Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36382e302f32322d3234203d3e20313335343738.roa
File: 3130312e3132382e36382e302f32322d3234203d3e20313335343738.roa (raw, json)
Hash identifier: VWB+H+j03w82rzMa7puH+OS24gNzx+9EPcakk1A/L4M=
Subject key identifier: A8:EC:A9:02:E2:BE:37:71:1D:4B:D1:7C:A1:B5:78:54:2D:17:8E:4B
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 2A08BBF5962190F44A1C9416920DC3CB3AD19CA8
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36382e302f32322d3234203d3e20313335343738.roa
Signing time: Mon 01 Jul 2024 01:02:15 +0000
ROA not before: Mon 01 Jul 2024 00:57:15 +0000
ROA not after: Mon 30 Jun 2025 01:02:15 +0000
asID: 135478
IP address blocks: 101.128.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 03:15:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:08:bb:f5:96:21:90:f4:4a:1c:94:16:92:0d:c3:cb:3a:d1:9c:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 1 00:57:15 2024 GMT
Not After : Jun 30 01:02:15 2025 GMT
Subject: CN=A8ECA902E2BE37711D4BD17CA1B578542D178E4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b9:c5:05:40:50:37:4c:94:12:82:dc:b7:ae:
7d:de:b6:0d:f5:65:de:15:39:d9:74:a5:3a:cc:fc:
d4:65:70:de:37:da:d9:58:64:22:49:7d:5d:fe:2d:
a0:67:0b:3f:03:6b:2b:b5:a0:93:0f:13:37:50:d1:
ad:2d:b8:fb:29:23:c3:ca:4e:38:0c:b8:98:2f:29:
55:a5:1b:ba:e1:a4:c8:2d:1d:2a:f4:04:63:0c:13:
e2:cd:0d:a3:b8:b4:a1:d0:19:90:07:02:d5:6e:30:
33:84:d0:77:61:fa:a1:08:d2:18:22:aa:17:a1:20:
49:b3:11:46:82:9e:25:d5:01:cf:34:5f:3c:ba:32:
58:ac:dc:96:c5:6a:1d:34:cd:7d:da:60:59:67:84:
da:36:0a:b1:9e:13:71:93:1c:ed:f5:22:02:89:11:
8d:22:a1:53:36:26:03:c2:22:c9:83:89:a3:96:00:
ea:ca:d5:6d:93:d1:85:06:a3:74:ca:22:8f:d9:5b:
e6:b9:a0:f2:e5:1c:0b:e8:12:10:f7:4e:81:72:17:
24:b4:7b:25:f8:16:f0:8b:c5:6e:9a:e7:af:71:bf:
df:2a:30:c2:25:6a:59:18:60:f7:99:3d:b9:52:93:
6b:1b:19:28:31:db:cb:2f:fe:6d:9a:78:16:3d:13:
ee:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:EC:A9:02:E2:BE:37:71:1D:4B:D1:7C:A1:B5:78:54:2D:17:8E:4B
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36382e302f32322d3234203d3e20313335343738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.128.68.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:89:70:c3:02:4b:04:fc:5b:18:50:d2:ed:dc:d3:ff:af:2c:
0a:2b:40:e4:b8:23:dd:cf:96:25:54:22:0e:a9:19:8a:16:da:
db:89:d9:5b:ef:a0:72:67:28:cf:8b:37:27:e4:4c:38:b1:68:
f1:97:41:0d:57:8d:23:2b:f5:34:1f:4d:d9:9b:eb:27:c7:de:
7d:8e:55:00:c7:9b:80:9d:c7:06:a7:8f:72:ca:ea:4c:fd:1e:
56:5f:02:5c:5b:1d:8f:c2:04:3c:6c:76:be:70:d3:ad:60:6a:
40:0a:04:14:82:1e:fe:39:45:de:c6:46:9e:e9:ba:73:4c:22:
4f:2e:ca:65:56:b3:f0:1a:e6:b4:cc:a0:3a:00:29:01:f5:6d:
4f:4b:a3:5e:be:07:f5:71:fd:f8:30:8d:8c:76:af:c1:54:4d:
53:af:e9:74:70:f4:8d:99:d2:db:b8:64:d8:0a:a2:c9:78:26:
de:67:e3:8b:b8:ec:2b:d5:7d:93:3a:b3:e5:7d:ee:77:1b:5f:
c1:a3:34:a2:83:0b:d7:f1:e9:59:d6:f5:e2:46:b9:ee:07:65:
80:08:ad:cd:e1:f1:be:a3:6f:d2:72:e3:04:47:46:79:d3:f7:
ed:e7:82:54:3a:0a:f4:bd:5f:85:1d:48:5b:53:8c:04:47:49:
54:b2:24:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 05:52:51 2024 by rpki-client on console-ams.rpki-client.org