Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134655.roa
File: AS134655.roa (raw, json)
Hash identifier: i+ycEK/My+PKz3AvjPAj9js6Oc13PwZBAMCqmm0wZkM=
Subject key identifier: E7:A7:11:55:D7:C4:F7:3E:6C:1D:E7:5C:2E:47:7A:25:87:B2:5A:E4
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3DEAED2C1957BFC99B40EA100D4252A7CF71DEDD
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134655.roa
Signing time: Tue 09 Jan 2024 04:00:01 +0000
ROA not before: Tue 09 Jan 2024 03:55:01 +0000
ROA not after: Tue 07 Jan 2025 04:00:01 +0000
asID: 134655
IP address blocks: 119.47.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 05:47:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:ea:ed:2c:19:57:bf:c9:9b:40:ea:10:0d:42:52:a7:cf:71:de:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jan 9 03:55:01 2024 GMT
Not After : Jan 7 04:00:01 2025 GMT
Subject: CN=E7A71155D7C4F73E6C1DE75C2E477A2587B25AE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e9:f5:b6:fa:fe:db:2f:75:f4:5b:07:b7:9b:
75:a3:a3:7c:4a:c2:4f:73:2d:b2:15:09:7a:fc:e9:
8b:99:8a:0c:4f:3b:7e:a3:ec:e0:69:05:c6:93:06:
46:69:e8:10:e3:bc:60:70:bc:32:f0:72:df:13:9b:
bf:c2:15:94:c4:e0:3e:83:de:4d:b1:18:00:80:01:
93:cd:3c:8a:3c:6b:20:ee:21:26:df:fa:65:a7:d3:
20:6f:f6:92:bb:5b:7a:58:d0:e6:a1:41:a9:c6:af:
eb:4f:35:08:b6:f1:d3:60:e0:37:b1:eb:bd:f6:ec:
ef:0f:37:a3:d8:e8:00:94:b8:15:99:bb:60:6b:2f:
a0:8d:e0:de:81:16:62:e6:50:e8:fa:6e:9d:23:b0:
e5:38:9a:0f:4e:ec:fd:e2:08:9b:d5:d5:63:f2:f5:
1f:57:ee:eb:cf:df:97:90:c0:3b:61:1d:67:81:8a:
3a:45:6a:0d:c6:16:7e:14:f7:a8:3c:09:69:8f:cf:
78:ed:bc:ad:e8:75:00:e1:1f:3b:6c:4c:9c:74:a8:
2f:12:09:cb:8f:9c:e6:89:00:f7:26:25:06:6d:52:
51:93:48:9c:30:da:e4:ec:0b:21:da:87:1f:70:31:
5b:94:1a:a4:7d:61:f4:f4:18:71:d5:ac:72:f2:f6:
dc:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A7:11:55:D7:C4:F7:3E:6C:1D:E7:5C:2E:47:7A:25:87:B2:5A:E4
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134655.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.47.94.0/24
Signature Algorithm: sha256WithRSAEncryption
10:90:8d:e3:4c:4a:82:01:df:b9:b9:f1:b9:06:6b:f1:2b:59:
f3:51:ba:ea:53:93:0c:97:bf:d1:e1:92:45:52:4c:bd:87:d1:
36:d6:54:3c:ed:4f:56:ca:d5:36:b5:2c:6c:b5:7c:b7:cd:a0:
bd:fe:45:37:ac:2b:e6:71:f9:57:d0:20:68:6c:2e:d5:8b:31:
81:e1:db:68:40:bd:32:98:9f:ac:9e:8d:ea:f0:79:2b:bb:fe:
df:8d:a9:39:02:9a:77:c2:1b:49:42:a4:73:1a:e4:d0:df:f9:
b8:25:bb:52:93:60:c9:ad:6c:91:e4:5f:a3:37:d1:5a:13:e2:
1d:78:03:ff:b8:4f:d7:db:04:64:3c:5f:5e:53:df:26:3f:97:
1e:26:cf:0b:0a:02:6e:01:e3:b1:b1:39:75:80:0b:53:d8:08:
48:4d:68:3a:a0:85:90:13:08:2d:a0:0e:86:59:01:6c:e9:7c:
ea:33:bc:eb:02:61:ee:02:f4:7f:65:01:30:a9:fb:eb:e7:22:
f4:7b:c7:ab:2e:dc:c3:b3:1b:c1:9c:dd:02:25:ec:70:b9:d4:
83:37:d8:9a:a6:13:8e:f4:9f:d5:94:86:46:16:50:05:4f:90:
bc:01:f8:82:7d:eb:ca:fd:fe:31:4c:d2:1e:11:b7:70:92:08:
99:74:67:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org