Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa
File: 3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa (raw, json)
Hash identifier: 1jM4gEElCx9V+Hq49dwemM1juMAyRamQcQU0/KmZjuE=
Subject key identifier: 3D:5C:80:91:7D:FF:B0:4E:C9:DD:B6:C2:41:C0:A2:A5:37:B1:3A:58
Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Certificate serial: 752C0BB347E0FCBB7D616ED5F02F091D68148CE3
Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa
Signing time: Mon 19 Aug 2024 19:56:21 +0000
ROA not before: Mon 19 Aug 2024 19:51:21 +0000
ROA not after: Mon 18 Aug 2025 19:56:21 +0000
asID: 150238
IP address blocks: 103.20.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 11:19:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:2c:0b:b3:47:e0:fc:bb:7d:61:6e:d5:f0:2f:09:1d:68:14:8c:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Validity
Not Before: Aug 19 19:51:21 2024 GMT
Not After : Aug 18 19:56:21 2025 GMT
Subject: CN=3D5C80917DFFB04EC9DDB6C241C0A2A537B13A58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:62:c3:71:f4:05:62:de:6e:f9:81:a7:53:f1:
62:4c:3c:62:65:3f:ff:41:a5:d1:7a:ce:21:d6:9e:
05:21:d9:2a:93:bb:f8:eb:92:96:5c:62:2a:c6:89:
d1:33:92:a5:b6:0a:16:62:a7:b0:e6:58:2d:95:ae:
29:7f:7f:0f:20:8f:54:b9:ea:13:cc:41:e9:eb:52:
dd:06:ab:a9:89:fb:f2:00:a7:60:24:3f:22:c4:31:
c2:ed:03:29:ba:e8:79:d3:19:3b:80:97:5e:a0:a2:
3a:4b:d1:68:5e:97:ce:41:ba:ee:7f:44:19:1f:2d:
24:b8:23:99:c6:4c:fd:26:8a:17:28:60:3d:4d:4c:
ca:40:46:66:1f:33:8e:46:41:c3:74:ae:b5:50:45:
27:1a:9f:3a:d9:ee:99:77:dc:e4:15:6a:50:83:09:
cf:1a:0e:aa:1b:ab:85:b4:f6:0c:9f:04:d9:12:f9:
ff:9d:8b:6d:a5:db:87:90:bd:6c:6b:2e:12:30:36:
44:48:e7:ab:32:ba:ab:1a:8c:73:62:24:69:aa:fb:
4a:25:c2:23:3b:7f:76:0a:56:4b:73:8b:84:f2:78:
7e:09:31:95:8f:0b:bf:52:e1:94:bb:57:f4:42:8b:
77:35:3d:32:ce:a6:d7:05:4b:6f:14:68:af:f5:89:
53:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5C:80:91:7D:FF:B0:4E:C9:DD:B6:C2:41:C0:A2:A5:37:B1:3A:58
X509v3 Authority Key Identifier:
keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.108.0/24
Signature Algorithm: sha256WithRSAEncryption
02:a4:c6:7f:ea:89:5c:68:a3:63:47:c3:e8:65:14:b3:a5:6d:
14:39:58:11:62:71:15:05:36:b3:a8:60:fc:5a:b9:dd:1d:06:
a4:5d:2f:28:0a:26:7e:ff:b6:71:35:bc:b3:20:ac:79:db:13:
5f:6e:a5:c0:b6:d5:d1:df:b5:63:1f:99:90:d9:d6:0f:cd:77:
28:20:ec:44:94:24:ee:d6:d9:00:47:8c:19:af:f5:4b:12:82:
9a:f9:15:51:6b:cf:51:da:aa:4e:4a:23:2d:c8:f3:f6:7e:fc:
20:1d:28:8e:ce:73:a8:59:0a:97:55:17:6b:0e:ac:32:66:c2:
19:6a:4e:42:bb:d5:a9:ee:46:cf:b9:31:7f:f6:4b:ec:9f:e8:
75:9a:44:8b:38:05:96:3b:87:6c:48:12:67:24:aa:60:3f:bb:
a5:68:ea:7f:56:61:a7:5d:96:85:41:02:62:75:7e:9e:91:53:
b2:17:c3:c1:0e:96:07:af:12:e3:8d:ed:79:b1:37:fc:8e:8e:
2c:81:3c:74:c4:28:07:7c:0b:d6:ea:bd:d9:7a:4a:c5:77:09:
81:99:39:aa:0c:a7:42:38:99:53:fe:8d:c0:fb:55:5e:33:45:
da:5e:e3:69:39:e6:96:f5:21:e3:d1:1d:9c:b5:69:3f:fa:69:
23:3e:e5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 14:42:37 2024 by rpki-client on console-ams.rpki-client.org