Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d8463ad5-1745-443e-b165-d194eed89e6b/0/3130332e39372e3139382e302f32342d3234203d3e20313439373034.roa
File: 3130332e39372e3139382e302f32342d3234203d3e20313439373034.roa (raw, json)
Hash identifier: V6EBqnq6uLPLHVn0CvPAFp4zsmjQjCVtx5UZ6K/IYR4=
Subject key identifier: 89:02:FC:DA:15:7B:47:78:F9:5F:20:11:01:47:88:C4:FC:95:D7:7E
Certificate issuer: /CN=7B04CE58A1370241E93EF01F597DD18A039D613D
Certificate serial: 7E20ED3954142FBBC6DFB9406A235931492A7EE3
Authority key identifier: 7B:04:CE:58:A1:37:02:41:E9:3E:F0:1F:59:7D:D1:8A:03:9D:61:3D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B04CE58A1370241E93EF01F597DD18A039D613D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d8463ad5-1745-443e-b165-d194eed89e6b/0/3130332e39372e3139382e302f32342d3234203d3e20313439373034.roa
Signing time: Fri 01 Mar 2024 09:01:42 +0000
ROA not before: Fri 01 Mar 2024 08:56:42 +0000
ROA not after: Fri 28 Feb 2025 09:01:42 +0000
asID: 149704
IP address blocks: 103.97.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 03:34:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:20:ed:39:54:14:2f:bb:c6:df:b9:40:6a:23:59:31:49:2a:7e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B04CE58A1370241E93EF01F597DD18A039D613D
Validity
Not Before: Mar 1 08:56:42 2024 GMT
Not After : Feb 28 09:01:42 2025 GMT
Subject: CN=8902FCDA157B4778F95F2011014788C4FC95D77E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:66:ff:a8:cb:e3:a6:e2:98:bb:07:b7:e7:98:
6a:11:58:80:d5:3b:fa:95:68:a7:f1:89:77:0a:1b:
16:3a:72:eb:18:61:92:9e:08:05:2f:40:90:eb:03:
ba:d8:07:08:8d:15:5d:17:cd:33:fa:05:2e:75:bc:
80:e9:e9:d4:01:c5:e6:05:9b:0a:a6:cd:75:07:94:
ae:0d:38:68:45:5b:4d:bb:87:c5:30:cb:4f:0b:b4:
07:0d:f2:94:80:93:bd:2a:31:bf:37:fd:a0:42:a6:
22:1c:43:4a:6b:ab:0d:96:d5:89:b4:60:3d:92:ad:
ff:d9:1f:fc:f7:f1:3c:2d:b8:a8:1b:f1:86:cc:ee:
97:0f:cb:77:16:bf:12:03:c8:dd:34:c9:51:d8:b6:
38:76:4a:c2:ba:e3:f5:25:f8:45:4c:87:f0:8d:dd:
69:6a:5f:63:99:ea:0c:23:8c:f1:82:fa:e8:18:22:
38:70:aa:f5:0d:5f:21:70:ac:ef:57:9b:fb:91:9f:
51:2a:ae:48:96:00:95:28:46:1b:6e:5d:2b:24:92:
ec:f9:6d:d5:5f:0c:08:5c:9b:80:2f:eb:5b:5a:20:
a4:65:81:01:23:d3:01:54:56:3f:06:05:91:de:2f:
52:67:fe:a4:15:0b:5e:40:2e:ca:59:a5:a5:39:86:
0e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:02:FC:DA:15:7B:47:78:F9:5F:20:11:01:47:88:C4:FC:95:D7:7E
X509v3 Authority Key Identifier:
keyid:7B:04:CE:58:A1:37:02:41:E9:3E:F0:1F:59:7D:D1:8A:03:9D:61:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d8463ad5-1745-443e-b165-d194eed89e6b/0/7B04CE58A1370241E93EF01F597DD18A039D613D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B04CE58A1370241E93EF01F597DD18A039D613D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8463ad5-1745-443e-b165-d194eed89e6b/0/3130332e39372e3139382e302f32342d3234203d3e20313439373034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.97.198.0/24
Signature Algorithm: sha256WithRSAEncryption
63:a4:2f:18:0c:35:87:51:03:98:5d:94:11:10:bd:99:ed:3e:
37:4c:36:d6:51:bd:97:14:9d:88:fd:ae:a8:97:d3:59:eb:ac:
76:31:56:66:49:c6:96:27:e4:7b:14:57:d2:be:13:00:02:ab:
75:5a:6b:63:16:b6:2b:5d:97:d5:bf:07:d5:d6:ea:01:a0:89:
3b:58:df:28:a5:04:57:8e:f3:c5:1b:c7:ab:9c:e2:7a:94:ec:
51:cc:b9:5e:39:e3:63:d4:18:71:98:35:cc:82:d4:48:50:59:
28:5a:5b:5d:f5:ed:c5:b2:35:09:0c:6b:7d:20:d2:c7:72:e3:
62:81:6e:05:8b:5b:03:2d:99:09:db:2a:98:cc:3d:c8:fe:1e:
cd:26:c1:bd:9f:f6:49:aa:87:a4:d7:61:df:be:a9:0a:61:a1:
6b:97:f5:36:cb:a7:41:da:cf:96:c4:64:3a:94:50:34:e5:36:
7e:53:f6:c5:6e:51:92:5d:90:c0:4f:3e:dc:58:dd:0c:e8:43:
82:81:e3:d9:ce:33:e6:d2:d8:8c:47:0c:cd:41:1c:4d:32:9b:
c9:7b:e7:22:ac:09:58:be:d3:e7:1b:cb:65:03:cf:aa:60:3b:
e3:48:79:e5:a7:e6:af:06:89:95:fd:09:6d:65:cc:16:e4:d9:
cb:85:cc:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:41:51 2024 by rpki-client on console-fra.rpki-client.org