Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34342e302f32342d3234203d3e203435333235.roa
File: 3132322e3234382e34342e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: b+7lyQ1TbMP5fZSPjHUm2dMXtTf9UYeZdjJ7socmEoQ=
Subject key identifier: 3C:9E:AD:13:C8:70:FB:3C:3B:5D:28:34:D6:65:95:32:11:3A:19:B9
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 18D7DFE049E7A6AD8AAFF1C600CCA7494C2AB43E
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34342e302f32342d3234203d3e203435333235.roa
Signing time: Tue 05 Nov 2024 09:00:03 +0000
ROA not before: Tue 05 Nov 2024 08:55:03 +0000
ROA not after: Tue 04 Nov 2025 09:00:03 +0000
asID: 45325
IP address blocks: 122.248.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Apr 2025 06:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:d7:df:e0:49:e7:a6:ad:8a:af:f1:c6:00:cc:a7:49:4c:2a:b4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 5 08:55:03 2024 GMT
Not After : Nov 4 09:00:03 2025 GMT
Subject: CN=3C9EAD13C870FB3C3B5D2834D6659532113A19B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1b:bb:3e:ed:c2:28:e5:f6:8e:67:cd:12:4c:
ae:18:73:a6:9d:ff:92:26:e9:41:c2:e3:3a:06:a6:
7b:b8:c9:d7:ab:f4:ec:df:b6:d7:b5:a9:71:56:94:
61:c2:95:f9:5e:d3:2e:0d:ba:0c:67:e4:6c:a6:ba:
c5:0c:20:af:0e:a3:6f:e3:13:67:45:38:15:f4:42:
92:26:be:2e:5f:f6:d4:bf:88:65:f1:5f:55:1f:b1:
bf:d7:d2:48:c8:3a:bf:c3:31:64:e4:00:a9:c9:1d:
66:62:02:6e:40:94:05:5b:8e:f9:c7:45:c8:fb:07:
06:a0:dd:ac:44:38:0a:c6:1e:2b:8c:12:b6:91:34:
f7:6f:35:e7:86:52:89:c8:69:83:a3:a3:f1:88:c3:
dc:b5:85:82:25:e4:2f:94:55:ca:ac:f9:96:dc:ed:
90:25:21:b5:ba:7c:13:f4:c1:87:63:6f:e2:c9:16:
69:00:91:2a:3f:ba:91:f7:f4:ca:89:d0:6f:40:95:
96:1f:b5:ea:c8:74:67:a7:99:f8:b6:ba:5e:18:f3:
44:9c:ef:8f:97:a5:72:36:a4:a2:f7:ef:87:3a:0d:
45:94:bf:02:5f:a9:1b:4e:6e:c9:29:ee:49:1a:57:
26:99:c3:4d:39:9d:a1:ea:71:29:b4:e3:ac:57:1d:
22:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9E:AD:13:C8:70:FB:3C:3B:5D:28:34:D6:65:95:32:11:3A:19:B9
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34342e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.248.44.0/24
Signature Algorithm: sha256WithRSAEncryption
95:98:23:35:27:c2:ac:08:c5:4f:1b:1e:60:ef:01:24:f8:04:
b5:d0:1c:2a:97:f7:5d:70:83:0b:09:32:92:1c:87:d1:85:8a:
a6:6a:24:c5:27:ef:ac:ee:83:76:72:28:8e:2e:ef:cd:d8:70:
e7:98:43:99:57:99:8b:3a:c0:ca:36:f4:08:42:b5:38:08:c7:
ac:5c:4f:58:11:99:fa:cf:b2:81:82:eb:c0:02:c2:c0:ed:0f:
aa:1d:8a:fd:e4:29:bb:0f:80:2c:eb:88:b7:87:71:c1:dc:8e:
87:98:2e:a9:fc:ab:d6:e6:64:47:67:98:66:fe:29:9a:d4:5f:
ef:13:1b:cc:56:50:7e:90:89:2a:41:62:a6:d1:ab:a5:7c:fd:
66:8e:70:14:0b:38:41:5b:fa:8a:31:ca:79:5b:34:b9:b8:44:
6d:7a:54:89:d3:61:3c:3a:48:2d:2b:2d:fe:24:7e:8a:40:ee:
8a:74:f8:9b:88:96:fa:3e:be:43:89:00:5c:b2:54:c0:14:bf:
14:43:a3:55:51:36:fa:32:f8:72:58:c9:a0:9a:15:ea:50:8f:
2b:ab:85:5b:40:59:d4:33:c3:72:8a:a3:8e:35:b6:e3:47:61:
be:46:0e:bc:6b:dd:05:84:b9:94:70:f4:1f:d5:81:78:af:f7:
ae:e0:46:fc
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUGNff4Ennpq2Kr/HGAMynSUwqtD4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE
MzhBQzI2RDAeFw0yNDExMDUwODU1MDNaFw0yNTExMDQwOTAwMDNaMDMxMTAvBgNV
BAMTKDNDOUVBRDEzQzg3MEZCM0MzQjVEMjgzNEQ2NjU5NTMyMTEzQTE5QjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmG7s+7cIo5faOZ80STK4Yc6ad
/5Im6UHC4zoGpnu4yder9Ozftte1qXFWlGHClfle0y4Nugxn5GymusUMIK8Oo2/j
E2dFOBX0QpImvi5f9tS/iGXxX1Ufsb/X0kjIOr/DMWTkAKnJHWZiAm5AlAVbjvnH
Rcj7Bwag3axEOArGHiuMEraRNPdvNeeGUonIaYOjo/GIw9y1hYIl5C+UVcqs+Zbc
7ZAlIbW6fBP0wYdjb+LJFmkAkSo/upH39MqJ0G9AlZYfterIdGenmfi2ul4Y80Sc
74+XpXI2pKL374c6DUWUvwJfqRtObskp7kkaVyaZw005naHqcSm046xXHSJjAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUPJ6tE8hw+zw7XSg01mWVMhE6GbkwHwYDVR0j
BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2
QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB
QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04
ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4LDANBgkqhkiG
9w0BAQsFAAOCAQEAlZgjNSfCrAjFTxseYO8BJPgEtdAcKpf3XXCDCwkykhyH0YWK
pmokxSfvrO6DdnIoji7vzdhw55hDmVeZizrAyjb0CEK1OAjHrFxPWBGZ+s+ygYLr
wALCwO0Pqh2K/eQpuw+ALOuIt4dxwdyOh5guqfyr1uZkR2eYZv4pmtRf7xMbzFZQ
fpCJKkFiptGrpXz9Zo5wFAs4QVv6ijHKeVs0ubhEbXpUidNhPDpILSst/iR+ikDu
inT4m4iW+j6+Q4kAXLJUwBS/FEOjVVE2+jL4cljJoJoV6lCPK6uFW0BZ1DPDcoqj
jjW240dhvkYOvGvdBYS5lHD0H9WBeK/3ruBG/A==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:27:39 2025 by rpki-client