Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32332d3234203d3e20313530393434.roa
File: 3130332e3130372e3137362e302f32332d3234203d3e20313530393434.roa (raw, json)
Hash identifier: SqIqndpUUgWCueBHw1vSOJO4CIGJCiLE/OeNJZKm3EA=
Subject key identifier: 34:D0:A2:24:0D:6D:44:4D:10:D8:8D:B5:CC:D3:EF:4A:2F:93:3D:71
Certificate issuer: /CN=1D4A7562F096F3F753E388C14594BA75AE09E7F3
Certificate serial: 421C6AF23A9A8542F16C705FE63E4B8463F8B5F5
Authority key identifier: 1D:4A:75:62:F0:96:F3:F7:53:E3:88:C1:45:94:BA:75:AE:09:E7:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D4A7562F096F3F753E388C14594BA75AE09E7F3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32332d3234203d3e20313530393434.roa
Signing time: Tue 11 Mar 2025 11:02:24 +0000
ROA not before: Tue 11 Mar 2025 10:57:24 +0000
ROA not after: Tue 10 Mar 2026 11:02:24 +0000
asID: 150944
IP address blocks: 103.107.176.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Apr 2025 22:11:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:1c:6a:f2:3a:9a:85:42:f1:6c:70:5f:e6:3e:4b:84:63:f8:b5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4A7562F096F3F753E388C14594BA75AE09E7F3
Validity
Not Before: Mar 11 10:57:24 2025 GMT
Not After : Mar 10 11:02:24 2026 GMT
Subject: CN=34D0A2240D6D444D10D88DB5CCD3EF4A2F933D71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2a:36:c2:39:44:39:bd:1b:23:1b:6a:70:9e:
4e:20:e6:e8:9d:fe:49:5f:a7:43:5b:b7:8b:12:75:
79:0d:f6:5d:c9:1f:69:31:58:42:bd:50:f4:63:e5:
60:4c:69:1c:29:27:6c:b9:ef:7c:8a:62:49:64:43:
07:5e:03:6a:9a:bc:12:0e:25:57:8b:76:c1:33:28:
63:af:c9:84:f9:a6:eb:32:15:c5:41:78:c5:a0:a2:
46:e9:62:40:f9:96:9b:83:95:da:67:76:b1:ec:d4:
b8:78:cb:b5:fd:2e:67:d4:a3:33:b3:d8:2a:65:04:
0b:19:14:9d:39:6b:d1:17:1f:21:b1:5b:f7:63:b0:
1e:2b:9f:62:12:12:f2:49:de:a2:17:27:3d:e6:a6:
a0:ab:37:69:e6:dd:51:d6:3f:0f:6a:ca:95:8d:0a:
49:8f:e2:0e:65:99:6d:3f:49:41:c2:8c:9e:8a:d7:
9b:80:fc:9f:3e:a0:ba:e5:b8:68:d2:cf:7e:11:2b:
a4:68:be:af:d5:33:a4:65:be:1e:e9:ad:60:83:7d:
96:26:91:2e:fa:e9:31:d7:4a:c2:ee:52:ec:ab:9c:
b6:78:56:91:84:55:48:9d:cf:eb:35:eb:f6:05:6e:
71:f9:2d:7c:9e:9d:a1:aa:1a:5f:5a:c1:05:af:80:
da:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D0:A2:24:0D:6D:44:4D:10:D8:8D:B5:CC:D3:EF:4A:2F:93:3D:71
X509v3 Authority Key Identifier:
keyid:1D:4A:75:62:F0:96:F3:F7:53:E3:88:C1:45:94:BA:75:AE:09:E7:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/1D4A7562F096F3F753E388C14594BA75AE09E7F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D4A7562F096F3F753E388C14594BA75AE09E7F3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32332d3234203d3e20313530393434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.107.176.0/23
Signature Algorithm: sha256WithRSAEncryption
19:05:6c:85:a5:88:6e:2f:b0:22:d2:47:90:f5:e8:1e:72:56:
64:ba:15:bd:52:1b:1d:db:4b:ff:76:2e:0d:55:b7:24:2d:05:
78:35:8d:88:37:ee:85:18:5c:28:c5:87:54:5e:3a:c4:24:a6:
d7:14:f5:d0:45:2e:9d:8c:25:60:c1:e0:09:a3:2a:92:7d:88:
76:89:e0:2f:6d:e4:8d:dd:55:74:1f:f3:eb:5d:8a:84:8b:e1:
16:4a:a9:58:78:06:ed:10:90:d8:e5:ac:d1:89:fe:de:28:97:
bb:90:a2:d8:45:ec:06:7f:3a:12:ab:73:aa:1a:19:66:2b:c1:
6d:1d:c5:c3:16:ce:39:c1:c7:da:f2:a3:d8:3b:e8:94:00:d0:
b5:1d:9d:39:ca:cf:ea:b9:bf:a9:7b:23:ae:c2:8a:82:55:b6:
0b:8a:e1:7c:7f:d5:43:58:be:6a:f9:8a:5e:54:2c:53:ed:d6:
7a:a9:1c:7b:7a:d1:92:48:35:9b:d5:80:e8:31:70:0a:6c:87:
c3:37:0f:e6:be:04:dd:86:e3:e5:9e:50:5d:3e:29:3c:98:bc:
6b:d0:dd:5e:4e:e2:75:34:4a:8a:d1:3b:0d:73:8f:f5:36:9a:
aa:50:40:99:4a:b5:db:e6:c2:b3:31:db:98:57:91:d0:c6:a9:
1e:90:41:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:49:55 2025 by rpki-client