Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa
File: 3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa (raw, json)
Hash identifier: dIkOrv4LvqHXHQ/Q1QM8B21w0Kd5WsvtiX/ASI1oAg4=
Subject key identifier: 16:CE:1E:16:6C:C9:D3:57:84:87:AD:41:D6:F3:D6:F4:9F:8E:9B:A7
Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Certificate serial: 23CA197D492FDE94D086A12D65D818FC7D4FAAFE
Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa
Signing time: Mon 19 Jun 2023 16:41:04 +0000
ROA not before: Mon 19 Jun 2023 16:36:04 +0000
ROA not after: Mon 17 Jun 2024 16:41:04 +0000
asID: 150238
IP address blocks: 103.20.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 01:41:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:ca:19:7d:49:2f:de:94:d0:86:a1:2d:65:d8:18:fc:7d:4f:aa:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Validity
Not Before: Jun 19 16:36:04 2023 GMT
Not After : Jun 17 16:41:04 2024 GMT
Subject: CN=16CE1E166CC9D3578487AD41D6F3D6F49F8E9BA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:28:c2:59:eb:21:00:45:c4:39:55:2f:b8:
75:82:35:95:7c:40:89:bb:7c:80:d9:18:a1:d0:88:
7b:e3:06:7a:2a:24:31:e0:9d:e4:39:59:ab:25:02:
28:53:0a:3a:53:ba:35:07:89:e6:96:bc:7a:4c:2b:
a5:4a:cf:00:d9:93:d2:bf:ee:aa:e0:7a:b8:12:b3:
c4:bc:c4:82:dc:d4:86:4b:c8:ea:fa:36:a7:40:07:
01:57:60:49:77:67:30:66:e0:b8:71:4d:f7:0e:13:
8b:2c:b7:f7:61:d0:e0:1e:3e:ba:ec:1a:17:01:ac:
b8:36:81:21:63:1c:45:0e:c9:2d:2b:f6:29:bf:8e:
c0:b0:91:67:c4:45:75:7d:32:40:03:eb:fa:cc:c2:
e7:d8:0d:94:5c:24:bb:a3:47:23:d8:7c:ec:c4:5c:
71:08:31:90:a2:30:8b:2b:31:e2:b7:6f:0e:76:dc:
7c:0f:8e:77:8c:7c:cc:e4:91:12:32:4e:8f:6f:88:
2a:d9:9d:72:0b:03:00:18:4e:01:7b:0a:fc:6a:7c:
f4:70:81:b1:9e:cb:81:11:e4:26:27:85:3a:1f:e5:
9c:cd:5a:42:dc:24:46:c1:e3:d8:bc:9f:cd:23:af:
ca:f4:02:88:11:52:17:05:79:eb:d8:b1:c7:e1:9e:
a0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:CE:1E:16:6C:C9:D3:57:84:87:AD:41:D6:F3:D6:F4:9F:8E:9B:A7
X509v3 Authority Key Identifier:
keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.108.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:b7:6c:87:5a:62:c7:0e:f9:40:fe:9b:70:62:f7:1d:af:31:
81:ea:1f:5d:e9:aa:a5:06:4d:99:5e:2c:3b:6a:d8:ff:ea:42:
6c:0c:39:f4:cc:5f:75:25:a8:0b:80:f6:25:1a:6c:2c:ac:67:
5f:85:2e:24:fd:9c:a9:75:66:f4:68:85:de:82:dd:dd:70:24:
5f:93:89:2a:bb:e8:b0:2f:15:24:ee:05:1e:a5:7b:c9:06:1b:
3c:d8:53:e0:75:a2:e6:cf:c8:5a:f2:2e:d8:38:78:be:67:1e:
f1:1f:93:4f:2c:f0:7c:e8:e4:3a:ee:ed:79:71:ae:40:ab:f0:
4c:45:59:10:c7:d5:a0:55:f1:ba:be:a6:ee:f5:5f:98:02:59:
88:e5:6c:f0:1d:22:93:6f:48:62:f6:9e:79:62:36:df:df:98:
51:88:71:ad:42:e1:52:de:5f:ca:69:8e:0b:78:c3:20:71:c2:
82:fc:e2:e3:14:f4:9a:39:94:ab:48:45:cc:e3:2c:58:25:da:
62:15:b6:32:18:dc:47:ac:85:d8:a3:67:95:4c:6d:51:a9:90:
92:b7:8f:e7:e5:88:c0:c4:f8:57:6b:ff:72:8a:87:59:d0:1d:
aa:09:5b:7f:26:d6:e9:a0:02:c8:ec:ff:b4:a7:e6:b5:85:bf:
91:68:ee:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org