Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa
File: 3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa (raw, json)
Hash identifier: U67lwg51LZvc307lpSzOkr2AIFAIl7SlNlcxvYvVcD8=
Subject key identifier: 09:23:38:A4:E9:4F:FA:E5:78:BE:ED:40:82:2C:C9:0C:35:42:55:42
Certificate issuer: /CN=D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66
Certificate serial: 53E67DA9CFB1FB769E149404E67614CF0DA32845
Authority key identifier: D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa
Signing time: Sun 09 Feb 2025 13:00:00 +0000
ROA not before: Sun 09 Feb 2025 12:55:00 +0000
ROA not after: Sun 08 Feb 2026 13:00:00 +0000
asID: 136873
IP address blocks: 103.176.200.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Apr 2025 20:10:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:e6:7d:a9:cf:b1:fb:76:9e:14:94:04:e6:76:14:cf:0d:a3:28:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66
Validity
Not Before: Feb 9 12:55:00 2025 GMT
Not After : Feb 8 13:00:00 2026 GMT
Subject: CN=092338A4E94FFAE578BEED40822CC90C35425542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7c:55:cb:e3:87:4d:ed:77:a0:68:57:93:5b:
ed:63:a3:ed:b3:cd:21:c4:ae:25:81:7c:da:ba:e2:
69:77:63:a4:8f:78:ca:c8:a1:fc:65:c8:a5:74:d9:
5d:81:69:4c:b9:99:83:1d:70:a5:c3:8c:e8:ce:c6:
0a:35:a4:75:8d:69:9e:73:0d:4d:2c:e5:d9:52:1b:
c3:06:e5:18:47:ff:7a:f0:f4:d8:5a:10:fe:fa:8e:
dd:eb:41:9f:cd:be:80:b6:ae:e6:ae:3c:38:28:c8:
41:25:e7:ad:59:fb:2f:aa:02:6e:b9:f1:49:52:6b:
b1:20:0b:cf:e3:1a:3f:58:93:67:b3:b3:8d:45:5d:
e5:e5:39:09:4c:4f:11:7b:d6:75:8b:0e:c5:be:6b:
e6:a8:f0:3a:c3:e5:26:98:24:64:32:24:0f:42:9c:
3f:77:84:48:84:10:f3:2e:61:82:7c:15:10:9b:0e:
c2:b0:2a:af:79:da:3c:d6:25:6a:7d:ab:35:fd:e6:
17:44:91:19:d0:3b:c4:d3:b1:1e:4d:67:47:38:66:
7c:7e:4f:c7:ee:f2:1c:cc:6a:d5:1c:ae:08:11:7b:
04:b8:7a:7f:c4:4f:88:3c:67:ee:25:86:95:28:96:
8c:6b:16:2f:94:7b:c3:91:4f:8e:31:b7:66:54:90:
bd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:23:38:A4:E9:4F:FA:E5:78:BE:ED:40:82:2C:C9:0C:35:42:55:42
X509v3 Authority Key Identifier:
keyid:D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.176.200.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:6c:29:e8:53:81:6e:47:7d:f6:d9:0b:ad:59:4e:92:00:2f:
eb:bc:81:66:fe:09:a5:57:ad:85:8f:b6:47:ea:e5:dc:86:e2:
8c:23:a4:51:84:af:14:c1:18:64:21:61:33:10:12:26:c1:2f:
91:fc:9c:7a:82:4c:29:67:8e:08:49:98:86:49:f7:41:82:23:
0f:00:9c:d2:56:e0:c7:1e:02:98:64:ee:17:b9:b4:a3:71:46:
eb:4e:e5:72:fb:56:71:a4:6b:03:64:e7:5a:00:8a:68:ef:4f:
61:90:ee:36:69:da:8f:1d:24:f1:49:80:69:c1:16:31:23:37:
a5:6e:ec:23:c4:fa:84:8d:5b:d2:11:7f:56:0a:4b:9c:e3:bd:
f0:e8:8e:33:e9:b8:b0:a6:1b:49:ec:69:33:c6:50:49:6d:29:
e1:a3:14:1a:1c:2e:10:6f:aa:f3:36:b3:51:9d:a2:61:17:05:
ec:18:0b:f7:ce:d4:81:0c:50:fb:6d:0c:b2:3b:2e:0e:42:85:
e3:94:6e:cf:58:0d:e5:dc:8b:1a:c9:af:96:ef:59:06:2c:98:
21:8d:98:d8:a8:f1:a2:b8:20:05:db:aa:bc:84:6a:9a:cb:31:
7c:e2:b3:71:ea:4a:77:4e:3f:f7:ed:4e:66:76:c4:21:83:dd:
73:58:86:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:56:42 2025 by rpki-client