Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32332d3233203d3e203234323036.roa
File: 3131302e34342e3137302e302f32332d3233203d3e203234323036.roa (raw, json)
Hash identifier: z8UVJBGAPwQv3XroPzOrfU+NNOwdp+zWMM5py40KAew=
Subject key identifier: E0:BB:8D:8B:14:DF:74:59:0B:E9:2E:69:A5:86:10:CE:8B:17:1E:51
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 25C0E17C17952CADD8630990348DDDB63234AE12
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32332d3233203d3e203234323036.roa
Signing time: Wed 21 Aug 2024 15:19:43 +0000
ROA not before: Wed 21 Aug 2024 15:14:43 +0000
ROA not after: Wed 20 Aug 2025 15:19:43 +0000
asID: 24206
IP address blocks: 110.44.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 05 Apr 2025 01:41:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:c0:e1:7c:17:95:2c:ad:d8:63:09:90:34:8d:dd:b6:32:34:ae:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Aug 21 15:14:43 2024 GMT
Not After : Aug 20 15:19:43 2025 GMT
Subject: CN=E0BB8D8B14DF74590BE92E69A58610CE8B171E51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:36:0a:fe:7f:98:79:9f:2d:99:2e:58:8b:6c:
a7:04:18:32:e7:d7:b5:58:76:68:de:83:2b:64:7b:
59:87:4e:fc:7a:b0:b7:ef:70:a6:69:83:a5:32:d5:
61:a4:9c:b4:35:dc:5f:e2:75:43:cc:48:b9:71:69:
6d:d0:52:b7:7e:62:28:a9:b5:ce:ef:ea:3e:1c:a4:
c2:f6:10:d8:c4:fc:6a:5e:6b:2b:a2:6b:d6:8a:53:
84:cc:a3:c4:d9:e3:66:d8:dd:52:17:f1:fc:a5:90:
fc:32:c0:f8:c6:cd:1c:31:cf:71:11:dd:8f:eb:8d:
0e:ec:7b:b9:6b:6f:4a:1f:c4:84:b8:bb:09:95:ed:
97:17:01:47:5f:28:b7:bc:ed:e9:bb:4d:3e:34:d5:
ff:9f:4e:4d:29:57:70:57:d6:1a:28:e8:2e:c2:58:
78:fc:ac:b1:00:39:d7:77:1a:d3:e6:49:2f:d3:52:
e0:18:b3:8c:7e:d9:43:b2:cd:a7:74:6e:07:36:9f:
a3:9f:e7:a3:b1:16:23:55:b1:cb:6a:7f:a0:7a:cb:
3d:28:46:ab:c6:2f:53:5d:72:49:13:02:fb:90:58:
6c:45:03:b3:df:7f:a0:da:96:a4:00:eb:1d:7d:41:
0f:69:8c:e7:e3:5f:16:95:e8:ee:e8:b0:3d:27:c9:
ee:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BB:8D:8B:14:DF:74:59:0B:E9:2E:69:A5:86:10:CE:8B:17:1E:51
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32332d3233203d3e203234323036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.44.170.0/23
Signature Algorithm: sha256WithRSAEncryption
37:6e:3c:bf:ca:4c:d6:3e:04:fc:58:eb:17:cd:82:38:6e:d9:
f9:fd:ff:0c:c0:9a:20:b8:3c:68:cc:3b:e1:88:52:cc:cc:68:
c4:62:93:47:20:f7:58:b9:b2:03:a0:18:e4:02:e4:28:a8:dc:
79:2f:31:78:98:5b:52:c2:00:f8:e5:56:ff:1d:1c:a9:9f:e1:
08:e5:bc:98:48:68:03:c0:17:fb:e7:bb:9b:8e:15:15:35:0a:
1f:ad:88:5d:42:c4:68:64:13:27:63:50:ba:2c:b1:e3:38:e0:
0f:49:64:f1:e7:14:d3:04:4a:42:7f:0c:c1:bf:0e:e2:25:98:
af:2f:b4:95:74:60:9f:43:17:65:24:30:77:8f:3f:e1:da:40:
c2:00:05:c3:f4:f8:f9:b1:01:e1:49:d6:90:24:c8:f3:bb:04:
66:ed:d7:d4:9b:4a:71:fd:4c:78:d2:b8:cf:18:88:67:da:c7:
03:2a:3e:42:9d:eb:7e:63:75:09:40:9d:82:80:15:bf:40:8c:
40:24:99:da:b0:b2:52:a9:38:a6:31:3e:05:7d:7c:fd:1f:82:
8f:67:54:7e:3d:3a:21:a9:d4:7c:a6:e7:97:79:52:61:1e:13:
0c:d2:ac:ec:0a:9a:8d:b5:bb:44:7c:0e:4e:7f:04:92:3e:17:
2e:35:96:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:40 2025 by rpki-client