Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234362e302f32332d3234203d3e20313532373630.roa
File: 3135372e36362e3234362e302f32332d3234203d3e20313532373630.roa (raw, json)
Hash identifier: /VGtkhZpdT0NDYqV9+KmFHIIIzMJyJjMl80sifOPTgI=
Subject key identifier: DF:B1:C5:7F:8B:13:00:93:DF:7F:62:D5:DF:7D:49:4C:E8:81:60:46
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: E6520B096078DC45C5F89FAF9CF4EFBB4362A5
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234362e302f32332d3234203d3e20313532373630.roa
Signing time: Tue 03 Dec 2024 02:49:33 +0000
ROA not before: Tue 03 Dec 2024 02:44:33 +0000
ROA not after: Tue 02 Dec 2025 02:49:33 +0000
asID: 152760
IP address blocks: 157.66.246.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
e6:52:0b:09:60:78:dc:45:c5:f8:9f:af:9c:f4:ef:bb:43:62:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 3 02:44:33 2024 GMT
Not After : Dec 2 02:49:33 2025 GMT
Subject: CN=DFB1C57F8B130093DF7F62D5DF7D494CE8816046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e6:53:fd:4e:1f:38:2c:61:b4:52:3c:06:e2:
6f:d4:ca:6e:c2:4e:88:00:3b:95:17:3e:45:c4:12:
9d:18:68:cb:e7:1d:4d:d1:d5:e1:32:f2:d5:4f:88:
02:cf:d0:1d:ab:34:d1:eb:1d:9e:d7:02:e9:20:91:
48:54:37:73:25:be:a4:f9:c4:b4:61:f4:6b:36:97:
9a:61:4a:bb:df:96:6e:2c:56:6a:94:95:be:14:4a:
51:96:07:10:c7:9b:7d:43:fc:77:f6:74:9d:d6:17:
21:d4:25:1d:b9:1e:c9:31:40:c5:a8:8d:9e:47:ae:
48:69:1a:09:e8:de:77:f0:78:41:87:93:99:d7:3e:
14:bb:55:16:d5:1b:b2:d8:10:04:94:be:57:69:a9:
90:0e:01:56:80:bc:54:34:7e:fb:7b:dd:29:af:d0:
5b:37:16:8c:1f:56:e4:ff:1e:94:4b:4a:15:9b:e3:
7b:19:2e:51:08:bc:83:39:aa:f7:ef:e8:d8:49:d6:
c3:00:11:b3:f0:7b:89:ad:55:bc:17:7d:fe:da:7e:
6a:19:cb:38:7d:60:42:bd:1c:25:df:d1:d0:03:5d:
2d:6e:94:3f:36:82:9a:f6:ba:cc:a5:cc:de:77:f1:
50:ce:88:b5:6e:74:c9:17:fb:c8:05:f5:9f:31:27:
8a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B1:C5:7F:8B:13:00:93:DF:7F:62:D5:DF:7D:49:4C:E8:81:60:46
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3234362e302f32332d3234203d3e20313532373630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.246.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:b1:2b:2c:80:1c:94:ee:94:0d:cf:a2:db:01:57:47:75:e9:
29:2f:6f:4d:1c:1d:74:af:b0:27:a0:69:fc:f8:6f:c5:a8:6b:
b5:a1:7c:ed:7c:fa:25:20:71:8f:e9:4b:8c:48:20:3f:a1:a4:
f0:25:9f:ad:91:90:22:8d:84:c5:e1:bb:f7:a5:c8:ee:8a:b3:
58:95:11:4d:56:21:cc:20:0f:77:23:e5:37:0f:8c:39:63:98:
eb:59:7e:4c:5f:c0:a4:aa:81:23:74:25:7e:bd:af:84:08:ca:
e8:cd:ed:36:5a:96:9d:7e:33:30:d2:42:1c:aa:98:56:50:9c:
29:bb:b2:e7:21:61:cc:02:72:69:e0:51:99:e0:2d:4c:00:a0:
6a:87:01:a5:c0:db:55:2e:11:55:e1:34:d2:d8:5b:e2:cd:d7:
45:ab:e0:03:82:65:58:21:16:d1:3b:4c:e3:d0:b7:fb:75:98:
ba:fa:a3:2f:1a:8b:10:aa:c5:71:26:25:d0:36:f9:96:d9:3c:
93:da:8a:20:37:15:0b:af:05:7a:88:bc:76:0b:50:1b:b4:67:
5f:6d:9d:99:ae:67:e2:74:b0:68:85:4d:9d:f9:57:83:6b:23:
59:4a:9f:17:da:2f:4c:bc:a0:34:a5:d4:34:c1:d8:e7:1a:a8:
a1:20:e4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:36:09 2025 by rpki-client