Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa
File: 3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa (raw, json)
Hash identifier: 29FTCQnuC21Ap5vakoRZNLBbApxQn5AAoQOxBARKH6Q=
Subject key identifier: EF:A0:95:49:BA:82:49:B1:CD:97:AF:CA:47:4A:D2:56:DE:20:24:AA
Certificate issuer: /CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51
Certificate serial: 57B5F1DDB3D59EAB7CD39DC2F8C48A2C7CB3AA0E
Authority key identifier: 33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa
Signing time: Fri 21 Feb 2025 06:24:16 +0000
ROA not before: Fri 21 Feb 2025 06:19:16 +0000
ROA not after: Fri 20 Feb 2026 06:24:16 +0000
asID: 18059
IP address blocks: 103.120.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Jun 2025 14:10:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:b5:f1:dd:b3:d5:9e:ab:7c:d3:9d:c2:f8:c4:8a:2c:7c:b3:aa:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51
Validity
Not Before: Feb 21 06:19:16 2025 GMT
Not After : Feb 20 06:24:16 2026 GMT
Subject: CN=EFA09549BA8249B1CD97AFCA474AD256DE2024AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a0:eb:0b:51:32:64:65:e4:c0:35:14:c4:e2:
87:7f:ed:19:21:ae:a2:a0:99:f1:cb:38:86:a9:08:
9c:0e:e6:d9:12:4f:8f:7b:8d:05:5d:ba:62:75:b5:
6f:65:bb:08:78:0f:58:23:96:64:7a:42:90:9e:22:
76:1b:36:a4:76:f5:c9:48:f8:07:c7:7c:bf:04:b1:
76:97:79:77:e6:71:c9:92:7b:20:f5:c8:fc:aa:3d:
a0:fc:b1:ef:65:12:c4:9f:38:81:6c:6e:61:d4:26:
41:8e:d7:9b:99:94:1d:29:99:7b:13:32:77:d4:ae:
8b:59:34:89:bd:ad:57:85:d3:b2:fb:32:e5:4e:f6:
b7:68:99:b6:21:f7:70:73:08:69:be:ff:ff:b6:23:
f8:c2:7c:bf:62:cc:d3:d5:58:d7:ec:81:77:a3:e4:
a1:a8:04:1f:8c:fb:96:29:b5:18:d9:af:cb:0c:99:
06:7b:32:a3:bb:cb:aa:08:b9:7f:69:69:3c:5f:41:
c1:e9:2f:11:5a:da:5c:01:df:ed:61:d5:e6:91:da:
60:4b:97:04:10:d4:08:af:1a:5c:b5:60:39:eb:ab:
c0:8e:86:80:21:10:85:13:5f:44:d2:ed:a9:f1:fe:
25:08:e6:b1:a7:f2:eb:74:4e:32:80:18:64:9e:55:
3c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A0:95:49:BA:82:49:B1:CD:97:AF:CA:47:4A:D2:56:DE:20:24:AA
X509v3 Authority Key Identifier:
keyid:33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.120.233.0/24
Signature Algorithm: sha256WithRSAEncryption
85:c2:d9:b5:d8:dd:03:25:f2:a4:7f:52:5c:2a:97:90:07:69:
88:42:ad:5e:e4:f4:6f:6f:28:ad:3b:ce:c4:e7:7b:9a:af:93:
0c:e5:d8:5b:a2:a2:b9:1c:95:be:c5:12:dd:e0:f3:1a:ec:aa:
ac:f6:13:e6:1f:67:60:61:78:07:e1:4f:55:45:0d:75:e8:5b:
ef:6d:91:3b:a6:84:c8:26:d6:f0:5c:89:12:ba:11:e4:19:60:
1f:1d:9a:15:e9:f7:63:ed:a3:86:ff:7e:9c:33:b4:83:30:be:
6b:f1:7f:ce:30:a9:97:da:d2:49:a2:34:54:35:60:4e:ee:38:
80:8b:14:79:4d:80:dd:0c:e0:80:15:23:ec:2c:d0:a5:c8:ea:
ab:a4:b4:42:4a:29:ce:0a:b8:34:f4:ba:98:b6:4f:97:d3:a4:
db:51:e7:ed:ee:ec:17:cc:95:9e:f8:af:a2:e2:cf:25:bf:01:
79:c7:53:2a:de:89:e6:3a:14:5b:7f:4e:a2:52:81:9a:ac:c3:
ec:b9:f4:3d:26:23:bc:72:0c:77:f4:39:a6:59:27:9b:90:27:
f5:53:a3:1a:1b:9a:44:4c:f0:3a:19:53:9c:b5:0d:8b:6e:92:
33:10:4f:36:8d:2f:63:a0:44:5b:c4:8d:fc:10:3a:ef:c0:a7:
e0:b3:a4:ea
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUV7Xx3bPVnqt8053C+MSKLHyzqg4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzM2NkNENTU3M0JCNEIxMTY5NERCQ0YwRjE1MDJDRTJC
NDZCRkQ1MTAeFw0yNTAyMjEwNjE5MTZaFw0yNjAyMjAwNjI0MTZaMDMxMTAvBgNV
BAMTKEVGQTA5NTQ5QkE4MjQ5QjFDRDk3QUZDQTQ3NEFEMjU2REUyMDI0QUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYoOsLUTJkZeTANRTE4od/7Rkh
rqKgmfHLOIapCJwO5tkST497jQVdumJ1tW9luwh4D1gjlmR6QpCeInYbNqR29clI
+AfHfL8EsXaXeXfmccmSeyD1yPyqPaD8se9lEsSfOIFsbmHUJkGO15uZlB0pmXsT
MnfUrotZNIm9rVeF07L7MuVO9rdombYh93BzCGm+//+2I/jCfL9izNPVWNfsgXej
5KGoBB+M+5YptRjZr8sMmQZ7MqO7y6oIuX9paTxfQcHpLxFa2lwB3+1h1eaR2mBL
lwQQ1AivGly1YDnrq8COhoAhEIUTX0TS7anx/iUI5rGn8ut0TjKAGGSeVTzhAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU76CVSbqCSbHNl6/KR0rSVt4gJKowHwYDVR0j
BBgwFoAUM2bNVXO7SxFpTbzw8VAs4rRr/VEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
M2EyNmJmYi02NzVmLTQ0NGYtOTBjOS01ZDNhOWIxOGMzNGMvMC8zMzY2Q0Q1NTcz
QkI0QjExNjk0REJDRjBGMTUwMkNFMkI0NkJGRDUxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMzM2NkNENTU3M0JCNEIxMTY5NERCQ0YwRjE1MDJDRTJCNDZC
RkQ1MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzYTI2YmZiLTY3NWYtNDQ0Zi05
MGM5LTVkM2E5YjE4YzM0Yy8wLzMxMzAzMzJlMzEzMjMwMmUzMjMzMzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3jpMA0GCSqG
SIb3DQEBCwUAA4IBAQCFwtm12N0DJfKkf1JcKpeQB2mIQq1e5PRvbyitO87E53ua
r5MM5dhboqK5HJW+xRLd4PMa7Kqs9hPmH2dgYXgH4U9VRQ116FvvbZE7poTIJtbw
XIkSuhHkGWAfHZoV6fdj7aOG/36cM7SDML5r8X/OMKmX2tJJojRUNWBO7jiAixR5
TYDdDOCAFSPsLNClyOqrpLRCSinOCrg09LqYtk+X06TbUeft7uwXzJWe+K+i4s8l
vwF5x1Mq3onmOhRbf06iUoGarMPsufQ9JiO8cgx39DmmWSebkCf1U6MaG5pETPA6
GVOctQ2LbpIzEE82jS9joERbxI38EDrvwKfgs6Tq
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:07:17 2025 by rpki-client