Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32322d3234203d3e203435323935.roa
File: 3130332e32312e39322e302f32322d3234203d3e203435323935.roa (raw, json)
Hash identifier: U0Y1gtgIuV45Rqw3q4FWzhgEIyLDR/lRySMhr68Qg9w=
Subject key identifier: 3E:C3:31:88:26:99:57:54:C1:13:38:E4:50:E7:05:EC:DC:C0:FC:23
Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5
Certificate serial: 7E2C5DD0BDB41FC8E09B457922DEE4FF2ADCC1D0
Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32322d3234203d3e203435323935.roa
Signing time: Fri 15 Dec 2023 06:00:48 +0000
ROA not before: Fri 15 Dec 2023 05:55:48 +0000
ROA not after: Fri 13 Dec 2024 06:00:48 +0000
asID: 45295
IP address blocks: 103.21.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 15:51:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:2c:5d:d0:bd:b4:1f:c8:e0:9b:45:79:22:de:e4:ff:2a:dc:c1:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5
Validity
Not Before: Dec 15 05:55:48 2023 GMT
Not After : Dec 13 06:00:48 2024 GMT
Subject: CN=3EC3318826995754C11338E450E705ECDCC0FC23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:12:26:62:86:32:48:32:57:cb:e9:c5:1a:
e0:b7:5e:45:d9:bd:70:bc:b8:dd:d9:b8:0d:5a:92:
27:b1:44:dc:7e:44:f2:c3:be:27:56:67:12:f4:40:
42:fc:87:1b:e6:2b:51:fd:b6:90:40:0f:cb:29:7d:
fc:22:65:ca:38:f3:d4:0d:d4:03:08:00:7b:f6:42:
c7:34:60:e6:b7:61:99:eb:49:f8:b2:1d:0d:4c:15:
f9:3f:c3:29:8b:7e:ec:c8:f4:99:1c:23:fa:82:c1:
3a:b1:94:01:5a:b9:0b:a0:2a:33:59:2a:46:87:15:
67:9d:89:4c:e5:26:63:3f:d4:9f:41:2b:2e:1d:31:
6d:89:9f:0d:74:66:b3:90:42:ab:03:c2:59:3f:ad:
b6:a0:ec:9e:79:39:26:09:67:62:a9:78:36:29:98:
11:41:2c:02:d5:b8:98:5f:a8:e4:3b:2f:f1:94:d7:
88:01:e1:ab:28:a7:ee:3a:49:24:19:93:c9:cc:ba:
8e:1e:f6:6f:5b:f4:76:68:9c:12:2b:48:70:51:d9:
0c:2a:24:3d:6b:0b:73:80:9a:93:38:cb:e8:0a:d0:
f0:9a:d1:24:67:89:c2:d5:c4:4e:b9:d0:19:04:b4:
05:e3:a5:16:ed:76:c5:22:02:f8:1b:fb:92:1c:8d:
56:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C3:31:88:26:99:57:54:C1:13:38:E4:50:E7:05:EC:DC:C0:FC:23
X509v3 Authority Key Identifier:
keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32322d3234203d3e203435323935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.21.92.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:29:94:3c:7f:74:c4:3f:fa:1d:fd:0b:82:dd:66:1c:19:df:
98:ee:88:38:23:33:5b:b6:83:d8:03:14:23:45:6c:e8:4e:e5:
a8:03:cc:0d:48:a4:f4:b2:19:ea:08:a1:e5:66:d0:e1:22:97:
e8:e1:e7:42:a1:e5:a0:79:6a:e5:8e:66:f0:d2:28:00:d2:68:
db:b0:c8:81:9d:b5:91:21:43:2e:45:04:ab:11:c1:56:5b:84:
86:f7:1f:ac:d1:19:84:cd:f0:53:d5:69:b3:30:33:fb:a8:a0:
9b:ae:59:a7:49:cd:98:ff:6e:4a:41:07:79:16:1c:57:6f:5d:
5f:b0:c7:f3:fb:f5:cb:75:ff:60:ab:60:58:99:96:74:02:79:
f4:8e:a9:f2:b5:03:1f:a2:87:b4:72:b7:24:23:61:3b:65:b1:
de:76:77:24:1d:91:04:fd:d0:b2:87:be:9f:e8:97:97:7f:e1:
3c:00:a5:a5:6e:45:0a:63:df:60:9a:64:c9:36:86:dc:ed:46:
25:46:74:3f:4f:a3:50:95:81:7c:d7:e0:d7:01:19:d1:6c:12:
f1:ea:36:53:68:b3:f3:9a:17:bc:5f:1f:7c:cc:a7:46:5a:1c:
83:53:fd:42:dd:e8:56:f2:61:f9:7a:ad:00:69:86:42:1d:0b:
d7:50:34:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org