Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313430343233.roa
File: 3130332e32302e3130382e302f32342d3234203d3e20313430343233.roa (raw, json)
Hash identifier: 24g0s5Nzs3zYMZ/erDBWhHQy8jFsHzDeH1A9w4WczYc=
Subject key identifier: 58:B3:E6:47:D6:4D:9B:D4:3F:25:45:4C:D7:25:08:4E:9D:31:5E:6A
Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Certificate serial: 25916896278E7375BA9AB63539D842CE4F35B3C1
Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313430343233.roa
Signing time: Fri 14 Jun 2024 05:22:29 +0000
ROA not before: Fri 14 Jun 2024 05:17:29 +0000
ROA not after: Fri 13 Jun 2025 05:22:29 +0000
asID: 140423
IP address blocks: 103.20.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 19:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:91:68:96:27:8e:73:75:ba:9a:b6:35:39:d8:42:ce:4f:35:b3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Validity
Not Before: Jun 14 05:17:29 2024 GMT
Not After : Jun 13 05:22:29 2025 GMT
Subject: CN=58B3E647D64D9BD43F25454CD725084E9D315E6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:be:67:50:a3:5a:1d:59:cf:ea:c8:ba:cd:e6:
f6:40:b9:0c:1d:bf:c4:0a:de:b9:bf:17:c5:cb:38:
9e:44:8b:81:17:2f:d0:9e:2e:a5:1d:9e:4c:75:1f:
36:2f:04:6f:24:d4:8d:64:05:fa:ce:4e:e8:8f:8c:
e3:aa:8a:2e:1a:8e:09:36:5a:bf:50:ed:71:26:6f:
b8:78:03:a7:f8:31:9c:d1:7e:80:d1:25:39:e8:da:
cc:2f:0e:7b:57:e8:e5:2a:a0:7a:15:45:b0:38:dc:
46:48:ee:e2:76:23:63:da:d3:9e:76:51:62:df:c0:
45:82:b4:4e:71:b5:1a:5f:2e:6c:6a:97:02:5d:58:
46:1a:e0:5d:ee:6b:f7:66:15:ab:c3:a2:a2:a4:74:
5b:ae:dd:c3:78:42:72:12:36:c2:37:34:17:1c:ad:
6c:51:4c:e9:b6:26:67:b9:76:cc:4b:36:4e:88:a1:
13:cb:1f:36:3a:91:1e:9c:41:e6:36:80:87:40:88:
0a:d6:3c:a9:cc:24:e9:fd:c8:89:17:fd:df:db:36:
cf:82:c2:6b:fc:fe:8d:1a:04:0d:cf:64:f8:84:8c:
4f:05:45:1d:e3:89:b5:25:2b:df:5d:39:50:cf:02:
98:ce:35:42:76:21:29:0f:7e:90:a0:c7:9a:fd:81:
90:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B3:E6:47:D6:4D:9B:D4:3F:25:45:4C:D7:25:08:4E:9D:31:5E:6A
X509v3 Authority Key Identifier:
keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.108.0/24
Signature Algorithm: sha256WithRSAEncryption
21:5e:b5:5a:db:ad:a5:ed:63:4d:be:81:1b:bc:3f:e2:b6:ce:
06:a0:8b:26:ac:aa:5a:88:4c:9a:e3:c2:6d:58:85:f8:57:f6:
dd:7c:76:60:2a:58:d5:10:40:e5:ad:da:51:68:9a:2e:e1:8e:
b9:08:bb:a6:22:95:6e:0e:6b:cb:b7:43:c3:6d:50:a3:da:42:
92:66:f8:85:79:af:a3:a2:5b:c8:76:e0:eb:87:59:50:3d:80:
39:59:3c:30:ca:94:7f:c2:2f:18:fa:9d:53:c2:cf:79:a2:6e:
d4:11:30:78:e5:3f:45:31:eb:68:d5:9f:a8:60:41:db:e5:04:
00:0f:a1:af:6c:32:41:48:f7:ff:95:2d:3a:ea:4f:1f:4b:08:
8f:04:04:43:83:d7:24:ab:b5:27:ae:77:6a:ed:48:85:17:3b:
4e:01:8e:93:a2:ec:8f:cb:ad:17:0e:ed:77:55:b8:72:57:d2:
73:4d:ac:f2:3b:9a:ef:52:1e:4a:64:a3:f8:db:b8:14:88:8a:
49:4c:0f:7d:10:52:dc:99:8a:c7:a1:1b:15:0c:b7:0c:64:a3:
14:bd:39:24:78:11:14:0a:ea:ce:f7:97:3b:ad:b0:6b:ff:ef:
98:f7:3b:a2:91:17:89:bf:30:48:8e:49:b7:ad:3e:44:d2:9b:
79:6c:69:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 23:30:22 2024 by rpki-client on console-fra.rpki-client.org