Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32342d3234203d3e203234323036.roa
File: 3131302e34342e3137322e302f32342d3234203d3e203234323036.roa (raw, json)
Hash identifier: zczEKXT3nar14ZdtXNi2+b/1L2aSviVFTYhVt9H/6zo=
Subject key identifier: 72:EE:96:C2:06:F7:0E:11:58:37:CA:3A:2F:F1:B5:76:76:4C:71:E4
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 4BA22A786684B3FAE1679B90279C5F6BBAB8F912
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32342d3234203d3e203234323036.roa
Signing time: Fri 23 Aug 2024 11:18:58 +0000
ROA not before: Fri 23 Aug 2024 11:13:58 +0000
ROA not after: Fri 22 Aug 2025 11:18:58 +0000
asID: 24206
IP address blocks: 110.44.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Apr 2025 01:41:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:a2:2a:78:66:84:b3:fa:e1:67:9b:90:27:9c:5f:6b:ba:b8:f9:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Aug 23 11:13:58 2024 GMT
Not After : Aug 22 11:18:58 2025 GMT
Subject: CN=72EE96C206F70E115837CA3A2FF1B576764C71E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ec:ae:5f:b8:f4:c5:8d:b5:a1:4b:46:32:97:
d0:dc:b7:33:9e:17:89:f7:61:38:a9:89:c3:3d:a2:
e5:17:a2:9a:82:44:9a:f6:25:f6:b0:27:7a:73:44:
78:4d:99:c7:46:8c:7f:97:52:63:fa:ea:d5:1a:d9:
f8:1e:e2:64:30:89:61:48:40:c6:af:3b:79:8f:15:
f4:89:a6:49:4a:c2:9c:79:79:38:c5:c3:34:68:79:
ef:51:a5:ea:1e:9b:fd:30:14:85:79:6b:f3:70:10:
35:e7:e6:23:ed:9d:68:0c:00:dd:97:99:71:2f:a1:
a3:30:58:f4:c0:e2:25:13:dc:63:ab:9b:0b:b8:84:
9e:cf:ea:db:8e:28:b7:59:0c:f2:d7:de:ba:b5:92:
ad:20:0e:73:e2:56:28:18:5a:cc:22:4b:f3:f7:81:
d3:40:08:72:d4:31:2f:5a:6c:4d:5d:6b:86:3b:ed:
52:de:a2:cb:61:56:42:ac:96:b9:fc:e1:08:5c:22:
12:68:a0:b7:fe:a4:24:0b:90:e4:36:99:3b:70:64:
d7:f0:26:6c:ce:cf:fe:72:4a:c1:4a:1c:e8:27:73:
46:17:34:28:06:f5:25:70:7a:2d:cf:27:aa:f6:e1:
55:31:85:8c:40:64:3b:4e:2e:30:09:bf:fc:e3:ee:
91:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EE:96:C2:06:F7:0E:11:58:37:CA:3A:2F:F1:B5:76:76:4C:71:E4
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32342d3234203d3e203234323036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.44.172.0/24
Signature Algorithm: sha256WithRSAEncryption
47:aa:74:bf:6a:cf:82:d8:ce:39:91:d1:1d:f4:23:ac:37:81:
28:7c:2f:c7:d4:ff:29:92:d1:30:e7:21:7a:e4:45:40:64:c7:
30:33:d3:59:43:cb:58:0e:b8:31:b9:47:b0:67:e7:6d:dc:9c:
81:b0:93:c8:bc:23:23:c7:ff:0b:4d:b8:fb:93:87:62:95:8b:
c6:59:3c:2f:4f:7c:08:92:32:d3:1c:dd:eb:f0:98:68:c2:63:
36:fd:e7:ed:4e:a0:80:8a:b0:d3:c4:59:6a:2a:df:c3:19:01:
1a:f6:e7:bf:49:35:61:cb:df:c6:5a:43:34:e3:89:89:b9:d6:
c9:69:b6:77:55:39:77:73:84:07:ab:4c:9a:8b:75:dc:6a:b6:
7f:aa:92:67:6e:12:dd:7b:9c:7c:83:57:dc:2b:55:4b:0f:a5:
b2:8c:6f:59:86:ac:8e:95:70:cf:1e:c9:1c:df:a2:c2:14:be:
3d:6e:d0:07:94:8b:9d:c8:91:18:4b:0c:9d:b6:13:6e:bc:bf:
21:81:33:5c:98:65:9b:25:99:8f:4f:b0:f6:e4:fa:e9:fb:36:
27:a9:39:53:f2:0c:9f:6f:83:73:92:df:78:f1:1c:5c:2d:c1:
3a:04:41:f7:4d:89:d4:29:51:e2:dd:cd:64:b9:6e:9e:6e:89:
0c:14:f8:41
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUS6IqeGaEs/rhZ5uQJ5xfa7q4+RIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC
MEMxMDhBOTAeFw0yNDA4MjMxMTEzNThaFw0yNTA4MjIxMTE4NThaMDMxMTAvBgNV
BAMTKDcyRUU5NkMyMDZGNzBFMTE1ODM3Q0EzQTJGRjFCNTc2NzY0QzcxRTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI7K5fuPTFjbWhS0Yyl9DctzOe
F4n3YTipicM9ouUXopqCRJr2JfawJ3pzRHhNmcdGjH+XUmP66tUa2fge4mQwiWFI
QMavO3mPFfSJpklKwpx5eTjFwzRoee9Rpeoem/0wFIV5a/NwEDXn5iPtnWgMAN2X
mXEvoaMwWPTA4iUT3GOrmwu4hJ7P6tuOKLdZDPLX3rq1kq0gDnPiVigYWswiS/P3
gdNACHLUMS9abE1da4Y77VLeosthVkKslrn84QhcIhJooLf+pCQLkOQ2mTtwZNfw
JmzOz/5ySsFKHOgnc0YXNCgG9SVwei3PJ6r24VUxhYxAZDtOLjAJv/zj7pFFAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUcu6Wwgb3DhFYN8o6L/G1dnZMceQwHwYDVR0j
BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD
NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx
MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05
MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG4srDANBgkqhkiG
9w0BAQsFAAOCAQEAR6p0v2rPgtjOOZHRHfQjrDeBKHwvx9T/KZLRMOcheuRFQGTH
MDPTWUPLWA64MblHsGfnbdycgbCTyLwjI8f/C024+5OHYpWLxlk8L098CJIy0xzd
6/CYaMJjNv3n7U6ggIqw08RZairfwxkBGvbnv0k1YcvfxlpDNOOJibnWyWm2d1U5
d3OEB6tMmot13Gq2f6qSZ24S3XucfINX3CtVSw+lsoxvWYasjpVwzx7JHN+iwhS+
PW7QB5SLnciRGEsMnbYTbry/IYEzXJhlmyWZj0+w9uT66fs2J6k5U/IMn2+Dc5Lf
ePEcXC3BOgRB902J1ClR4t3NZLlunm6JDBT4QQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:51 2025 by rpki-client