Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3136302e32302e3232322e302f32342d3234203d3e20313339333838.roa
File: 3136302e32302e3232322e302f32342d3234203d3e20313339333838.roa (raw, json)
Hash identifier: uw9xFskTpBYQEMeq1Dc3Xbb5h44hxTZLLwQ/vREMsiE=
Subject key identifier: 8B:40:75:5B:7F:05:12:CA:60:7F:A5:25:A5:92:32:5E:8B:66:54:F7
Certificate issuer: /CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4
Certificate serial: 2F4299B7C7962910B3121FC5048723BA3036C404
Authority key identifier: B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3136302e32302e3232322e302f32342d3234203d3e20313339333838.roa
Signing time: Fri 15 Dec 2023 03:12:42 +0000
ROA not before: Fri 15 Dec 2023 03:07:42 +0000
ROA not after: Fri 13 Dec 2024 03:12:42 +0000
asID: 139388
IP address blocks: 160.20.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 01:42:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:42:99:b7:c7:96:29:10:b3:12:1f:c5:04:87:23:ba:30:36:c4:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4
Validity
Not Before: Dec 15 03:07:42 2023 GMT
Not After : Dec 13 03:12:42 2024 GMT
Subject: CN=8B40755B7F0512CA607FA525A592325E8B6654F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:7a:6e:eb:8f:d6:e1:d7:01:98:3c:b6:4a:
ad:a7:61:10:b9:5d:94:46:45:f7:31:a8:41:80:9f:
f2:62:25:03:15:19:99:a2:3c:30:6c:8f:07:72:55:
17:69:b8:6b:44:71:63:42:54:f5:1d:d0:93:56:42:
5a:1e:4d:be:cf:81:ff:2a:6b:5b:0e:2c:71:a9:3a:
5e:dc:ab:0c:00:65:c6:99:fe:78:2b:0f:f2:12:66:
cc:8e:b5:5c:9a:09:a6:d3:b6:50:26:16:56:c3:50:
cf:6f:08:23:bf:47:81:a0:b8:07:8e:5a:b0:1a:9c:
50:07:b4:c1:f8:97:12:5c:c4:96:2e:2b:51:29:26:
ba:40:fa:2c:54:b4:60:fc:73:a7:0b:f3:d1:7c:f6:
42:39:3c:e6:87:7f:ed:ac:59:48:15:05:e0:37:a4:
e5:3b:eb:9f:06:04:38:d7:56:c9:c0:dc:89:26:9a:
bd:34:4f:f3:8b:0e:c4:d1:30:62:ae:aa:5c:53:6c:
28:b3:72:8e:15:4d:63:df:0f:5e:ff:be:57:09:f3:
6b:ec:7d:be:7f:26:8c:c0:48:3d:53:59:22:97:22:
fe:c1:4e:58:fd:8c:87:90:f1:a2:ba:c7:18:98:61:
11:1e:37:b7:ec:12:be:10:2d:0d:92:3d:73:79:ee:
24:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:40:75:5B:7F:05:12:CA:60:7F:A5:25:A5:92:32:5E:8B:66:54:F7
X509v3 Authority Key Identifier:
keyid:B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3136302e32302e3232322e302f32342d3234203d3e20313339333838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.222.0/24
Signature Algorithm: sha256WithRSAEncryption
05:9f:2d:6d:1e:a5:77:fb:85:e5:54:d2:04:a0:8c:1d:bf:e0:
b3:95:1b:36:fd:ac:bb:44:b7:11:18:21:58:67:e9:a6:69:ae:
62:13:de:1b:85:12:66:36:a6:c8:32:d2:00:e2:62:cc:f2:b4:
2e:1d:95:37:16:3b:92:0d:2b:36:4e:43:59:0d:32:e0:04:85:
d8:d0:32:dc:5c:9d:19:17:ae:ea:38:8d:f9:2e:8b:b9:ca:b5:
54:54:bc:3c:08:95:0c:ea:55:59:86:d6:e0:85:59:6c:13:e2:
f3:0d:5e:01:5a:6e:6f:21:1b:6c:32:bc:c1:a1:d5:e8:1c:ab:
3d:6c:95:8e:63:03:b7:74:a5:ab:b8:8e:bb:7a:0e:f9:14:48:
06:8f:00:22:95:7b:cf:cd:6e:c3:c6:b0:97:de:69:c3:8c:63:
37:55:4f:74:cb:2e:3b:fd:cd:40:c6:80:d1:82:12:74:8c:ae:
be:d1:62:a4:85:07:97:6d:99:61:ce:90:71:ca:23:c4:28:ee:
0b:c7:c6:1c:61:b2:61:43:3c:0b:20:a7:91:d4:a9:83:01:d6:
78:7d:e3:d2:e8:b6:eb:05:c8:e9:59:ec:17:14:34:15:f4:d6:
81:5d:e8:d2:c4:a1:39:c0:60:03:30:07:f5:95:f6:fd:c7:0b:
9c:f7:90:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org