Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa
File: 3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa (raw, json)
Hash identifier: AbvqoDGEiXYBJjgpIsiB2YjohZ19ruSyWYjGUxrDyFw=
Subject key identifier: 33:5F:AA:EA:42:E0:13:13:FF:98:FC:A5:EA:8E:04:6C:10:01:8F:69
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 0185AEB0076317A871E557EACBFD71ABE4715F03
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa
Signing time: Mon 01 Jul 2024 01:02:14 +0000
ROA not before: Mon 01 Jul 2024 00:57:14 +0000
ROA not after: Mon 30 Jun 2025 01:02:14 +0000
asID: 135478
IP address blocks: 101.128.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 03:15:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ae:b0:07:63:17:a8:71:e5:57:ea:cb:fd:71:ab:e4:71:5f:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 1 00:57:14 2024 GMT
Not After : Jun 30 01:02:14 2025 GMT
Subject: CN=335FAAEA42E01313FF98FCA5EA8E046C10018F69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0b:c7:c8:ab:53:11:1d:dd:21:b0:93:db:0d:
ac:a4:f4:07:7d:f2:db:25:5b:84:d2:57:e0:27:f3:
13:e1:54:4b:a4:5d:24:c2:d1:71:c2:b8:fd:2f:f0:
38:90:64:6a:4a:c6:b9:cf:a8:a4:b0:a8:37:bc:5e:
26:c3:16:76:ed:b6:8c:11:1f:7a:21:5e:d8:ce:33:
ec:0f:98:67:fc:c0:dd:6a:10:6f:fc:77:a2:82:d1:
4c:99:ba:f7:e3:89:8f:8a:32:32:66:7f:aa:8c:41:
58:2b:a6:41:85:8c:0e:90:d5:37:86:97:db:01:af:
d3:2a:af:a9:2a:bd:98:a3:84:2a:b9:65:90:37:26:
59:25:a1:c0:64:08:39:df:f6:98:4a:c3:fd:eb:15:
e3:96:9b:27:65:f5:ee:0b:4e:d0:64:de:a4:14:90:
e0:c8:11:37:2c:98:a3:36:69:1c:5a:45:65:ca:8e:
17:b3:e9:df:2a:27:6d:35:0d:49:fe:54:5e:90:9e:
99:83:24:31:bd:1f:ae:ad:fa:8f:03:85:f3:ba:a0:
84:4d:dc:f9:94:85:ab:31:1a:47:c3:ca:f3:4c:b1:
53:c3:d1:c5:46:a9:d3:39:e0:c8:86:61:84:50:e9:
f6:f0:9b:73:42:fc:97:7b:39:8f:6e:df:c4:3e:75:
1a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5F:AA:EA:42:E0:13:13:FF:98:FC:A5:EA:8E:04:6C:10:01:8F:69
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e37322e302f32322d3234203d3e20313335343738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.128.72.0/22
Signature Algorithm: sha256WithRSAEncryption
73:8b:13:fb:f6:d4:2e:78:95:ea:ab:87:1b:18:24:73:e8:35:
7a:1f:91:e3:69:b4:e4:6d:03:94:25:72:c7:39:f9:0f:cb:80:
6a:7a:ff:0b:73:b4:11:96:e4:33:69:f8:25:50:05:00:63:65:
5b:33:11:c7:f3:a5:6a:d7:2d:7d:20:93:9e:05:2a:e8:bc:b0:
42:c4:fa:40:b4:5a:8f:c0:0c:5e:22:fd:0a:bb:ed:ea:60:65:
30:52:21:8c:38:a6:ae:88:9c:15:f8:63:57:e6:63:12:56:e5:
a6:ce:0f:3a:a0:df:24:01:bb:82:23:52:21:92:e7:aa:5f:da:
e3:d6:6d:f8:5b:cc:00:6c:a6:da:0e:20:cb:0d:b5:da:d1:6e:
e9:9a:e2:90:72:f4:88:14:25:54:4e:ed:e0:35:2a:de:29:03:
39:23:d1:bb:a0:e6:f4:cf:ca:37:c7:89:3f:69:58:c2:81:f1:
c7:50:52:e3:90:3e:97:91:29:1d:c8:4b:81:17:8d:ad:7f:b4:
48:ee:dd:77:09:35:be:61:09:9d:72:c9:1c:04:9c:08:ba:33:
20:97:63:53:40:e5:10:0a:fc:e2:22:c5:27:d3:e4:47:af:f5:
9a:58:ea:67:df:f9:15:c2:28:fc:d7:84:36:a2:ef:67:32:cf:
43:de:63:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 04:53:55 2024 by rpki-client on console-fra.rpki-client.org