Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e203234323036.roa
File: 3131302e34342e3137302e302f32342d3234203d3e203234323036.roa (raw, json)
Hash identifier: 2+PejgaB22JNtrHJwr+kzI0/pDysIeUI5rDsTI2kaug=
Subject key identifier: 76:7F:6F:52:2C:04:25:BA:C6:AC:05:DA:1D:56:99:D3:2C:09:95:0C
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 01816B379BD4EF3FB526CE51EB181225AA358F56
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e203234323036.roa
Signing time: Fri 30 Aug 2024 16:00:01 +0000
ROA not before: Fri 30 Aug 2024 15:55:01 +0000
ROA not after: Fri 29 Aug 2025 16:00:01 +0000
asID: 24206
IP address blocks: 110.44.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Apr 2025 01:41:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:6b:37:9b:d4:ef:3f:b5:26:ce:51:eb:18:12:25:aa:35:8f:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Aug 30 15:55:01 2024 GMT
Not After : Aug 29 16:00:01 2025 GMT
Subject: CN=767F6F522C0425BAC6AC05DA1D5699D32C09950C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ac:fe:e7:d7:48:d7:03:d1:95:77:60:f4:df:
6f:c2:16:8b:ac:99:b0:40:2a:4b:3a:9c:5e:d4:36:
ca:45:d1:97:16:83:1f:e3:0b:4a:ba:67:3d:58:ee:
b9:4e:81:0e:49:46:a6:15:16:ef:66:ef:a0:59:9c:
78:d7:13:95:a0:0f:58:3c:de:d6:70:29:e7:a5:db:
bb:84:2c:b6:33:54:99:18:72:d4:6d:4b:cb:8c:43:
bf:4e:cd:f0:39:cd:09:eb:2f:c2:05:59:c4:1b:99:
ca:ff:4e:1d:23:53:8e:b2:bb:03:b4:09:a9:1b:3f:
85:d6:d2:b5:e5:ca:b5:3d:78:dc:ac:e2:92:c5:94:
2b:9d:50:74:82:20:b6:b4:82:21:23:cc:e1:ce:d1:
1a:99:53:ac:84:f9:21:a1:9b:1b:4b:5a:84:6e:12:
24:b3:53:09:09:2a:54:d8:e9:3b:36:46:53:69:12:
34:2b:d5:92:de:4f:bc:28:fb:6f:5a:cd:3a:79:85:
11:c5:60:2b:4a:3b:89:23:15:14:02:40:7a:51:6f:
35:dd:51:a1:a8:8a:09:07:c8:16:9f:5d:87:c0:5d:
1e:36:c3:19:52:30:24:05:3a:aa:94:b6:75:e7:ba:
04:5f:a3:0f:9b:bc:68:b8:f6:84:e4:2f:39:9f:f2:
d8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7F:6F:52:2C:04:25:BA:C6:AC:05:DA:1D:56:99:D3:2C:09:95:0C
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e203234323036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.44.170.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:36:53:71:0c:5e:cc:08:99:66:e1:52:89:ac:88:f2:f0:42:
f5:ea:a2:3c:0d:80:9f:aa:c9:16:fb:fa:6d:81:30:33:66:6c:
c4:b9:84:d3:dd:7c:d2:b4:0b:a5:6d:e2:83:b9:73:22:84:ce:
28:47:8d:09:89:86:c3:bc:69:2b:77:ca:fc:8e:e4:56:36:02:
7a:7d:4f:d4:9c:6b:8b:2f:78:63:e1:6f:af:78:73:ce:ce:ca:
71:ce:1b:67:77:1a:b2:3a:9b:1b:78:af:73:8c:e5:fa:38:c6:
16:43:09:df:45:33:a3:10:7b:83:0a:20:b5:9a:2b:57:37:b8:
b5:62:11:c7:8e:9f:f7:85:ae:c7:35:a1:7e:c3:86:7f:65:40:
15:9b:58:9f:98:db:88:bc:41:23:4d:b5:4c:1a:07:96:89:8f:
a3:33:d8:d5:bd:74:b5:24:f6:3b:95:86:b3:2b:3e:b9:a8:48:
ac:ba:38:20:8a:ef:9d:01:f8:7a:f2:fa:19:22:20:23:c7:00:
8d:55:8d:11:26:85:4d:93:28:98:10:a4:e3:95:ef:0b:c7:8b:
35:46:7b:9c:d9:44:46:88:3c:6f:7d:5e:c1:6d:24:d8:4c:11:
42:7a:c2:a2:74:31:92:25:b0:30:c3:89:ca:b7:7b:59:26:d2:
48:52:72:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:45 2025 by rpki-client