d1:ee:b3:1d:c3:f4:8f:
62:01:ab:c1:fe:33:62:7f:07:ba:2a:a7:cb:79:f3:
9f:62:0a:2a:e3:c5:4a:97:c7:0a:ac:69:22:59:9b:
39:6c:77:a9:38:b8:50:db:92:7f:56:53:e1:e6:a9:
9f:0e:3a:ea:10:ef:5e:62:28:fc:43:dd:23:6c:fc:
50:ca:40:65:be:5c:d3:22:ee:79:aa:0b:69:49:e9:
af:fb:bd:c1:40:d8:b7:9e:49:4d:89:e3:c7:92:1d:
9b:39:ae:01:bb:f6:05:3b:31:c4:15:c2:fe:87:0d:
99:5c:38:ed:74:69:29:93:0f:83:f2:0d:e9:98:9e:
c6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:83:B3:88:03:27:A8:78:BC:E7:D3:ED:66:7B:A9:89:A3:0F:AF:AE
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231342e302f32332d3234203d3e20313532333738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.214.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:3f:71:c8:d0:ce:a8:f1:4b:73:c0:f5:05:82:4a:94:6e:36:
aa:60:5d:f6:55:80:f2:cf:9b:00:af:3b:cf:05:3f:c7:b5:0e:
c5:32:84:4e:a7:08:d5:ec:c1:96:fe:74:3d:74:c3:f8:22:aa:
4d:24:97:32:4a:18:ee:b4:90:ab:5d:f0:91:4e:97:5d:ea:7f:
89:30:49:c3:8c:7a:91:82:2e:8d:01:70:ff:e6:cd:14:55:ca:
9b:8e:2d:99:f2:69:fc:4d:55:9a:d5:b5:bc:0a:9d:4a:94:52:
6a:d4:e4:07:94:6d:b2:84:9e:f4:cc:1c:da:8c:18:88:a0:9d:
af:fa:a7:73:ae:ac:d4:33:fc:d5:b2:0c:0d:9c:d7:b3:d1:d7:
c0:db:11:b2:94:e4:b7:65:d5:2c:a8:a0:bb:30:b3:92:8c:f5:
e6:5c:cf:e7:57:b1:b8:00:65:ae:12:dc:55:04:16:7d:c2:c7:
f2:bb:2c:74:00:90:59:b7:3d:b7:c7:6c:28:c9:5d:58:61:2a:
a7:50:9d:2e:d4:e5:6b:aa:8e:4c:63:15:c0:0d:18:7a:ae:4a:
2e:e1:70:2e:e2:e3:34:69:d4:c6:fe:11:13:8f:1e:fb:5c:69:
59:cc:a7:0c:a9:c1:36:98:a1:a6:87:b2:49:eb:5e:40:fe:75:
36:2e:96:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:47:33 2025 by rpki-client