Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152076.roa
File: AS152076.roa (raw, json)
Hash identifier: 2Cg3RxtPD4Tt7G2+/digaIWiiKMafqDaWXQ04U4mG9g=
Subject key identifier: 7F:AE:30:B2:27:B5:BA:D8:2A:45:36:C1:ED:B5:B3:F1:C5:A0:37:B3
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 409AC6289D0FC248851109FA742BBD878AA71B4E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152076.roa
Signing time: Thu 25 Jan 2024 07:41:50 +0000
ROA not before: Thu 25 Jan 2024 07:36:50 +0000
ROA not after: Thu 23 Jan 2025 07:41:50 +0000
asID: 152076
IP address blocks: 202.47.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 05:47:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:9a:c6:28:9d:0f:c2:48:85:11:09:fa:74:2b:bd:87:8a:a7:1b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jan 25 07:36:50 2024 GMT
Not After : Jan 23 07:41:50 2025 GMT
Subject: CN=7FAE30B227B5BAD82A4536C1EDB5B3F1C5A037B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:70:8c:84:c1:4f:10:a6:32:26:03:59:75:3f:
b5:1c:ff:52:3e:8a:95:15:3c:a5:0f:25:8d:b3:48:
dc:89:73:8a:30:62:92:fb:c0:ba:66:28:ca:44:52:
24:7a:cd:a2:33:ca:7b:4e:47:a5:2b:2a:40:90:ef:
e9:37:a6:01:07:80:2e:d7:fe:ed:f9:58:85:99:6d:
a5:72:8c:82:50:f0:2b:f4:be:09:ef:13:3d:73:0d:
53:7b:3d:56:f6:72:0c:9a:64:d7:b4:38:b0:29:1b:
5a:2a:f4:9a:7f:a0:81:8a:70:19:ad:7b:0d:2c:a9:
ac:9b:52:6d:0c:11:73:8a:43:0e:69:75:37:22:12:
c8:c3:d2:8f:0f:4d:e0:5c:c0:ab:36:8b:c0:2f:85:
27:a1:d4:fd:c1:52:b6:e8:f1:97:72:95:4e:b2:14:
5c:72:15:31:e8:79:fc:17:e9:49:00:7b:a8:be:a7:
62:92:02:e4:fa:0e:f6:ce:d1:4e:22:eb:31:2a:77:
f0:b3:43:61:49:cc:f3:be:d3:9f:74:e5:bf:10:f2:
7f:f1:80:56:65:a3:01:5d:64:98:3b:35:0e:7e:4c:
15:ae:bf:01:4e:31:7c:5d:d6:92:2d:9b:38:dc:67:
60:7a:63:7d:9a:83:ac:47:a8:e8:9d:62:fc:42:39:
98:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:AE:30:B2:27:B5:BA:D8:2A:45:36:C1:ED:B5:B3:F1:C5:A0:37:B3
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152076.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.47.160.0/24
Signature Algorithm: sha256WithRSAEncryption
70:47:d8:19:55:0d:dc:39:d7:65:d8:6c:e7:68:5c:8c:28:86:
0f:4e:f1:1a:bf:8c:4c:b9:6d:31:92:c7:18:b8:a7:6c:bc:2a:
c1:ff:71:f9:e7:22:10:6f:cb:55:a3:e7:63:dd:db:cf:87:8d:
a9:66:d2:70:9c:c1:df:02:4f:c1:17:2d:f7:94:12:75:a2:50:
6a:ae:06:dd:de:cf:fc:13:3b:ee:8e:b0:68:8a:22:c9:db:fd:
bf:9a:30:cd:31:f1:d7:55:53:fb:23:87:60:cc:b7:74:04:9a:
4d:1c:be:01:c8:45:f0:7a:10:e8:a4:e4:f2:3a:c2:2a:4e:c9:
9e:f0:35:68:bf:65:cd:60:5f:06:87:b3:57:eb:12:e3:c1:cb:
ed:8a:70:0e:55:38:0c:a6:d4:0a:78:88:c2:4a:54:23:a8:40:
51:c5:bc:f2:35:a8:da:c7:65:e6:b7:45:d7:f9:c8:98:ee:d8:
95:3c:56:7c:c7:7a:28:ef:69:bb:32:66:1a:35:a6:03:03:a5:
93:bc:cd:24:57:fd:d5:b2:6e:e5:10:92:ca:b1:41:a7:ae:7a:
97:50:1f:04:51:39:c6:eb:5e:dd:65:71:ed:a0:77:01:cc:88:
e3:f7:a7:dc:c6:1a:32:3b:b2:ab:46:af:c9:32:75:b1:b9:bb:
22:34:f3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org