Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e34382e302f32332d3234203d3e20313439333533.roa
File: 3135372e31352e34382e302f32332d3234203d3e20313439333533.roa (raw, json)
Hash identifier: OQR2MszPHEQjFcu898GeXQCEQbgtkaY0obTqVWJOlGk=
Subject key identifier: 4E:D5:68:0D:E6:FB:C5:99:39:A3:4E:14:4C:CA:F0:06:4E:F4:39:11
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 407F7CE49E408EA852E03DAF69A36B29781FBF20
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e34382e302f32332d3234203d3e20313439333533.roa
Signing time: Tue 07 Jan 2025 08:00:00 +0000
ROA not before: Tue 07 Jan 2025 07:55:00 +0000
ROA not after: Tue 06 Jan 2026 08:00:00 +0000
asID: 149353
IP address blocks: 157.15.48.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:7f:7c:e4:9e:40:8e:a8:52:e0:3d:af:69:a3:6b:29:78:1f:bf:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 7 07:55:00 2025 GMT
Not After : Jan 6 08:00:00 2026 GMT
Subject: CN=4ED5680DE6FBC59939A34E144CCAF0064EF43911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f9:68:69:3f:ed:17:41:4e:67:b2:74:94:bc:
46:76:e6:62:a6:e3:97:4a:af:af:5c:88:3b:01:e2:
e9:cc:c6:f0:67:5c:a2:f5:8a:e2:fc:40:8a:dd:64:
40:33:00:ae:59:8c:d0:71:d6:ca:e5:3b:3f:58:17:
a3:4f:d3:58:b2:c0:50:78:67:fd:67:4f:23:62:da:
de:27:7a:8c:08:08:a8:69:fd:90:a2:99:59:dc:a1:
5f:4a:0d:9c:dc:49:f8:88:63:63:93:c2:22:55:f2:
9a:49:8e:b7:ed:27:6a:cb:e0:98:eb:ba:aa:64:9d:
93:40:fb:e0:03:d0:87:4d:4c:71:57:b0:dc:35:4d:
d9:b1:01:79:7f:81:bf:5c:27:4a:4f:d6:2c:23:f3:
58:ba:e3:15:c7:fc:3c:2f:b1:a7:5a:1a:1c:10:7a:
61:8b:f5:90:5e:b3:2c:5a:ac:af:8b:a4:d4:89:1b:
ca:a8:85:54:0b:3e:b7:13:1b:3f:94:de:00:0e:ac:
91:9d:9f:19:48:99:03:d9:45:28:74:4a:e6:af:9b:
8d:15:6a:1e:24:4c:06:87:68:3a:3d:ca:66:38:f4:
ae:b4:70:f5:58:7c:b9:69:06:de:3e:19:54:57:3d:
1d:c3:33:72:a3:c6:54:b6:06:79:0e:90:67:7d:e2:
e4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D5:68:0D:E6:FB:C5:99:39:A3:4E:14:4C:CA:F0:06:4E:F4:39:11
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e34382e302f32332d3234203d3e20313439333533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.48.0/23
Signature Algorithm: sha256WithRSAEncryption
51:c2:14:c2:df:2b:61:f1:e6:bc:fb:90:5e:85:dc:c7:17:25:
ca:38:82:47:ab:d8:a0:7e:4e:36:01:a4:fc:0d:c4:d4:89:c0:
02:ca:f4:53:66:ca:22:c5:f3:24:c6:c8:2e:84:82:70:50:67:
30:85:44:0d:da:5c:23:74:5a:55:fd:27:4e:cf:fa:23:f9:06:
66:02:7b:5d:d2:e9:38:8b:95:da:4f:a9:72:ae:02:94:36:89:
57:cb:db:44:e9:c4:15:65:e4:27:f2:40:92:6d:8b:39:5b:27:
ac:b1:58:8a:5c:87:ec:c4:5b:fb:eb:67:26:42:c8:7b:53:31:
28:3e:46:84:87:c7:10:7e:c4:76:d5:d2:cc:8f:37:5b:1a:51:
6a:6f:7c:32:32:28:ff:9e:47:57:36:bb:4f:e2:a3:3d:83:ea:
1a:b7:66:68:c0:8e:13:28:cf:ba:ee:92:56:d9:82:ca:21:79:
21:8d:70:8f:94:33:57:14:e1:fb:f6:6c:9d:9e:da:80:e6:ac:
7c:15:bf:f7:ae:b1:37:e1:d4:4a:0b:f6:eb:ae:e1:af:cb:08:
6e:16:ed:fa:e7:7f:62:cd:76:ad:0b:85:99:dd:af:c1:26:77:
33:28:80:6b:20:a1:66:83:d3:ea:11:ce:0d:78:bf:1b:f8:8a:
41:2f:65:bf
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIUQH985J5AjqhS4D2vaaNrKXgfvyAwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDEwNzA3NTUwMFoX
DTI2MDEwNjA4MDAwMFowMzExMC8GA1UEAxMoNEVENTY4MERFNkZCQzU5OTM5QTM0
RTE0NENDQUYwMDY0RUY0MzkxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKT5aGk/7RdBTmeydJS8RnbmYqbjl0qvr1yIOwHi6czG8GdcovWK4vxAit1k
QDMArlmM0HHWyuU7P1gXo0/TWLLAUHhn/WdPI2La3id6jAgIqGn9kKKZWdyhX0oN
nNxJ+IhjY5PCIlXymkmOt+0nasvgmOu6qmSdk0D74APQh01McVew3DVN2bEBeX+B
v1wnSk/WLCPzWLrjFcf8PC+xp1oaHBB6YYv1kF6zLFqsr4uk1IkbyqiFVAs+txMb
P5TeAA6skZ2fGUiZA9lFKHRK5q+bjRVqHiRMBodoOj3KZjj0rrRw9Vh8uWkG3j4Z
VFc9HcMzcqPGVLYGeQ6QZ33i5D8CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBRO1WgN
5vvFmTmjThRMyvAGTvQ5ETAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz
MTM1MmUzNDM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzNTMzLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQBnQ8wMA0GCSqGSIb3DQEBCwUAA4IBAQBRwhTC3yth8ea8+5BehdzH
FyXKOIJHq9igfk42AaT8DcTUicACyvRTZsoixfMkxsguhIJwUGcwhUQN2lwjdFpV
/SdOz/oj+QZmAntd0uk4i5XaT6lyrgKUNolXy9tE6cQVZeQn8kCSbYs5WyessViK
XIfsxFv762cmQsh7UzEoPkaEh8cQfsR21dLMjzdbGlFqb3wyMij/nkdXNrtP4qM9
g+oat2ZowI4TKM+67pJW2YLKIXkhjXCPlDNXFOH79mydntqA5qx8Fb/3rrE34dRK
C/brruGvywhuFu36539izXatC4WZ3a/BJnczKIBrIKFmg9PqEc4NeL8b+IpBL2W/
-----END CERTIFICATE-----
Generated at Mon Apr 7 04:04:23 2025 by rpki-client