Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138392e302f32342d3234203d3e203338373638.roa
File: 3230322e38372e3138392e302f32342d3234203d3e203338373638.roa (raw, json)
Hash identifier: esXn7/BFoUCUouXlAYK/IpTdwKlPmWRctkY40oiOKec=
Subject key identifier: DB:FB:DF:07:A5:74:FB:07:E9:39:3F:BE:3E:38:EE:9D:8F:AC:6E:B1
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 188ED17EE7F67E9F69A3BA58A68B01F10519716A
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138392e302f32342d3234203d3e203338373638.roa
Signing time: Mon 06 Nov 2023 07:51:25 +0000
ROA not before: Mon 06 Nov 2023 07:46:25 +0000
ROA not after: Mon 04 Nov 2024 07:51:25 +0000
asID: 38768
IP address blocks: 202.87.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 08:47:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:8e:d1:7e:e7:f6:7e:9f:69:a3:ba:58:a6:8b:01:f1:05:19:71:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: Nov 6 07:46:25 2023 GMT
Not After : Nov 4 07:51:25 2024 GMT
Subject: CN=DBFBDF07A574FB07E9393FBE3E38EE9D8FAC6EB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ad:a1:cc:3d:4c:7f:70:97:5e:2c:31:6a:f4:
29:f5:80:1b:24:40:af:8c:96:f9:96:7c:0d:82:34:
64:aa:67:03:16:1d:e5:ef:33:eb:72:3c:de:0e:1d:
2a:2e:2e:45:97:a7:70:b3:9e:47:d9:c8:1b:fd:70:
18:d6:f7:9e:7b:96:c9:5f:43:1b:03:d5:d1:73:5f:
99:80:4c:98:8d:14:9e:d5:15:a5:62:ae:a3:18:24:
b0:9b:46:a8:ed:61:0b:5d:bc:5a:b2:83:6d:fd:b6:
c4:ca:40:6b:75:83:13:4e:74:99:86:49:3d:16:af:
b4:7c:21:94:5d:d8:21:1d:84:b3:94:af:15:3e:49:
b2:48:91:ba:58:73:fe:d0:c2:77:c1:88:8b:fe:36:
bc:16:21:19:c7:58:ad:f5:b7:9c:ad:51:91:c8:aa:
36:9e:8c:31:cc:38:a1:09:e7:92:1e:d4:04:ec:51:
af:ee:f4:20:18:d7:e0:7a:7c:1f:29:ee:cc:7c:9b:
11:f3:12:78:bd:6f:39:0e:2c:c5:c1:8b:6d:02:67:
c6:19:a4:1e:8e:fa:6c:f1:22:0c:1e:f2:fb:ee:f9:
12:c0:2d:05:38:3e:9c:4a:90:c1:1a:a7:cb:11:cc:
47:66:1d:fa:02:4d:a0:25:1d:c7:c9:86:3c:53:dc:
d3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FB:DF:07:A5:74:FB:07:E9:39:3F:BE:3E:38:EE:9D:8F:AC:6E:B1
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138392e302f32342d3234203d3e203338373638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.87.189.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:70:9c:15:fb:6c:6c:ea:76:30:07:17:71:c2:b7:bd:1c:0a:
d6:b1:c7:71:f6:3d:51:00:c3:02:91:aa:4c:37:4c:a8:c0:f2:
98:10:6a:a9:03:b1:08:ed:2d:d7:23:0f:e6:92:64:a0:01:7f:
04:a3:54:c7:1b:3f:d5:d0:43:1b:90:b6:8b:6a:6d:fd:96:c0:
30:48:79:53:5c:04:28:e4:b5:f2:2e:ab:de:f3:dd:9b:53:e1:
ca:44:76:fc:ac:31:03:42:4d:b4:d8:92:97:ed:0b:c1:59:17:
9d:55:e2:a6:16:0c:b0:59:5a:a4:e4:e7:40:3b:30:de:af:16:
73:30:31:22:76:42:e5:28:da:ef:85:53:91:84:a7:f4:bb:a7:
e4:80:73:36:90:36:f4:c1:a3:a7:dd:ab:f4:1a:1a:4a:f8:ea:
26:4d:04:4c:b0:89:58:19:a4:8f:33:cc:38:fa:cd:b6:fc:5e:
7a:bc:c6:8e:e7:bc:bb:77:f4:48:95:6e:89:ba:25:25:fb:e1:
02:ed:0e:95:eb:da:64:08:77:d2:4a:80:bc:48:60:56:e9:cf:
85:3c:7f:5e:a8:96:b0:8d:d3:43:34:86:9c:9d:20:25:a5:da:
52:c6:37:5f:64:85:de:cf:1c:e7:d6:d9:8b:0f:29:73:a7:b5:
a2:28:84:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 12:52:50 2024 by rpki-client on console-ams.rpki-client.org