Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e37382e302f32332d3234203d3e20313532333637.roa
File: 3135372e31352e37382e302f32332d3234203d3e20313532333637.roa (raw, json)
Hash identifier: uzbcDaOe3WNNy6Iq++DFbUdZ3IPL9Qlbwbj9do4wY+M=
Subject key identifier: 61:CB:C6:21:16:D8:73:DC:D4:C2:C4:1F:B1:2C:FF:39:C5:12:F7:06
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 35770653BC722F1DF697BB104CCDD2B8189FFAE6
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e37382e302f32332d3234203d3e20313532333637.roa
Signing time: Mon 27 Jan 2025 07:02:19 +0000
ROA not before: Mon 27 Jan 2025 06:57:19 +0000
ROA not after: Mon 26 Jan 2026 07:02:19 +0000
asID: 152367
IP address blocks: 157.15.78.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:77:06:53:bc:72:2f:1d:f6:97:bb:10:4c:cd:d2:b8:18:9f:fa:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 27 06:57:19 2025 GMT
Not After : Jan 26 07:02:19 2026 GMT
Subject: CN=61CBC62116D873DCD4C2C41FB12CFF39C512F706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f8:48:39:f1:31:b9:b8:e1:97:51:ea:03:d9:
13:a0:a4:a6:af:5f:23:bd:41:99:ce:74:c4:94:84:
96:dd:f7:8b:e2:21:2f:9f:c1:ee:0c:1c:78:98:f7:
47:fc:9a:c3:74:a4:54:df:1b:c4:d5:d3:a7:10:41:
9f:6a:b6:83:1b:0b:a9:ac:47:d4:69:ed:5a:09:64:
60:87:a3:cf:18:5b:e2:ca:22:d6:52:d1:88:6f:89:
fa:f9:4c:a8:33:98:d1:aa:46:4b:30:a1:c3:1d:de:
6c:86:7e:cf:7c:ab:e1:b1:7c:c3:d7:ca:88:fc:a4:
b1:d5:05:c6:99:29:b8:ef:65:7c:3e:17:b6:b2:d7:
82:cb:64:a5:b7:fc:58:43:d6:30:b9:81:ce:d7:33:
a5:f3:d3:e1:b8:ce:81:6d:3b:ac:11:f5:be:31:ab:
91:35:c4:37:7a:35:90:a2:fb:86:e0:2b:a7:91:f8:
c2:16:ee:08:60:f1:04:c0:f7:d8:e2:c9:63:09:06:
65:ad:58:6a:5c:ba:8d:3c:b2:ad:1b:7c:a2:0b:55:
fc:d0:1a:c9:c7:b1:d3:96:a7:e8:07:59:f4:36:09:
68:86:52:8d:2b:e5:a1:cc:80:1e:fb:2e:68:4d:62:
2a:db:4c:31:55:d7:b3:0d:cd:c2:9b:9e:61:69:f0:
3e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:CB:C6:21:16:D8:73:DC:D4:C2:C4:1F:B1:2C:FF:39:C5:12:F7:06
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e37382e302f32332d3234203d3e20313532333637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.78.0/23
Signature Algorithm: sha256WithRSAEncryption
78:c7:92:5c:37:0c:ff:9b:98:9d:71:27:c1:22:1b:fd:d0:21:
80:b4:b3:2d:45:fa:a4:5b:c8:12:32:30:dd:e5:34:fe:83:c0:
f6:69:20:53:87:e6:14:c2:16:62:9a:d3:2d:b2:df:b9:9f:4c:
d1:76:f6:4d:e3:1e:da:02:db:6f:e7:17:f6:62:3c:ad:e9:a9:
ed:f7:63:e9:ad:48:a4:b4:c9:54:87:e6:a5:79:6f:7a:a2:07:
a7:30:a0:15:99:12:1c:a8:a1:39:c9:5f:f2:c8:21:33:11:f3:
3d:fc:1a:07:5b:e5:78:87:0d:df:56:d9:5d:d2:02:b7:3e:04:
9c:62:29:f1:94:a0:fd:4c:30:bf:00:ca:df:ec:c5:47:91:ff:
34:90:24:a4:1b:3a:bd:33:06:d0:c0:25:83:9f:c2:c9:5e:7b:
be:b5:ea:76:32:b2:67:f1:5d:c5:9a:30:6a:75:e7:46:f1:4a:
3c:3f:aa:94:20:33:5d:70:bd:a1:00:5d:58:f5:e2:f0:ac:5f:
3d:30:a9:30:d1:d0:cf:ea:cc:20:1b:b9:bc:5b:a6:9c:b5:e1:
22:46:ce:44:31:ea:99:85:47:e5:75:40:42:fe:74:8d:d4:4f:
da:e0:61:eb:cf:a4:52:5c:7a:f2:bd:44:9b:59:ba:56:17:5e:
f8:94:3f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:36:33 2025 by rpki-client