Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3230203d3e2034373837.roa
File: 3130312e3132382e36342e302f31382d3230203d3e2034373837.roa (raw, json)
Hash identifier: lQG+oTacdinE3C1iPorGq2ytYhCPps65el77hQqG7Kw=
Subject key identifier: 8F:EE:09:F5:F3:16:48:12:DC:54:9E:E9:C3:18:31:5F:08:4E:19:F2
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 085F1FD2415AD8F317D5FBEE3C2E0687BC057F74
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3230203d3e2034373837.roa
Signing time: Mon 01 Jul 2024 01:02:15 +0000
ROA not before: Mon 01 Jul 2024 00:57:15 +0000
ROA not after: Mon 30 Jun 2025 01:02:15 +0000
asID: 4787
IP address blocks: 101.128.64.0/18 maxlen: 20
Validation: Failed, certificate revoked on Sun 21 Jul 2024 03:15:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:5f:1f:d2:41:5a:d8:f3:17:d5:fb:ee:3c:2e:06:87:bc:05:7f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 1 00:57:15 2024 GMT
Not After : Jun 30 01:02:15 2025 GMT
Subject: CN=8FEE09F5F3164812DC549EE9C318315F084E19F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:50:e2:44:ec:fb:13:97:70:61:37:39:59:94:
4f:f5:fd:9f:d6:fc:a0:24:52:e5:e2:35:68:c5:86:
19:32:21:89:7a:e4:d7:87:17:34:e8:6c:84:04:05:
2f:92:df:cd:b2:7e:02:ba:15:3d:ba:a0:55:1d:5e:
25:23:56:8c:90:ae:48:41:05:25:4f:2e:cd:1b:53:
08:17:b1:f4:b7:1d:80:3d:e0:b6:46:63:b4:42:ca:
70:6b:22:c1:98:7c:e0:f1:0b:2c:14:77:4b:24:74:
1d:a7:dc:94:4d:19:a8:f7:4a:2d:e1:c7:6a:1f:9f:
37:87:d2:cf:5c:2e:01:e3:41:dc:72:e0:42:32:d6:
9e:1e:a5:b4:22:04:57:d7:c3:38:c1:8d:0a:11:2f:
1f:d8:31:48:8a:0f:43:26:3f:7a:fe:92:76:e0:2d:
4c:e8:e1:a6:93:27:a4:83:20:39:d2:66:fc:83:cb:
21:4a:d8:c7:23:4f:d7:60:44:ca:02:03:29:88:ff:
74:86:1b:1f:e9:a3:a0:0f:ae:9f:95:3c:49:85:93:
c7:97:31:93:87:04:c8:88:34:22:6d:c0:cf:25:6c:
1b:1b:28:dc:63:82:30:25:12:f9:d5:e9:01:78:3a:
a3:73:45:36:aa:1a:43:e5:dc:d8:4e:e1:a3:ee:60:
f4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:EE:09:F5:F3:16:48:12:DC:54:9E:E9:C3:18:31:5F:08:4E:19:F2
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3230203d3e2034373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
4a:39:63:35:47:32:96:6f:98:2d:69:0b:8e:7c:78:35:eb:c4:
35:c4:46:39:81:98:44:b8:91:69:07:f1:30:41:10:02:42:ff:
ea:57:06:fe:ac:11:2e:31:13:ef:87:f3:72:d0:5e:d9:be:47:
56:86:0a:6b:92:31:25:3c:af:b8:62:2e:9e:af:a5:ad:dd:2c:
d6:1c:d2:4b:3c:75:2f:3a:84:09:0e:cd:2c:09:07:b1:33:55:
8b:f7:49:dd:11:89:48:50:f6:94:83:7d:01:71:3c:94:94:df:
b3:f6:ab:a2:0e:a6:53:06:17:52:bc:2c:c1:28:83:d0:df:1e:
2d:3c:98:3d:41:bf:a7:28:e3:83:9b:64:e0:14:6e:58:91:2c:
42:ab:22:19:14:d7:c5:f8:6c:69:59:a7:87:0a:fe:f2:e8:09:
f9:49:6d:fe:f7:f0:c0:ff:ec:5c:b3:9e:b8:c5:1b:2a:03:ab:
88:8d:2e:b1:8a:ed:8b:26:af:00:60:2f:17:2b:8f:b8:bd:62:
35:ad:b3:f9:01:7b:6a:83:02:10:cd:04:f2:f6:de:2d:e2:05:
b6:0d:81:ad:ee:d6:8a:e4:da:55:49:9b:23:09:52:e3:1d:bc:
be:4d:14:09:14:f1:fc:54:fa:91:e8:de:e3:b6:22:10:8c:fd:
b3:0d:e2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 05:52:51 2024 by rpki-client on console-ams.rpki-client.org