Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150463.roa
File: AS150463.roa (raw, json)
Hash identifier: 5FzFO3eYb9VAg6wC1kih4XQhdbwLP9WXffTYRiw4R1w=
Subject key identifier: DB:A2:BF:6C:8E:32:BF:58:8D:D6:75:7B:C4:C9:32:49:A1:23:75:D6
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3DD427FAD727134CEB131D0707669D9DD4CF5E41
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150463.roa
Signing time: Thu 30 Nov 2023 09:00:00 +0000
ROA not before: Thu 30 Nov 2023 08:55:00 +0000
ROA not after: Thu 28 Nov 2024 09:00:00 +0000
asID: 150463
IP address blocks: 103.43.24.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 08:20:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:d4:27:fa:d7:27:13:4c:eb:13:1d:07:07:66:9d:9d:d4:cf:5e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Nov 30 08:55:00 2023 GMT
Not After : Nov 28 09:00:00 2024 GMT
Subject: CN=DBA2BF6C8E32BF588DD6757BC4C93249A12375D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d6:77:59:e8:e5:ad:74:d3:70:42:60:4f:f2:
ad:ff:66:6e:e4:ef:dc:72:01:26:81:b3:ed:41:31:
56:13:74:dc:5f:e3:cd:41:b3:cd:29:be:cb:b5:3e:
b3:3d:5f:1c:fe:62:4b:bd:16:89:c8:25:57:8c:aa:
c3:89:4e:bc:0d:2c:13:b0:3a:15:f4:24:48:20:e0:
da:3a:51:dd:25:6f:53:52:96:3b:01:cb:83:9e:f1:
f8:66:02:ad:ae:1b:c1:5b:c3:c3:11:5d:4b:75:65:
0a:ca:fb:fd:a3:7c:ec:d0:ca:d8:22:66:e3:8f:fd:
69:9a:69:8a:ee:4a:55:38:5e:73:b0:4e:88:1f:98:
89:03:d5:48:c9:cb:65:6b:f8:81:f8:d1:59:65:02:
68:8c:85:de:75:d4:a8:da:59:e2:55:06:36:28:c2:
d7:9b:14:90:ec:f4:4c:77:a6:47:52:88:a2:70:f2:
b1:82:04:60:92:5e:95:3b:58:a0:3d:45:ca:cf:fc:
a7:3c:b0:95:00:2b:7c:f6:e2:74:df:00:04:89:92:
6d:3a:7d:13:69:b5:c2:59:f1:e6:e0:e6:ee:7f:1b:
27:70:fc:c2:01:75:ef:2f:ea:70:67:25:64:01:08:
af:2b:38:66:50:f0:d1:ea:7f:ce:11:6d:7f:44:10:
33:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A2:BF:6C:8E:32:BF:58:8D:D6:75:7B:C4:C9:32:49:A1:23:75:D6
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150463.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.43.24.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:ad:cb:3c:d0:b1:c5:0a:83:d2:c2:83:1d:48:da:80:c4:5a:
36:ad:3a:d8:e0:ce:ca:28:e3:b0:f0:9a:6f:99:d1:84:b9:a1:
5a:5c:13:77:e9:6b:80:85:53:4b:c3:fc:9f:57:05:3b:cc:8e:
1d:2d:84:ef:40:85:8a:a4:ad:65:c4:25:0e:38:07:0c:87:bc:
76:25:85:10:b3:f3:6f:8a:5d:ed:ef:af:08:43:54:a7:35:dc:
bf:3c:65:7d:71:63:80:dc:c4:24:58:4a:c2:ea:85:9c:b2:72:
bf:f2:bb:00:10:ef:bb:a5:5d:83:bf:12:4e:76:72:27:5f:8a:
0d:39:11:c6:90:41:6f:ee:a8:b8:3c:70:83:f3:62:20:d8:72:
4b:f2:d9:bd:f0:84:1b:0b:0f:0b:a8:02:7c:00:2f:5c:f0:06:
4c:2c:56:c1:5e:ef:6b:83:9c:b9:d8:cc:fd:c7:4d:22:9f:08:
dd:94:d3:70:0b:31:79:37:29:57:a8:8e:a8:2b:87:e7:37:da:
b4:4f:d3:18:d5:d1:f5:ba:40:ea:63:fb:23:ff:81:ce:07:15:
ce:fb:2b:8a:e6:37:28:33:7a:ee:17:c1:00:1e:63:ad:b4:d7:
e9:ac:86:38:70:ee:87:a9:84:de:bf:86:9b:e9:6b:a5:fd:ed:
ca:7e:90:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 10:45:47 2024 by rpki-client on console-ams.rpki-client.org