Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa
File: AS45288.roa (raw, json)
Hash identifier: ZUD6MUGvc67Xuc6FFhJeJvVQgswxbuyvdbXfaytFIVc=
Subject key identifier: 46:BA:D4:70:36:86:9A:A2:48:B2:9F:41:7A:45:5F:60:E3:8C:BA:D7
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3E1F60E9D5AFC38605280148884962AB737131B6
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa
Signing time: Tue 07 Feb 2023 03:00:35 +0000
ROA not before: Tue 07 Feb 2023 02:55:35 +0000
ROA not after: Tue 06 Feb 2024 03:00:35 +0000
asID: 45288
IP address blocks: 202.164.220.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:1f:60:e9:d5:af:c3:86:05:28:01:48:88:49:62:ab:73:71:31:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Feb 7 02:55:35 2023 GMT
Not After : Feb 6 03:00:35 2024 GMT
Subject: CN=46BAD47036869AA248B29F417A455F60E38CBAD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6f:82:dd:8c:0b:e7:0b:8d:f6:62:89:ed:c0:
3f:2d:ff:96:ce:f5:4a:17:9a:c5:bb:46:81:ac:c1:
dc:5e:3b:1d:22:3f:c0:63:ba:ed:d1:f9:af:0b:01:
a6:7d:fc:27:3c:7d:02:bb:9a:b0:51:bc:dd:31:27:
39:99:f0:11:5c:1e:c4:22:82:21:82:87:a9:e2:d6:
f0:e7:a0:20:98:3b:bf:1e:b6:dc:8c:ba:7f:16:1c:
c7:d1:44:b8:cd:c6:63:6d:c6:74:80:3b:be:63:f2:
db:2c:eb:6d:5c:62:ef:a2:26:5d:28:5b:02:8c:7f:
c0:b1:c6:49:84:6d:15:53:54:f3:ff:c8:64:3a:24:
97:8a:ff:83:df:1c:a4:49:d6:5f:50:b1:86:f9:a1:
0e:cf:64:e2:6d:58:7f:b9:b7:53:a6:28:fb:bd:b0:
c8:8a:10:5a:ab:aa:6a:0c:bb:93:d4:19:3e:ba:cc:
4e:7b:a5:b6:62:63:29:8b:40:37:52:dc:72:29:2b:
2b:b6:9e:d8:5e:c9:03:2a:d1:b7:1c:a1:99:17:15:
26:a7:c8:d8:33:1a:7e:59:2e:56:7a:96:32:aa:a6:
2f:a0:54:ff:76:76:62:5d:48:ff:cf:56:a8:dc:a4:
83:c8:53:7f:bd:4a:7c:ef:bf:73:5f:cd:62:cf:ab:
07:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:BA:D4:70:36:86:9A:A2:48:B2:9F:41:7A:45:5F:60:E3:8C:BA:D7
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.164.220.0/22
Signature Algorithm: sha256WithRSAEncryption
94:38:a2:5c:0f:3a:4e:3c:e0:78:89:e7:8a:ea:78:24:a4:8e:
6f:dc:24:7c:9a:f2:89:15:c5:e1:16:47:c1:df:6f:2b:7f:3a:
46:6a:67:e4:07:9e:88:0c:be:6e:ce:b6:9a:62:8a:40:a0:12:
c6:2d:75:93:a1:e6:ff:03:cd:bc:41:b9:77:ee:60:19:a4:28:
8e:9d:bb:81:4d:56:3f:8a:7e:ab:37:93:10:77:df:f7:f2:79:
30:bc:a0:88:56:fb:92:c9:ab:c2:92:ff:2d:e2:c3:ef:06:1b:
96:d8:e5:7d:4e:4e:79:b6:d2:b2:e5:99:03:54:2f:9d:47:d5:
16:18:da:9d:06:33:fe:ba:8b:52:6e:58:0d:33:bb:2b:82:c8:
18:b1:2f:3e:59:f8:97:a9:36:61:19:92:a5:cd:51:35:24:f2:
90:2f:d9:e9:06:c0:23:60:91:97:88:a5:0b:c1:90:9d:7e:9c:
04:ef:07:32:68:83:f1:3e:e8:95:11:7c:e1:ac:0f:a5:8a:31:
4e:a4:73:fd:b2:49:b0:8d:2e:e0:cd:ab:a1:e8:b7:51:d7:73:
f1:25:e7:be:40:c6:66:be:a4:f0:b0:81:d0:68:fc:0b:f3:10:
ed:40:92:95:95:80:80:df:35:ca:ca:90:fb:54:79:be:cd:f8:
27:22:4c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 15 02:39:06 2023 by rpki-client on console-fra.rpki-client.org