Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa
File:                     3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa (raw, json)
Hash identifier:          Mm4rcUwiC50keHikVtxlQOpZ8FqP+WdFiXI3kx4cpQc=
Subject key identifier:   FE:D5:5B:70:70:E1:DA:A7:F1:39:C5:03:A7:CE:53:EA:C8:69:5C:CD
Certificate issuer:       /CN=13697C4A24DCE77089F778CD506D620711B4472B
Certificate serial:       7702296070F3BE440A6FECF8262A51CA967F0174
Authority key identifier: 13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa
Signing time:             Thu 30 May 2024 10:00:00 +0000
ROA not before:           Thu 30 May 2024 09:55:00 +0000
ROA not after:            Thu 29 May 2025 10:00:00 +0000
asID:                     131736
IP address blocks:        103.161.116.0/23 maxlen: 24

Validation:               Failed, certificate revoked on Sat 16 Nov 2024 14:34:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            77:02:29:60:70:f3:be:44:0a:6f:ec:f8:26:2a:51:ca:96:7f:01:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=13697C4A24DCE77089F778CD506D620711B4472B
        Validity
            Not Before: May 30 09:55:00 2024 GMT
            Not After : May 29 10:00:00 2025 GMT
        Subject: CN=FED55B7070E1DAA7F139C503A7CE53EAC8695CCD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:49:3a:db:c1:da:8f:f0:7d:67:28:28:95:f3:
                    c0:c9:c1:a1:44:0a:1c:7e:a8:64:f3:73:e5:63:b8:
                    4f:12:f2:cb:60:e9:30:e7:e1:25:42:86:bb:57:44:
                    2f:96:3b:ff:42:09:a4:f5:0e:c5:ad:34:22:25:1f:
                    8c:12:5e:64:ef:72:d3:7b:55:e9:c6:71:bc:0d:62:
                    f3:a4:62:9e:6d:e1:cb:50:2a:ec:90:23:ee:08:ed:
                    ee:a1:75:73:3c:f9:e3:59:a5:0f:b2:a5:dd:c4:2a:
                    db:11:fd:5b:7e:85:e0:0e:76:7a:27:20:f7:44:63:
                    ab:38:64:f5:af:05:02:e4:ee:bb:39:2e:56:97:7f:
                    14:c4:59:e6:85:7c:0f:8a:16:7f:67:0d:fe:a3:de:
                    54:4b:32:bd:e5:59:e5:e3:24:e0:38:a0:9f:d7:c0:
                    32:ad:6a:91:0a:03:f6:85:f8:78:07:01:b1:cb:18:
                    18:3f:9d:82:08:ee:4f:36:f2:4e:0d:9a:c7:17:78:
                    98:2e:ad:e9:79:48:5c:6f:91:d3:6d:27:76:ad:da:
                    28:47:54:2e:44:78:e9:eb:93:67:f8:c6:d7:c9:94:
                    86:7d:5c:45:3b:9b:f2:31:23:5c:62:6f:49:6a:a1:
                    bd:81:74:5a:d9:97:ed:7c:0d:75:cc:64:e3:32:60:
                    f8:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:D5:5B:70:70:E1:DA:A7:F1:39:C5:03:A7:CE:53:EA:C8:69:5C:CD
            X509v3 Authority Key Identifier:
                keyid:13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.161.116.0/23

    Signature Algorithm: sha256WithRSAEncryption
         6e:9e:10:22:65:4a:0c:a3:26:64:a7:2f:b2:83:51:78:b1:3f:
         2a:c1:65:2f:60:aa:41:4a:42:5e:0c:c3:a2:49:67:1b:10:8e:
         af:2e:f0:5f:69:97:07:80:3e:e4:37:49:ce:de:90:a1:49:60:
         f2:b2:62:e1:63:69:4a:83:56:a5:a2:55:54:a9:e4:8d:05:c4:
         78:e1:55:27:75:32:bd:c8:1d:45:93:48:2c:d8:d5:14:74:fc:
         94:f5:35:03:28:51:d1:40:43:27:95:de:45:44:89:90:c8:b2:
         b1:7d:7e:92:a0:65:b0:6b:5e:86:36:9a:f9:ec:35:db:b3:2c:
         6c:d8:76:64:d6:a5:9b:5e:31:79:0d:d6:7d:49:f0:7b:5d:2c:
         cd:23:59:0a:80:d1:87:24:d6:0c:b8:3e:6f:a2:77:1a:7a:dc:
         d0:09:6f:9e:3b:06:e0:99:6e:9a:65:9d:1f:fc:db:c5:ec:d5:
         75:a1:cf:13:57:13:a1:5c:cf:d2:e5:b5:b4:4c:b6:c0:70:04:
         bf:85:c5:70:fa:b0:a7:b7:52:84:7e:f7:75:5b:f3:5e:9f:79:
         2a:9a:eb:0a:af:0c:32:9a:37:10:fa:c7:16:5b:7f:d3:53:b2:
         f5:16:88:f2:27:29:03:02:55:73:8e:b0:0f:9f:01:4e:7e:ea:
         ba:14:6e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 16 17:07:30 2024 by rpki-client on console-fra.rpki-client.org