Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3234203d3e20313938393830.roa
File: 3130312e3132382e36342e302f31382d3234203d3e20313938393830.roa (raw, json)
Hash identifier: dzYA990d1Hwx1xJhgt1Cj0Y0vKOm3mtd4h3o8+72Z1Q=
Subject key identifier: BD:70:3C:E4:19:E7:CE:9E:67:01:DF:CC:ED:02:02:01:01:23:0F:CF
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 208E6C3481A35D0FE4CD860D8AA03EEDD5F27FC6
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3234203d3e20313938393830.roa
Signing time: Mon 15 Jul 2024 22:33:30 +0000
ROA not before: Mon 15 Jul 2024 22:28:30 +0000
ROA not after: Mon 14 Jul 2025 22:33:30 +0000
asID: 198980
IP address blocks: 101.128.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 17:15:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:8e:6c:34:81:a3:5d:0f:e4:cd:86:0d:8a:a0:3e:ed:d5:f2:7f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 15 22:28:30 2024 GMT
Not After : Jul 14 22:33:30 2025 GMT
Subject: CN=BD703CE419E7CE9E6701DFCCED02020101230FCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:f7:43:e7:9b:9c:5b:1e:be:08:a6:8d:ac:
74:a8:71:e1:42:cb:20:0e:43:31:f9:4e:d1:ac:a6:
85:9a:77:57:12:21:f2:f1:6f:0e:a0:97:a1:d8:e6:
4a:41:d1:6f:d0:3c:39:81:ab:57:14:23:d4:41:91:
f2:0f:25:12:2b:38:4e:40:b5:eb:aa:a0:60:8a:1c:
db:1a:07:98:c3:dc:99:19:69:c3:12:18:b2:18:d6:
e3:22:83:6a:98:1a:98:ba:44:b6:03:44:96:b0:45:
2d:15:10:0d:1c:a3:d6:9e:03:ef:3d:0c:1f:8d:cc:
9c:18:cd:f7:73:08:d7:4f:a2:d7:27:01:31:11:f8:
a4:71:6e:85:01:35:f4:e5:18:56:dc:ee:7e:94:33:
f3:fe:e0:69:fd:6c:db:fe:86:c2:91:fd:3f:9f:57:
f3:25:df:0a:94:30:97:a4:10:a9:4c:29:a1:1a:c5:
7f:2e:75:52:ec:8c:94:7f:86:02:c1:b8:91:11:6e:
de:62:ea:27:91:c4:40:42:6e:23:17:52:70:c6:c5:
86:aa:1c:10:4c:65:f8:4a:f3:c3:c3:1c:68:40:00:
ae:ce:d0:9a:53:d2:56:9c:18:22:a2:49:ad:19:65:
b3:ae:8d:2a:6c:41:2f:69:45:07:88:8a:87:48:d6:
ec:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:70:3C:E4:19:E7:CE:9E:67:01:DF:CC:ED:02:02:01:01:23:0F:CF
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3234203d3e20313938393830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3a:0a:e4:ee:5d:f1:d9:ea:10:c6:c6:fd:3d:11:a0:1e:99:8f:
9a:ae:be:a1:a1:30:18:03:1e:26:a0:2d:fe:50:61:b5:7a:81:
52:cd:52:f1:cd:a1:44:85:29:4d:31:01:56:ce:69:7d:1a:6f:
7d:18:63:9e:ad:96:4a:b0:a1:99:51:9c:a1:b0:11:8a:70:2c:
b7:a5:02:5d:71:14:18:75:81:7d:d5:8e:54:2c:ab:0c:cc:dc:
dd:e3:b3:61:43:19:49:23:03:2c:0b:61:59:e7:0d:f8:09:66:
51:6e:02:98:b5:a4:64:8b:3e:f7:bb:1e:fd:58:98:39:75:53:
0c:c2:ad:cc:cb:1d:dd:e7:ae:a1:df:60:71:75:ce:91:d7:ca:
e2:83:ec:70:44:c3:fb:a7:af:0c:f2:b2:7d:7e:81:48:a1:64:
ab:02:b8:31:4f:36:39:62:66:e7:8b:e2:7f:24:e9:5e:21:26:
68:2d:d8:8e:8a:ee:4a:0b:ba:6f:1b:1e:56:f6:41:08:50:e7:
03:4c:60:88:98:11:67:48:99:aa:8f:56:2b:a3:ad:9f:36:61:
62:b2:70:2b:37:8a:b2:b9:12:fa:30:44:03:7f:87:1f:44:82:
fa:c3:49:47:1e:5c:00:74:36:bc:32:5c:7b:4a:57:bb:57:29:
0c:68:bb:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 20:13:51 2024 by rpki-client on console-fra.rpki-client.org