Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140000.roa
File: AS140000.roa (raw, json)
Hash identifier: jNU1iu11iR+tp4s0LfAqCi4l3JFhu5o1qppR0mRn42k=
Subject key identifier: FB:82:43:23:21:FF:6C:81:72:A5:2F:3A:A4:D3:39:52:AA:E7:D1:AF
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 1AC66848F33EA019BE0A022C86AF3934C28F55A1
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140000.roa
Signing time: Tue 01 Aug 2023 19:02:51 +0000
ROA not before: Tue 01 Aug 2023 18:57:51 +0000
ROA not after: Tue 30 Jul 2024 19:02:51 +0000
asID: 140000
IP address blocks: 103.101.154.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 05:47:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:c6:68:48:f3:3e:a0:19:be:0a:02:2c:86:af:39:34:c2:8f:55:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Aug 1 18:57:51 2023 GMT
Not After : Jul 30 19:02:51 2024 GMT
Subject: CN=FB82432321FF6C8172A52F3AA4D33952AAE7D1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:0a:ea:66:cd:4f:d9:95:aa:e2:7d:59:44:
49:1a:f1:33:6f:be:5f:96:ee:7e:7b:b6:42:6d:e5:
ac:fa:0a:f3:6f:eb:ea:62:ad:71:a6:8f:e3:f8:0e:
d0:06:33:40:ae:ce:3b:05:8d:b3:bc:16:e8:b2:b6:
0c:a2:c6:98:3a:42:e5:c7:bc:77:ef:89:2e:44:8b:
0e:a5:c1:ac:8c:dc:7c:db:35:57:6b:a2:cd:da:b2:
ae:61:63:67:36:a2:8a:8a:a0:b0:5c:cd:a3:98:0c:
29:ed:2f:04:ae:06:24:b9:a4:0a:09:18:c7:de:83:
6e:56:85:72:66:58:e9:da:67:c1:61:3d:e4:28:cc:
a4:df:80:d9:7f:76:61:a5:11:a4:6e:b6:e5:3c:03:
63:5e:0e:8d:4a:9c:d4:8a:54:b1:44:57:c6:ba:64:
d3:99:9e:17:20:54:b5:44:c1:a0:c7:57:60:21:57:
f0:05:51:a1:83:d5:71:2c:80:e6:d0:7d:f0:84:e5:
7a:a6:c4:71:0e:ca:12:da:b3:d3:26:fd:fd:1f:18:
9d:81:44:cb:07:c1:a6:de:08:02:e2:54:21:f5:02:
ca:b9:61:32:47:69:f9:92:62:d2:9b:be:8d:42:6f:
38:1e:58:4d:4b:17:04:ef:03:91:fd:e1:80:c9:73:
a3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:82:43:23:21:FF:6C:81:72:A5:2F:3A:A4:D3:39:52:AA:E7:D1:AF
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140000.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.101.154.0/23
Signature Algorithm: sha256WithRSAEncryption
33:c0:cf:d4:19:53:1a:76:01:af:d7:59:de:24:e2:18:31:0e:
b9:ea:d3:b2:36:02:37:2b:a3:a5:5d:86:3b:bc:83:a5:58:24:
89:b4:13:19:52:d8:c4:e7:c5:03:b1:ed:ed:e7:a3:dc:b5:3a:
f6:94:a0:72:08:9d:b1:0e:1a:99:ce:1e:c9:be:a9:84:fa:8e:
b6:c1:d8:be:d0:3a:e0:60:bb:b0:0b:8e:3a:26:d0:99:18:89:
df:b7:8c:55:cf:f0:4a:ce:89:69:af:71:b9:88:c9:68:61:a6:
88:f9:72:ad:83:f4:78:39:5f:c0:9d:74:82:0b:12:b7:c8:68:
86:88:2a:a6:f3:96:5e:3c:52:f2:2b:55:f9:2a:25:c8:0d:a5:
45:7b:bb:41:58:10:7f:08:66:93:c3:13:94:ed:d1:65:3d:00:
96:e8:cc:0b:4e:1a:b2:70:6f:b1:5a:f8:77:46:f2:df:d4:04:
f3:53:c5:30:53:f4:ad:54:f0:93:7b:dc:6b:c9:2b:cf:19:5d:
b0:4d:9b:fb:6a:32:2f:78:a2:bc:fc:76:06:a5:cb:12:9e:fe:
b0:59:66:ac:d5:3b:4b:19:2a:aa:1a:cb:d8:c6:3f:7e:8d:c0:
b5:ee:58:b8:f5:fd:07:10:a1:4d:48:8d:05:c5:d4:25:93:76:
77:4e:6e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org