Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e34352e302f32342d3234203d3e20313533303637.roa
File: 3136302e32322e34352e302f32342d3234203d3e20313533303637.roa (raw, json)
Hash identifier: +0q1FyeSSc8v75AD9mTl4wDGQ+zZLzfHT7GIrd2S39U=
Subject key identifier: BA:7F:9D:FF:9C:DA:32:08:17:1A:DF:CC:0A:15:CF:DA:58:99:5F:BD
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 1BBEC70689F002F16779E822D697A880F6A8BFEE
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e34352e302f32342d3234203d3e20313533303637.roa
Signing time: Wed 04 Sep 2024 06:33:55 +0000
ROA not before: Wed 04 Sep 2024 06:28:55 +0000
ROA not after: Wed 03 Sep 2025 06:33:55 +0000
asID: 153067
IP address blocks: 160.22.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:be:c7:06:89:f0:02:f1:67:79:e8:22:d6:97:a8:80:f6:a8:bf:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 4 06:28:55 2024 GMT
Not After : Sep 3 06:33:55 2025 GMT
Subject: CN=BA7F9DFF9CDA3208171ADFCC0A15CFDA58995FBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6a:ca:71:bd:7a:b0:ef:c9:28:35:ff:bb:ae:
c2:46:5f:fb:40:87:64:43:c1:37:b3:42:eb:4a:35:
0d:18:99:da:97:7c:80:be:2b:a1:28:50:36:f2:8c:
2f:7e:c5:43:d9:a5:0d:22:98:a4:c1:37:51:d4:cc:
dd:9f:8b:43:84:60:84:cc:2a:7c:c6:80:b8:c8:8e:
93:61:97:4c:46:bc:00:e8:d7:1d:3f:43:ad:be:76:
79:5c:82:82:5a:70:74:0d:1e:0d:39:79:59:f5:f1:
f0:bd:69:61:c0:64:95:83:28:c4:96:4d:24:fd:2c:
04:d9:f8:4c:dd:6c:80:50:c3:f1:af:f6:3a:5a:95:
f6:ac:0b:bc:5c:5a:84:a1:96:2b:c1:e9:bc:78:fe:
60:a9:d5:c0:87:ca:bf:3a:d4:49:db:1e:cc:c1:56:
c7:b9:75:ad:1a:3f:21:fe:08:12:6c:f1:49:7c:97:
37:d9:f4:4c:e4:5c:f3:81:b4:25:a4:89:48:be:dd:
bc:68:10:b7:25:c7:6b:00:57:70:a3:09:bf:c5:de:
5a:d3:b8:2d:da:44:ba:55:2f:64:33:0b:36:a0:bb:
d8:17:73:17:58:71:6f:2d:57:14:cc:37:fa:37:b7:
ab:75:0b:61:2d:ca:82:a3:97:bc:de:5c:1f:04:9c:
3a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7F:9D:FF:9C:DA:32:08:17:1A:DF:CC:0A:15:CF:DA:58:99:5F:BD
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e34352e302f32342d3234203d3e20313533303637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.45.0/24
Signature Algorithm: sha256WithRSAEncryption
86:07:f9:58:ea:dc:e3:67:cb:c5:10:87:41:64:e9:02:44:2f:
d4:c7:73:c8:4e:89:48:b8:c2:69:e8:06:15:d0:28:41:79:df:
20:fb:fe:df:1f:0f:d8:a9:f9:10:8d:cd:33:c1:80:e4:96:6a:
25:b8:a2:44:cc:c0:d5:da:2d:ef:7a:80:a4:eb:8e:e3:e0:f2:
56:69:72:37:2b:1d:9c:64:7f:fd:a2:17:2f:57:00:7c:2f:ed:
8b:c8:b3:72:99:65:3e:02:b6:21:fa:a0:b6:20:80:bf:fe:f7:
ad:2c:83:d0:91:7e:18:e4:15:bb:87:ab:19:8e:3e:54:19:bc:
0e:7a:f0:76:5f:8a:b7:31:45:5d:06:69:1a:20:8d:8c:48:6e:
c7:c6:a9:d2:5e:c9:bd:e9:f8:eb:68:e9:fe:99:8f:09:91:94:
58:9a:81:94:50:b8:3a:a1:2e:7d:53:67:a2:4c:74:62:7e:86:
ea:20:fd:33:00:2e:d4:af:7c:3b:8c:da:75:98:e3:4c:cb:0c:
73:e5:b0:d2:c3:ed:2c:c5:14:69:3b:69:6b:ed:7f:41:fe:8c:
79:e7:e2:88:fe:d4:98:02:26:a2:49:31:48:33:27:1a:ad:67:
25:f4:7e:21:ad:2d:0b:c6:c1:96:e0:a1:87:52:d2:bc:97:67:
1e:28:09:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:51:26 2025 by rpki-client