Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e20333936393832.roa
File: 3130332e31372e3137382e302f32342d3234203d3e20333936393832.roa (raw, json)
Hash identifier: xkf68a6RTlOdLmGkx1LwzheShgQacZL3kO2gWuFE+oI=
Subject key identifier: 98:1E:32:D5:23:C1:1C:D5:6B:51:5F:01:96:D4:C6:02:45:60:3B:77
Certificate issuer: /CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA
Certificate serial: 494DCB170F9BD03145BD59F1F1D16972A374A7DC
Authority key identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e20333936393832.roa
Signing time: Mon 16 Oct 2023 03:00:01 +0000
ROA not before: Mon 16 Oct 2023 02:55:01 +0000
ROA not after: Mon 14 Oct 2024 03:00:01 +0000
asID: 396982
IP address blocks: 103.17.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 09:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:4d:cb:17:0f:9b:d0:31:45:bd:59:f1:f1:d1:69:72:a3:74:a7:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA
Validity
Not Before: Oct 16 02:55:01 2023 GMT
Not After : Oct 14 03:00:01 2024 GMT
Subject: CN=981E32D523C11CD56B515F0196D4C60245603B77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:73:32:c6:1b:82:01:dc:e0:8e:26:16:b9:54:
e9:fd:eb:68:c1:2e:83:63:2e:15:67:4b:35:b9:00:
3f:e0:5f:30:fd:15:b7:35:66:df:22:75:75:3c:8d:
0c:15:95:7a:6b:a9:6e:e1:be:9b:0b:f5:f2:7c:2b:
d7:2c:43:c9:c3:54:22:80:b0:4d:cb:25:66:20:fa:
cc:44:e0:34:10:09:d5:ec:6b:96:45:ee:8d:65:7b:
f3:12:53:3e:2c:88:c7:4d:c9:45:ae:9f:40:e8:06:
af:65:dd:71:94:89:40:3e:d2:bc:5b:90:9a:bb:5f:
f2:82:dd:98:53:08:fa:71:16:87:1e:16:1b:79:83:
d4:5a:33:34:30:a3:a4:f2:74:ad:7e:47:f7:85:90:
cc:2b:4c:cf:73:48:7b:8a:b2:f6:f4:27:0a:a5:50:
0e:5b:69:13:3d:b5:22:eb:ab:bb:6f:39:4e:3f:a6:
ac:15:e9:fc:65:c1:ca:b3:f3:06:74:34:3a:42:29:
73:f7:85:ce:73:5f:e4:06:05:ac:90:1f:7b:44:dc:
a6:fa:bf:2b:f9:1e:ac:37:5f:36:42:4f:ff:55:a3:
05:3d:b9:e5:23:2d:ca:c0:8e:ba:4a:e3:d6:57:64:
cd:d9:df:67:ce:95:8d:b4:b6:55:90:ed:c3:d0:2e:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1E:32:D5:23:C1:1C:D5:6B:51:5F:01:96:D4:C6:02:45:60:3B:77
X509v3 Authority Key Identifier:
keyid:87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e20333936393832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.178.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a1:9f:cf:6f:1d:ba:53:52:24:da:84:6d:a4:91:cd:9c:59:
00:7d:78:ec:81:6a:14:ff:d8:3b:84:a0:7a:d5:06:01:d5:bf:
1e:14:29:22:b1:6b:eb:05:1b:2a:3a:fa:7a:bf:2c:14:a5:37:
99:c0:dc:eb:06:42:98:b5:58:9d:1c:00:df:5f:74:a4:06:f9:
67:c8:f0:8d:32:f4:89:fe:61:99:31:d7:c3:1f:63:0a:30:8d:
86:4a:a5:e6:60:fc:71:b5:da:9e:0f:e6:c6:96:ae:98:77:81:
c9:3b:f8:02:93:4e:db:15:9b:9f:17:69:3b:5f:c1:29:f0:a5:
ca:56:90:15:af:e7:5a:0a:2f:61:9e:2f:92:f0:7a:cb:94:0b:
2e:28:df:fc:0d:0c:84:98:e3:19:ef:ea:43:c6:11:7f:b3:40:
bd:05:27:c9:dd:df:79:ae:63:17:44:00:db:eb:b5:e4:a1:f2:
a1:83:f2:94:dc:6b:e5:2d:8e:53:65:f9:ad:61:f2:0b:89:74:
dc:0f:3c:8e:64:ec:04:7f:3d:41:e7:d3:50:e9:af:b9:74:ec:
0e:18:92:af:c9:df:84:26:5b:31:e8:a8:b0:ad:af:a1:5b:9a:
fe:45:d6:e8:e4:2f:a9:f2:aa:90:41:31:6d:b8:a0:d5:79:33:
8e:5c:14:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org