Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e3139312e3137322e302f32332d3234203d3e20313533313533.roa
File: 3136302e3139312e3137322e302f32332d3234203d3e20313533313533.roa (raw, json)
Hash identifier: AxRFCBJmfkUjjSCLdcEe/UsRBEfv8PuWAKSPvEPh5hU=
Subject key identifier: 9A:EA:51:BA:25:00:22:42:C3:DE:FA:D0:04:59:59:90:E7:98:7D:09
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 2E9A136128FEB73561D752D78B5592B46A53B6EF
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e3139312e3137322e302f32332d3234203d3e20313533313533.roa
Signing time: Tue 19 Nov 2024 03:06:03 +0000
ROA not before: Tue 19 Nov 2024 03:01:03 +0000
ROA not after: Tue 18 Nov 2025 03:06:03 +0000
asID: 153153
IP address blocks: 160.191.172.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:9a:13:61:28:fe:b7:35:61:d7:52:d7:8b:55:92:b4:6a:53:b6:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Nov 19 03:01:03 2024 GMT
Not After : Nov 18 03:06:03 2025 GMT
Subject: CN=9AEA51BA25002242C3DEFAD004595990E7987D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9d:db:7d:e3:30:65:b1:df:d7:f6:3c:73:95:
50:8d:0d:08:2b:a9:5c:9e:6e:73:2e:98:64:42:cf:
89:a5:aa:c9:98:46:c8:6f:23:fd:3b:5f:dc:c9:61:
45:f8:82:5c:b2:99:a0:2e:c2:ae:3a:f8:4f:2e:10:
aa:47:25:a3:d0:d4:14:6d:04:d9:32:1d:d7:fb:d5:
33:70:c7:fc:32:0c:66:f3:7e:4a:fe:26:98:ea:12:
5d:95:1b:e6:cf:8a:81:5b:3d:f3:e6:18:f3:b4:9d:
be:9b:4f:49:1e:e3:e0:05:5d:24:c8:94:6c:9b:6b:
81:97:77:f7:fd:41:cf:48:d9:9e:02:c9:e2:9d:d6:
f0:9c:2b:e5:88:39:11:04:1c:25:b4:c7:eb:84:b1:
c4:ef:98:1e:60:22:6a:db:77:d7:9e:a5:29:b4:74:
aa:e9:ce:61:a9:58:53:c9:f8:a1:39:6f:8b:74:c5:
1d:58:dc:91:36:8f:96:5e:39:c0:34:31:b9:5b:6b:
16:d1:58:29:b4:09:ad:ad:51:05:98:cb:94:2c:1a:
c6:61:59:55:84:e9:b8:c9:9a:a4:d7:32:1b:51:9a:
c5:84:76:43:39:20:e8:ec:77:10:a7:e4:13:f0:1e:
21:0e:10:3e:02:5c:38:1a:f0:18:35:c9:bc:73:2c:
8d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:EA:51:BA:25:00:22:42:C3:DE:FA:D0:04:59:59:90:E7:98:7D:09
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e3139312e3137322e302f32332d3234203d3e20313533313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.191.172.0/23
Signature Algorithm: sha256WithRSAEncryption
66:3e:f5:25:24:01:b6:1a:fe:f3:52:81:55:1e:ba:78:2f:6e:
bd:13:a6:e6:6a:00:f1:da:5f:31:fa:86:00:b6:af:19:b7:6c:
56:12:b8:4c:99:0f:cd:2d:61:47:96:8b:fd:ea:90:64:04:60:
09:8e:9e:11:2c:55:18:7d:03:e3:5b:cd:71:34:34:68:e7:55:
e6:49:c7:a4:ab:70:e2:cd:8a:2c:5a:29:3c:56:c6:e0:d1:ce:
5c:51:44:25:1e:80:11:85:61:86:3b:6f:5d:43:f3:7d:13:40:
7d:9d:40:b0:ee:60:8a:b8:de:b8:a5:a7:e5:aa:64:32:f4:4c:
76:c6:0e:9e:ca:b0:17:7b:f7:16:a8:06:d6:ca:7c:f8:68:d8:
7a:5f:5a:e7:4a:ce:37:f6:41:3e:3c:4e:f1:f3:ac:94:84:5f:
ca:59:ae:2d:c2:cc:13:e8:aa:e4:19:1a:de:9b:d9:20:94:87:
5b:36:25:36:24:48:6c:7f:3a:28:df:73:8b:a4:e3:31:f7:97:
ef:68:b5:e4:62:f5:32:94:f0:71:96:db:1b:1c:4d:21:9a:a7:
5f:e2:78:1e:e8:1f:d9:01:ce:b6:d1:89:51:7f:0a:f4:68:b2:
38:87:71:e3:e4:89:59:b9:79:e1:09:59:f7:0e:30:01:aa:60:
7d:eb:65:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:34:48 2025 by rpki-client