Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa
File: 3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa (raw, json)
Hash identifier: 0al/nsffMAXUYY/t4RFwJ4Cij+KzySfhXF+XhGRYyzo=
Subject key identifier: AC:5E:7D:ED:AB:24:99:6B:B2:1C:B6:7A:FE:9B:F5:CA:C6:0B:E4:FF
Certificate issuer: /CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7
Certificate serial: 0537D9DCBBF02B0BDCF84B29E3BF89B226734EA8
Authority key identifier: 6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa
Signing time: Fri 09 Aug 2024 07:00:01 +0000
ROA not before: Fri 09 Aug 2024 06:55:01 +0000
ROA not after: Fri 08 Aug 2025 07:00:01 +0000
asID: 140403
IP address blocks: 103.168.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 04:41:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:37:d9:dc:bb:f0:2b:0b:dc:f8:4b:29:e3:bf:89:b2:26:73:4e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7
Validity
Not Before: Aug 9 06:55:01 2024 GMT
Not After : Aug 8 07:00:01 2025 GMT
Subject: CN=AC5E7DEDAB24996BB21CB67AFE9BF5CAC60BE4FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:94:ad:06:56:6e:aa:34:19:98:de:88:2a:09:
15:8c:48:2b:68:b2:1c:1b:61:ad:96:cd:c7:45:1c:
b0:23:97:5e:2a:82:19:ee:23:6d:c5:c2:5b:a6:43:
aa:a5:7d:34:0c:7a:3a:dc:21:d7:96:01:95:04:7f:
1b:69:9c:03:4f:6c:b4:de:3c:86:cd:a2:fd:10:58:
76:9b:b8:1c:09:5e:59:72:92:f3:0a:8c:54:11:7f:
f3:c5:c6:ed:86:11:2c:99:e6:69:bc:47:a5:40:33:
0f:02:8f:28:83:00:24:d0:3c:6e:97:0f:07:6d:ca:
27:1b:07:43:8a:82:ab:9e:9d:cc:df:aa:45:a4:06:
15:81:d2:0e:a6:7e:bb:65:2f:07:75:3c:5e:40:6a:
3c:44:26:64:df:f7:9a:5c:fc:f2:19:c0:00:ac:86:
8e:16:57:a6:d3:f9:fc:0b:2a:dc:8f:b5:32:2f:76:
a7:74:a7:1a:64:6d:ec:f5:65:75:f9:2f:e7:5f:6c:
36:0d:a4:ba:57:83:ab:f3:fc:25:6f:46:41:51:77:
f9:37:bf:8f:af:84:1d:5e:70:3f:f1:1d:19:d8:c9:
a6:33:ba:a0:9b:95:3f:29:3c:98:c0:df:a1:f7:98:
9e:b9:4e:2b:c0:9d:35:f6:8f:bf:76:e7:ac:9e:9b:
a5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5E:7D:ED:AB:24:99:6B:B2:1C:B6:7A:FE:9B:F5:CA:C6:0B:E4:FF
X509v3 Authority Key Identifier:
keyid:6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.25.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:f9:b9:b2:84:1e:51:7a:73:f4:fb:0c:9c:1d:7f:c6:ec:d2:
92:5a:86:6e:03:06:fc:63:8e:fd:14:3e:a2:48:3f:d7:b3:8c:
a7:47:d5:6f:4b:ad:a0:32:49:ee:ed:0c:9c:1c:a6:c3:5b:89:
64:ae:55:96:84:3f:60:ed:59:c6:ed:1a:a0:10:04:76:88:c5:
a4:d2:38:39:ab:b5:85:e9:6e:b7:7b:68:15:cd:46:f0:a4:d4:
39:7d:5e:b8:7f:a6:58:d2:0a:8e:df:f3:33:48:82:21:5a:24:
53:95:05:e9:33:58:30:9f:fb:ec:6f:f5:87:1b:02:c5:1b:76:
e2:6b:75:8f:35:04:b2:72:cb:b3:2e:03:e1:61:51:df:c3:5b:
e3:28:1e:85:e7:f1:f2:10:93:5c:75:07:ef:d0:12:9b:78:b5:
83:f9:99:93:6a:62:24:7b:54:df:a3:d8:49:79:d3:65:5d:9b:
60:20:d1:51:09:9e:70:e6:69:c8:45:ec:7b:d5:83:c5:54:2a:
ed:1c:52:1a:c1:60:7d:e0:50:6f:43:1f:bd:c0:0c:05:8b:46:
ea:62:fa:1c:d3:71:a6:77:1d:9c:78:65:55:9c:f8:20:f4:d4:
ed:e9:d5:b7:10:58:0f:d7:c1:54:af:be:90:7c:2f:e9:25:33:
3c:15:3f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:42 2025 by rpki-client