Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34382e302f32302d3234203d3e203435333132.roa
File: 3230322e38312e34382e302f32302d3234203d3e203435333132.roa (raw, json)
Hash identifier: 7mCCHyFj+SS6N4KStzr5XUFbAAETVlZaQnnBEn1Es6E=
Subject key identifier: D5:E5:30:23:BE:4F:B3:09:F7:9E:C3:CC:65:10:39:8B:C2:C5:2B:6F
Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Certificate serial: 37AF3C618D8CD0B8A7B87EB44F0EC627FD612F30
Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34382e302f32302d3234203d3e203435333132.roa
Signing time: Mon 10 Mar 2025 05:13:34 +0000
ROA not before: Mon 10 Mar 2025 05:08:34 +0000
ROA not after: Mon 09 Mar 2026 05:13:34 +0000
asID: 45312
IP address blocks: 202.81.48.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Apr 2025 07:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:af:3c:61:8d:8c:d0:b8:a7:b8:7e:b4:4f:0e:c6:27:fd:61:2f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Validity
Not Before: Mar 10 05:08:34 2025 GMT
Not After : Mar 9 05:13:34 2026 GMT
Subject: CN=D5E53023BE4FB309F79EC3CC6510398BC2C52B6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:91:1c:15:d4:af:aa:77:72:94:ab:24:a9:9a:
a0:fe:f5:36:5d:b3:cf:eb:d2:83:ba:e9:f3:c2:18:
f4:07:aa:95:f6:df:c1:9b:4d:78:b1:fa:e5:a5:a6:
bc:c8:ed:aa:e7:8b:68:05:94:39:b8:30:c7:10:d8:
87:31:68:0b:cc:18:d4:78:61:b5:d6:76:38:f9:52:
e7:90:09:d4:68:02:71:34:36:fd:bd:c6:fe:e6:b4:
47:8c:d7:08:3e:26:7f:18:13:f0:b8:c2:d9:8f:09:
ed:fa:96:af:5c:9d:30:dc:32:5e:84:56:57:aa:ea:
45:35:bf:3d:dd:7d:51:94:44:72:7a:dd:cc:09:4d:
d2:1c:4e:4f:a3:91:9c:47:35:22:00:af:fb:a6:89:
78:3c:09:22:9f:43:d5:31:2d:82:52:26:ab:50:8b:
3f:87:34:ae:c2:69:95:49:9c:33:94:35:a6:d8:6f:
c8:a5:a3:7b:f5:31:ce:d4:5f:a6:2f:e2:03:f0:48:
bf:ed:2f:9c:96:ea:f0:b2:c1:e3:b3:1c:87:4a:09:
64:4d:fa:28:c7:02:55:43:31:16:2d:5a:d8:c4:b0:
c9:15:fe:40:92:f6:7c:22:a0:de:d7:49:e2:38:7e:
c1:0e:99:82:ed:e7:91:1c:24:a3:f5:da:1d:6e:55:
af:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E5:30:23:BE:4F:B3:09:F7:9E:C3:CC:65:10:39:8B:C2:C5:2B:6F
X509v3 Authority Key Identifier:
keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34382e302f32302d3234203d3e203435333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.81.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a4:88:b9:f3:81:b1:a9:7d:15:6e:8e:ea:67:86:8c:9e:5b:17:
23:90:51:05:14:32:f7:ab:ef:80:ba:eb:d1:cd:80:ed:ad:e6:
33:97:c2:21:93:e6:9d:5e:de:55:f2:f1:0c:b3:c0:35:c3:dc:
a7:2d:02:fa:e1:c4:c4:91:e8:a7:47:05:21:b3:c0:9e:63:ff:
d9:ff:4f:b1:63:cc:f5:66:bf:ff:5f:6e:84:5c:bf:35:49:63:
89:01:64:9d:7e:81:a4:d8:72:cf:9f:76:89:dc:e5:70:68:7d:
b1:e4:54:f3:99:09:e4:f9:e1:f3:a9:2f:62:24:b3:c5:f9:3b:
61:42:fd:0c:70:ba:63:61:ba:76:39:95:10:10:b6:a6:72:63:
d7:97:72:6f:f1:10:65:c3:96:f1:cb:b8:62:0e:f5:1c:e9:49:
4b:b5:1b:94:f5:f6:3b:0d:36:c4:72:f6:90:7d:a6:64:53:e8:
4a:2f:d7:03:b5:fe:57:a3:1c:a2:70:24:d0:f6:59:f7:6f:ca:
de:0f:6d:5e:73:a2:d8:62:bf:18:08:22:e6:e2:6d:0b:1b:3f:
1a:40:fb:c0:92:63:36:50:b3:d4:fb:ad:4e:5d:9e:dd:33:72:
b8:50:b7:52:95:70:b1:5a:99:22:5f:04:b4:8d:ea:26:01:7e:
5d:88:38:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:04:29 2025 by rpki-client