Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33322e302f32332d3233203d3e203435333132.roa
File: 3130332e31382e33322e302f32332d3233203d3e203435333132.roa (raw, json)
Hash identifier: xTrfeCfDK3xV1tIWcglW1icKc+FYLtVSiN3m9O342Z4=
Subject key identifier: 6C:0C:30:DE:0C:88:DE:6D:23:13:11:E1:75:65:B8:69:2E:FD:8D:EC
Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Certificate serial: 7906D502ADE90FAE7391F55694D75F5B97C47090
Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33322e302f32332d3233203d3e203435333132.roa
Signing time: Fri 28 Feb 2025 06:38:33 +0000
ROA not before: Fri 28 Feb 2025 06:33:33 +0000
ROA not after: Fri 27 Feb 2026 06:38:33 +0000
asID: 45312
IP address blocks: 103.18.32.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 19 Apr 2025 15:51:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:06:d5:02:ad:e9:0f:ae:73:91:f5:56:94:d7:5f:5b:97:c4:70:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Validity
Not Before: Feb 28 06:33:33 2025 GMT
Not After : Feb 27 06:38:33 2026 GMT
Subject: CN=6C0C30DE0C88DE6D231311E17565B8692EFD8DEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:a9:07:6f:6a:48:d0:d0:0a:85:07:64:c9:82:
8d:60:e0:15:2e:ed:28:11:43:10:1e:b2:4b:16:c8:
36:b4:42:3d:fd:b4:bd:9b:de:a8:e9:c9:ba:e5:36:
fa:43:d1:9f:59:7c:32:7d:f2:ce:da:15:31:b9:b1:
87:2b:9e:b7:c6:5a:db:81:ef:85:33:82:66:2a:35:
bd:1f:c9:1e:8e:88:a8:09:e9:06:2b:9d:17:f9:5f:
b4:ec:a7:1b:8d:cd:34:40:f4:d1:06:35:1f:0d:61:
9b:74:33:ca:09:77:fa:82:8f:09:f9:19:6a:32:ee:
9d:8a:5c:69:86:55:63:b7:6f:04:b0:f2:7c:7b:06:
7e:c4:d5:8e:93:e1:f1:60:9a:21:d3:93:d9:64:06:
a3:62:af:3d:2b:e7:25:d1:ea:a8:e6:2b:4b:97:29:
8a:8c:b3:aa:79:54:34:e2:73:5c:51:83:32:66:b4:
c5:5c:8a:53:72:a5:b1:d5:a0:5e:89:0f:77:75:fe:
ea:c9:54:5b:b7:d5:74:96:0e:17:04:40:fe:77:b1:
02:3f:f8:33:3b:80:06:dd:21:ff:11:b2:d1:b9:b3:
41:70:98:62:51:f3:1b:4b:63:36:cc:6c:ef:12:6b:
e4:75:7a:a3:ed:9a:00:6f:08:3d:cd:de:5f:b3:65:
be:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0C:30:DE:0C:88:DE:6D:23:13:11:E1:75:65:B8:69:2E:FD:8D:EC
X509v3 Authority Key Identifier:
keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33322e302f32332d3233203d3e203435333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.18.32.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:29:77:39:7e:e0:b3:7f:44:47:32:5a:ec:1e:0e:67:3d:23:
fc:34:e0:63:32:7e:10:8a:b4:25:4b:d7:06:ba:cf:35:35:4a:
d0:84:02:5c:21:e0:3c:73:f2:79:48:71:b7:a8:7c:68:47:d8:
6c:e0:17:eb:aa:1c:2a:96:d3:98:d7:38:3e:0a:f6:01:b5:41:
2a:d0:6b:66:5b:6e:8e:e2:12:ef:d9:69:6f:80:50:55:74:38:
d0:26:72:3e:5d:9b:bf:9c:be:9a:cc:fa:f6:41:d3:2a:8b:8d:
a6:f1:be:1a:6e:a4:35:07:e2:0d:f9:71:20:a8:80:e1:88:c6:
12:28:3b:d5:b7:36:ad:88:bd:04:3d:9c:85:08:f6:0b:42:66:
01:c7:10:c2:85:19:59:23:c2:73:ef:d2:1f:2b:ad:2c:c8:d7:
d7:2d:31:67:ad:6c:24:cb:a8:2b:53:16:e8:cf:5c:0a:9f:4d:
2b:12:66:5a:c5:d4:9e:d7:66:45:2e:5f:14:9e:73:ac:8f:25:
6c:0a:d6:31:89:8b:d2:ac:bc:a1:9e:d6:cb:35:a0:06:7c:90:
7f:b7:44:e7:55:1a:ca:31:e2:5a:37:f6:2e:76:a8:e5:2b:9c:
b3:0f:1b:a0:14:1e:a4:ee:08:4a:91:23:a7:01:41:94:40:86:
7e:fa:22:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:14:06 2025 by rpki-client