Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa
File: 3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa (raw, json)
Hash identifier: aYvMVyCdjv3CnYKgiznRKPNjcl0T+86aZDBNJmeuPpg=
Subject key identifier: 40:51:7E:D3:6B:20:A5:AF:77:AC:2A:3C:32:2E:61:0C:C5:18:79:16
Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Certificate serial: 1AEC17905126CCD5E447B6EF3108C57ADB946520
Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa
Signing time: Mon 20 May 2024 17:00:02 +0000
ROA not before: Mon 20 May 2024 16:55:02 +0000
ROA not after: Mon 19 May 2025 17:00:02 +0000
asID: 140423
IP address blocks: 103.20.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 11:19:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:ec:17:90:51:26:cc:d5:e4:47:b6:ef:31:08:c5:7a:db:94:65:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3
Validity
Not Before: May 20 16:55:02 2024 GMT
Not After : May 19 17:00:02 2025 GMT
Subject: CN=40517ED36B20A5AF77AC2A3C322E610CC5187916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:84:f0:2a:b0:cc:33:bd:4c:63:f9:b1:05:60:
89:74:ac:2b:3f:a0:3d:cd:24:df:97:3c:97:11:98:
26:c7:ae:91:bf:27:b8:70:1c:ac:07:d0:6a:a4:51:
6f:35:35:f7:f2:2d:e3:fe:e7:88:7b:4d:a7:63:e9:
5f:af:49:78:a5:a1:c4:cf:2c:ad:6f:64:5e:e3:99:
52:48:5c:11:24:df:db:05:09:c6:c4:c0:a6:fa:f4:
a2:61:ed:fe:81:d4:7f:ba:90:57:80:e2:ef:de:87:
eb:16:b6:54:de:23:20:e3:42:16:91:a4:7a:9f:c2:
b9:83:06:30:fe:ac:dd:95:f7:ef:ae:36:37:ac:e5:
67:06:d5:45:c7:50:3e:66:a4:69:7e:48:04:18:2f:
09:00:27:ba:7b:d6:65:50:36:7a:9b:c4:ba:9a:fc:
f2:0d:17:a0:d4:7d:97:cd:8f:9f:19:b4:d8:c6:cc:
69:16:d5:c1:38:5b:21:d3:62:a4:d0:75:93:f2:44:
08:78:89:52:a3:3f:6d:46:75:50:f9:d0:74:2d:45:
e0:95:f0:27:8d:2d:56:9b:7a:70:9a:47:6f:26:69:
d1:92:bc:0f:ac:fd:0a:86:ae:07:dd:1a:e8:ac:b9:
05:19:e7:b0:6f:06:ba:ad:2a:f1:3d:e9:0d:c7:ca:
a0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:51:7E:D3:6B:20:A5:AF:77:AC:2A:3C:32:2E:61:0C:C5:18:79:16
X509v3 Authority Key Identifier:
keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.109.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d1:30:28:2c:aa:91:86:2e:49:c1:3a:63:cd:01:5e:c2:f2:
b9:52:85:03:e6:4c:c9:26:87:8f:f9:64:f8:d1:90:47:88:38:
87:64:d3:e7:ea:1b:a5:58:84:74:e2:7b:6b:3f:eb:57:74:ec:
9a:76:13:ad:4f:c4:67:15:a1:0a:3d:dc:af:df:5d:c2:77:39:
c9:99:98:b8:af:89:b1:4c:e9:b8:19:f2:bb:ee:52:f6:8d:0c:
0b:95:74:75:6e:8a:4d:7a:c4:5f:59:c3:74:7f:61:f8:66:3c:
31:d4:e1:49:57:59:af:2f:64:ce:32:77:b2:5a:4f:1d:fa:15:
22:65:98:20:7f:13:82:a5:05:6a:39:27:24:56:a3:e0:81:84:
5e:98:fb:d8:ca:df:e9:2a:70:e8:cd:b7:59:9c:83:14:c2:a8:
33:48:51:ef:f0:7e:b9:a7:5b:b8:26:95:95:36:50:9f:71:b1:
9b:79:04:11:c8:2d:9c:e7:4b:aa:d7:b2:a4:59:2b:b2:ca:24:
fc:b3:7d:d1:9f:f3:09:ab:56:2a:93:16:75:a5:2c:c5:29:56:
27:4f:3d:19:48:75:54:d5:3d:cb:2e:e7:42:6e:3d:ad:84:d4:
db:b5:b3:b8:a1:bf:56:88:a6:97:6f:a1:5d:6c:45:b5:4b:ea:
cc:44:dc:54
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUGuwXkFEmzNXkR7bvMQjFetuUZSAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1
MDMyMzFCMzAeFw0yNDA1MjAxNjU1MDJaFw0yNTA1MTkxNzAwMDJaMDMxMTAvBgNV
BAMTKDQwNTE3RUQzNkIyMEE1QUY3N0FDMkEzQzMyMkU2MTBDQzUxODc5MTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/hPAqsMwzvUxj+bEFYIl0rCs/
oD3NJN+XPJcRmCbHrpG/J7hwHKwH0GqkUW81NffyLeP+54h7Tadj6V+vSXilocTP
LK1vZF7jmVJIXBEk39sFCcbEwKb69KJh7f6B1H+6kFeA4u/eh+sWtlTeIyDjQhaR
pHqfwrmDBjD+rN2V9++uNjes5WcG1UXHUD5mpGl+SAQYLwkAJ7p71mVQNnqbxLqa
/PINF6DUfZfNj58ZtNjGzGkW1cE4WyHTYqTQdZPyRAh4iVKjP21GdVD50HQtReCV
8CeNLVabenCaR28madGSvA+s/QqGrgfdGuisuQUZ57BvBrqtKvE96Q3HyqCVAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUQFF+02sgpa93rCo8Mi5hDMUYeRYwHwYDVR0j
BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4
QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy
MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05
YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxRtMA0GCSqG
SIb3DQEBCwUAA4IBAQBS0TAoLKqRhi5JwTpjzQFewvK5UoUD5kzJJoeP+WT40ZBH
iDiHZNPn6hulWIR04ntrP+tXdOyadhOtT8RnFaEKPdyv313CdznJmZi4r4mxTOm4
GfK77lL2jQwLlXR1bopNesRfWcN0f2H4Zjwx1OFJV1mvL2TOMneyWk8d+hUiZZgg
fxOCpQVqOSckVqPggYRemPvYyt/pKnDozbdZnIMUwqgzSFHv8H65p1u4JpWVNlCf
cbGbeQQRyC2c50uq17KkWSuyyiT8s33Rn/MJq1YqkxZ1pSzFKVYnTz0ZSHVU1T3L
LudCbj2thNTbtbO4ob9WiKaXb6FdbEW1S+rMRNxU
-----END CERTIFICATE-----
Generated at Tue Oct 15 14:42:37 2024 by rpki-client on console-ams.rpki-client.org