Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/36362e39362e3234302e302f32302d3234203d3e20313333373938.roa
File: 36362e39362e3234302e302f32302d3234203d3e20313333373938.roa (raw, json)
Hash identifier: Se/psOTYoLa6UzZOFvWVSMybP2IWcFlvT2oOhx6m4Bs=
Subject key identifier: 77:89:D5:5D:40:30:C4:D8:33:BD:CC:80:CC:FB:F3:E1:90:A7:27:8D
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 26CE8E8B635D504C3F05753584E4A7540E9ABC46
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/36362e39362e3234302e302f32302d3234203d3e20313333373938.roa
Signing time: Wed 08 Jan 2025 03:00:00 +0000
ROA not before: Wed 08 Jan 2025 02:55:00 +0000
ROA not after: Wed 07 Jan 2026 03:00:00 +0000
asID: 133798
IP address blocks: 66.96.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:ce:8e:8b:63:5d:50:4c:3f:05:75:35:84:e4:a7:54:0e:9a:bc:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 8 02:55:00 2025 GMT
Not After : Jan 7 03:00:00 2026 GMT
Subject: CN=7789D55D4030C4D833BDCC80CCFBF3E190A7278D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:98:a5:84:a1:2d:25:7d:20:11:08:36:00:37:
a8:8b:0c:9e:0d:08:e7:11:02:65:d1:d2:35:99:b2:
57:dc:a7:fe:52:a3:b0:46:e1:03:14:f7:c1:90:c6:
76:11:49:64:54:0e:b4:64:cd:09:3f:47:b7:eb:f5:
a4:8d:80:19:b7:6d:1e:9a:24:ac:ff:db:6e:f8:99:
2a:de:a4:c9:f3:fa:ab:5e:a9:ee:04:5a:b8:2d:85:
98:c6:fd:70:f6:60:2a:71:3a:29:cd:44:3e:fe:32:
00:c0:f4:ee:f7:78:20:e7:70:fb:0e:9e:9d:82:cf:
76:9d:f1:05:38:1c:8a:bd:a9:ba:14:a6:7c:12:38:
f5:1e:fb:b3:15:b9:1b:18:8f:bb:2f:8f:cc:b6:70:
4a:c2:8b:cf:c4:c7:06:76:0c:ba:c3:2b:9e:d5:c6:
67:1e:72:84:54:cf:23:d6:da:6d:cf:08:8b:ba:69:
72:b7:df:b2:ee:ca:f1:f0:8a:64:ef:11:5c:34:94:
e9:a1:c3:71:89:94:7a:04:ce:e2:43:d6:01:9d:ec:
68:00:2c:10:07:e0:69:65:83:b6:dc:ff:7f:4d:c4:
0f:fd:c3:96:f3:df:95:32:41:99:f3:ad:f1:d4:77:
ab:1b:b4:81:30:47:8d:91:48:ea:70:d1:fb:e5:f2:
ea:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:89:D5:5D:40:30:C4:D8:33:BD:CC:80:CC:FB:F3:E1:90:A7:27:8D
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/36362e39362e3234302e302f32302d3234203d3e20313333373938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.96.240.0/20
Signature Algorithm: sha256WithRSAEncryption
66:4f:6a:03:a6:20:3f:f2:ac:8d:fd:20:b0:a4:6d:86:7e:77:
66:58:29:7c:a5:60:b1:71:9e:2f:5f:d5:9d:a0:90:27:8b:dd:
ac:cf:2f:d1:70:18:e2:ba:bc:96:4b:19:9d:3a:75:f1:7e:6f:
76:7e:93:53:9c:f2:a9:fa:b4:e5:34:9c:0f:b9:a1:c0:f2:07:
23:09:9a:54:ae:fc:43:d5:84:ee:33:73:47:f7:dd:19:b0:6f:
8a:21:bb:01:8c:e5:d3:71:64:d5:44:00:8b:fd:ae:cf:28:1c:
cf:74:8d:98:f9:e5:eb:82:b2:e1:63:92:cd:6a:8f:55:c9:c8:
d3:52:46:45:ed:81:31:e1:b0:37:c7:2b:9f:56:a0:a5:26:6c:
1e:77:9a:6c:a0:0f:57:b8:1b:b4:6e:a9:9e:e9:7a:4d:63:5e:
5c:03:90:92:27:3c:44:39:2a:41:39:b2:d1:c9:78:99:b2:b1:
98:13:a2:2a:17:83:a8:68:b1:9f:4d:c0:a6:ca:e0:39:4d:6c:
1f:de:a9:8e:4f:03:e1:ef:00:41:22:f0:ff:3b:c0:56:c4:e2:
b1:ee:21:a3:30:7a:c2:4b:e0:49:2d:39:8d:c6:3c:78:92:21:
6d:52:70:3c:05:3e:f9:9f:34:d3:8e:a7:b0:5c:a1:2b:b5:9e:
01:38:81:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:01:16 2025 by rpki-client