Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3131322e302f32332d3234203d3e2034383030.roa
File: 3135372e36362e3131322e302f32332d3234203d3e2034383030.roa (raw, json)
Hash identifier: 0ORbBkuDPCN/wOL/lkIO70WU/Sv6icylJQnZ5YXdxDo=
Subject key identifier: 07:45:33:CF:70:3E:0B:05:79:88:22:4E:11:D2:66:B2:50:44:A1:CE
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 4C5424610CE10E8BC4307E6B69CB7AE366A704D2
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3131322e302f32332d3234203d3e2034383030.roa
Signing time: Sun 30 Jun 2024 01:59:54 +0000
ROA not before: Sun 30 Jun 2024 01:54:54 +0000
ROA not after: Sun 29 Jun 2025 01:59:54 +0000
asID: 4800
IP address blocks: 157.66.112.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:54:24:61:0c:e1:0e:8b:c4:30:7e:6b:69:cb:7a:e3:66:a7:04:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jun 30 01:54:54 2024 GMT
Not After : Jun 29 01:59:54 2025 GMT
Subject: CN=074533CF703E0B057988224E11D266B25044A1CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:68:60:35:a3:af:fc:dd:8d:d6:77:1a:35:fa:
0f:e0:46:84:37:0f:5d:c1:0d:91:65:07:2c:67:71:
90:88:64:55:2d:f5:9a:c6:2e:2c:37:ba:e1:b4:92:
9a:43:bb:62:87:4c:fd:19:67:78:03:21:7b:27:a5:
28:66:28:df:e7:b3:40:e5:cf:80:0a:3e:2c:25:29:
be:b3:5b:42:70:ff:1f:7c:92:44:69:4d:9e:10:89:
17:59:5a:2a:b8:8d:81:94:41:0b:d3:e8:a3:fa:3e:
d8:c4:ad:aa:f5:17:e1:67:c4:b2:a3:8e:81:07:3b:
ba:0a:78:5b:f6:af:46:7a:e2:c6:e1:c6:9b:ad:ad:
4f:4c:10:24:95:d1:2c:92:64:d0:8f:d2:d1:e3:e0:
aa:77:27:8e:75:fa:2c:df:52:5c:06:fe:8a:7f:f1:
6c:fa:cc:f8:42:02:37:7a:bd:d9:f4:3e:c4:c8:6d:
38:a1:9a:36:73:ff:a7:c5:92:03:9c:9c:79:38:26:
41:3c:8f:08:50:de:fc:2b:e7:ea:b7:e1:db:6b:9b:
bd:58:54:3f:b8:1d:e5:2b:80:b0:a0:b8:44:52:97:
aa:a9:88:6e:ae:c8:15:9a:2a:29:a8:b5:54:ee:79:
35:a3:ba:79:90:31:73:6b:80:4c:72:96:33:a4:2c:
57:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:45:33:CF:70:3E:0B:05:79:88:22:4E:11:D2:66:B2:50:44:A1:CE
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3131322e302f32332d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.112.0/23
Signature Algorithm: sha256WithRSAEncryption
35:b4:e0:42:7c:b4:03:20:21:5c:ce:96:0f:5a:32:cd:2e:a9:
06:c1:f6:2a:70:50:26:dc:29:21:d5:56:0e:c0:6d:19:01:6c:
82:0f:63:fa:73:3e:f4:33:fd:41:ec:29:66:68:d3:4a:e5:21:
c2:cd:4b:f9:bc:69:52:5e:c2:e5:dc:70:f1:c7:af:ac:85:2a:
0d:b2:53:c3:4c:0b:0f:bb:aa:b7:5f:55:73:5d:68:42:61:7a:
3e:0e:36:c3:dd:2c:ec:8a:bb:60:cb:83:88:7c:0b:bd:ef:c7:
6e:33:76:3f:4a:29:97:a2:4b:b1:f8:10:98:66:43:bb:8f:cd:
46:72:07:ce:43:9b:b2:9e:b4:9c:29:1c:fd:2d:e1:6b:ea:f5:
ec:09:4e:2a:5f:d1:3c:92:66:fd:81:f4:51:d7:66:96:c7:91:
d0:b7:f0:b8:ef:9b:37:b9:25:1b:f7:5b:39:88:a6:83:9d:0e:
d5:37:56:93:63:c1:e7:ed:18:7d:87:5a:d4:e7:dc:88:31:55:
c6:7e:20:d2:99:d1:e1:09:48:92:98:5e:13:57:97:42:23:2f:
ff:dc:8f:de:0c:27:7f:d3:bc:0a:c3:e2:1d:1f:0d:10:bb:7d:
02:50:bd:b2:7a:a0:b5:02:8f:2c:60:3a:b0:67:42:27:01:8d:
d3:eb:d3:77
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:51:09 2025 by rpki-client