Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d4488d56-6ead-4ce4-8d33-2dcf080d0876/0/3130332e3136362e32392e302f32342d3234203d3e20313338303839.roa
File: 3130332e3136362e32392e302f32342d3234203d3e20313338303839.roa (raw, json)
Hash identifier: XH0g4MAqCJzYlCKv+rRaIGS0G9QeRCP/9gzrK35a2fU=
Subject key identifier: 37:91:D0:A0:60:34:C5:A7:65:EF:7E:8E:F7:0C:08:85:BB:88:91:E8
Certificate issuer: /CN=75124AA5DD7D2B53783B8C956570CF3235324A6C
Certificate serial: 59E0B4E7A0CF434E58A8DBBDE9BCF66B7B573D18
Authority key identifier: 75:12:4A:A5:DD:7D:2B:53:78:3B:8C:95:65:70:CF:32:35:32:4A:6C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75124AA5DD7D2B53783B8C956570CF3235324A6C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d4488d56-6ead-4ce4-8d33-2dcf080d0876/0/3130332e3136362e32392e302f32342d3234203d3e20313338303839.roa
Signing time: Wed 05 Jul 2023 04:00:01 +0000
ROA not before: Wed 05 Jul 2023 03:55:01 +0000
ROA not after: Wed 03 Jul 2024 04:00:01 +0000
asID: 138089
IP address blocks: 103.166.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 16:40:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:e0:b4:e7:a0:cf:43:4e:58:a8:db:bd:e9:bc:f6:6b:7b:57:3d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75124AA5DD7D2B53783B8C956570CF3235324A6C
Validity
Not Before: Jul 5 03:55:01 2023 GMT
Not After : Jul 3 04:00:01 2024 GMT
Subject: CN=3791D0A06034C5A765EF7E8EF70C0885BB8891E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c6:10:62:d9:41:13:b3:1e:9f:be:17:11:34:
17:55:17:b7:1a:1b:94:c5:25:c3:3b:01:ef:b9:42:
34:e4:72:81:8c:39:59:a7:66:aa:a3:08:a2:1c:4c:
9f:19:05:c7:41:aa:99:ce:2f:8f:be:aa:1c:3e:0c:
94:a4:c5:0b:74:9d:f4:0c:06:72:77:44:2a:d6:40:
60:a1:03:ed:37:04:b8:6e:ad:9d:d6:b7:1f:09:76:
39:eb:7c:0f:76:56:95:2b:b9:cd:c4:06:f2:c1:1d:
2e:9e:35:a8:e2:e6:e8:70:ce:a8:b5:d4:b8:3f:12:
65:8d:50:aa:8e:c6:4a:62:3a:a9:a9:a3:12:de:8b:
7c:35:e0:d7:c2:7f:8f:c8:75:f4:f9:e7:fa:b7:59:
22:e9:cd:9e:c1:63:f8:e3:73:c6:18:28:b1:02:89:
16:ae:a9:16:fb:70:b1:cd:aa:64:0b:70:31:7d:d6:
51:0f:35:76:e0:2d:72:d7:5e:84:c4:77:c9:94:60:
f9:e9:98:2b:1c:e0:6e:9e:81:69:1d:1a:9c:5d:1a:
44:22:43:23:6f:e9:0a:5b:c1:6a:67:7f:d8:96:a5:
c4:43:c7:c9:b5:6c:b3:85:6d:6f:eb:c0:67:aa:f1:
a5:13:b6:a7:41:04:fd:52:d0:a1:b1:45:c5:99:7a:
ac:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:91:D0:A0:60:34:C5:A7:65:EF:7E:8E:F7:0C:08:85:BB:88:91:E8
X509v3 Authority Key Identifier:
keyid:75:12:4A:A5:DD:7D:2B:53:78:3B:8C:95:65:70:CF:32:35:32:4A:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d4488d56-6ead-4ce4-8d33-2dcf080d0876/0/75124AA5DD7D2B53783B8C956570CF3235324A6C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75124AA5DD7D2B53783B8C956570CF3235324A6C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4488d56-6ead-4ce4-8d33-2dcf080d0876/0/3130332e3136362e32392e302f32342d3234203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.29.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:19:c5:40:9d:68:55:09:98:e5:56:ec:03:d9:c7:44:72:d2:
04:e0:89:1a:3e:25:b7:38:c0:b0:27:02:fb:86:b9:f3:e3:14:
65:5e:30:9c:0e:e4:96:6d:53:82:c9:5b:8e:c2:b2:3c:97:42:
48:9e:07:ce:1e:cd:c5:a0:3e:36:67:55:0d:78:54:b4:32:ec:
22:07:1d:3d:ad:7b:f8:05:ca:0d:1f:3b:ab:f0:77:75:e2:37:
ed:8e:f7:11:36:1e:72:ec:fd:9c:73:3a:a7:51:de:13:eb:ad:
16:8a:c6:9a:6d:94:45:b5:7f:3b:b6:8f:76:d1:0a:8e:67:29:
1c:85:b7:96:63:5f:83:ed:2c:45:9d:1e:2c:79:32:e1:01:fb:
54:90:b2:c0:52:cd:6f:59:0c:f4:95:36:e2:10:d3:16:db:70:
1c:11:95:27:ff:d2:42:ee:12:17:cd:81:6d:3c:f9:17:06:70:
00:5a:35:05:61:f9:b6:c6:d9:34:66:f6:37:d3:a7:4d:2d:f6:
8f:8c:fd:33:44:3a:59:d5:2c:b2:5a:aa:ca:82:ed:ad:5f:eb:
17:b8:08:b9:e8:77:23:8b:ab:ed:24:d2:6c:87:95:30:7b:ad:
5f:ab:ba:12:e8:7c:37:05:4a:0b:59:f9:3c:9d:c4:ef:7a:02:
41:75:f3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org