Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3130332e3232382e3234302e302f32322d3234203d3e203234323031.roa
File: 3130332e3232382e3234302e302f32322d3234203d3e203234323031.roa (raw, json)
Hash identifier: cZ8r4phvtkdNTYFlExYqCniBE0M9HZF71hyzNXZfz70=
Subject key identifier: 0D:43:28:A5:B9:71:DE:AE:8B:08:52:8F:6A:22:F0:00:BE:51:04:96
Certificate issuer: /CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F
Certificate serial: 3D45286492C425C1AC7C57FBB2FAA9050517FBBE
Authority key identifier: 8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3130332e3232382e3234302e302f32322d3234203d3e203234323031.roa
Signing time: Tue 23 Jul 2024 05:00:24 +0000
ROA not before: Tue 23 Jul 2024 04:55:24 +0000
ROA not after: Tue 22 Jul 2025 05:00:24 +0000
asID: 24201
IP address blocks: 103.228.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 03:45:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:45:28:64:92:c4:25:c1:ac:7c:57:fb:b2:fa:a9:05:05:17:fb:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F
Validity
Not Before: Jul 23 04:55:24 2024 GMT
Not After : Jul 22 05:00:24 2025 GMT
Subject: CN=0D4328A5B971DEAE8B08528F6A22F000BE510496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9d:b3:6c:12:95:7a:f7:97:cd:63:9b:85:cd:
ff:86:ed:9c:24:bb:18:a8:da:49:52:9e:6d:91:5a:
7a:56:7d:6c:6b:a1:6d:9c:99:03:f6:e7:9c:25:0a:
b8:ae:ba:80:19:2c:e5:b1:68:81:d0:e7:30:f9:54:
4d:1c:f8:93:80:90:68:b0:08:68:b3:7f:2b:1a:12:
8d:d4:50:43:0b:b8:5d:3b:cf:37:2a:32:f1:22:b9:
cd:e5:8a:7a:4e:0f:60:80:02:0c:fe:33:77:f5:27:
6b:7c:a2:b8:fb:b0:18:00:74:56:e0:86:d9:60:42:
dd:c6:80:70:1e:4b:11:1b:74:e0:05:33:d5:1a:b5:
79:7c:0b:c5:e1:47:b1:cf:c8:7f:a2:b7:3d:c2:9e:
bd:8b:ca:8e:b8:a1:9c:d5:a4:99:fc:92:f6:54:19:
7e:25:46:7e:25:ec:1a:ac:9d:3a:3e:f8:ef:ac:2d:
b6:ab:2b:10:c2:6e:38:b0:4d:c7:24:22:92:68:76:
1e:8f:bd:3f:4a:a9:fa:7e:b6:94:53:43:98:88:d5:
03:32:45:03:f0:3b:7b:00:3e:49:8e:cd:84:1e:41:
6f:d6:b9:91:bd:db:d8:1e:1a:6f:3b:b1:68:3e:a0:
6e:dc:61:c2:a4:f7:57:f1:23:61:85:23:7a:90:5d:
37:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:43:28:A5:B9:71:DE:AE:8B:08:52:8F:6A:22:F0:00:BE:51:04:96
X509v3 Authority Key Identifier:
keyid:8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3130332e3232382e3234302e302f32322d3234203d3e203234323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.228.240.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:61:c6:77:42:e0:9b:fc:f8:dd:4b:e5:74:86:ca:48:0a:86:
6b:e6:9b:96:0f:58:88:63:d0:75:86:25:7f:17:cc:91:6e:79:
ae:f0:3a:b4:30:9e:35:15:54:e6:69:cc:38:97:da:81:8d:2d:
c3:13:bc:f3:69:e1:59:e1:96:64:19:d9:ca:5e:aa:7f:4a:3f:
7d:e5:cb:d4:5a:df:fb:ac:1f:23:34:f2:8b:86:3c:99:d5:72:
25:5f:4b:23:cc:d0:e5:87:5c:e3:02:db:29:1b:4f:b5:43:3d:
3e:3a:7f:7a:2e:59:ba:d4:7b:dd:69:1e:ee:e8:b1:ec:c5:e8:
c3:15:36:64:ae:02:f5:be:9f:f2:81:53:fd:d2:58:93:49:d7:
70:40:0a:b5:0e:ff:3a:03:15:65:7a:41:42:4a:a3:8f:85:d2:
d2:7a:a1:b7:d7:ae:49:59:dc:53:81:0f:ec:b1:f6:29:fd:44:
fb:9a:f2:72:05:1f:64:1f:b1:fd:58:5f:45:2d:51:4a:e7:0f:
db:81:98:29:da:34:71:9e:44:bc:dd:66:1b:66:fe:7b:05:d3:
62:dd:8f:1d:dc:2d:a6:52:2f:f9:fa:e6:0d:dd:92:1a:d4:19:
4b:2c:9f:52:8e:2c:ff:42:62:2e:76:83:af:5b:ba:d4:c2:79:
77:2d:42:71
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUPUUoZJLEJcGsfFf7svqpBQUX+74wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1
Q0Y0OEY5RjAeFw0yNDA3MjMwNDU1MjRaFw0yNTA3MjIwNTAwMjRaMDMxMTAvBgNV
BAMTKDBENDMyOEE1Qjk3MURFQUU4QjA4NTI4RjZBMjJGMDAwQkU1MTA0OTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUnbNsEpV695fNY5uFzf+G7Zwk
uxio2klSnm2RWnpWfWxroW2cmQP255wlCriuuoAZLOWxaIHQ5zD5VE0c+JOAkGiw
CGizfysaEo3UUEMLuF07zzcqMvEiuc3linpOD2CAAgz+M3f1J2t8orj7sBgAdFbg
htlgQt3GgHAeSxEbdOAFM9UatXl8C8XhR7HPyH+itz3Cnr2Lyo64oZzVpJn8kvZU
GX4lRn4l7BqsnTo++O+sLbarKxDCbjiwTcckIpJodh6PvT9Kqfp+tpRTQ5iI1QMy
RQPwO3sAPkmOzYQeQW/WuZG929geGm87sWg+oG7cYcKk91fxI2GFI3qQXTfZAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUDUMopblx3q6LCFKPaiLwAL5RBJYwHwYDVR0j
BBgwFoAUig92Wb5skWcCmU8bZTymM1z0j58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
MGE5MjljNi0xZTI1LTQ5NGEtYjBmOS01NWZjNGZjOTRmYmMvMC84QTBGNzY1OUJF
NkM5MTY3MDI5OTRGMUI2NTNDQTYzMzVDRjQ4RjlGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1Q0Y0
OEY5Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwYTkyOWM2LTFlMjUtNDk0YS1i
MGY5LTU1ZmM0ZmM5NGZiYy8wLzMxMzAzMzJlMzIzMjM4MmUzMjM0MzAyZTMwMmYz
MjMyMmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+TwMA0GCSqG
SIb3DQEBCwUAA4IBAQAPYcZ3QuCb/PjdS+V0hspICoZr5puWD1iIY9B1hiV/F8yR
bnmu8Dq0MJ41FVTmacw4l9qBjS3DE7zzaeFZ4ZZkGdnKXqp/Sj995cvUWt/7rB8j
NPKLhjyZ1XIlX0sjzNDlh1zjAtspG0+1Qz0+On96Llm61HvdaR7u6LHsxejDFTZk
rgL1vp/ygVP90liTSddwQAq1Dv86AxVlekFCSqOPhdLSeqG3165JWdxTgQ/ssfYp
/UT7mvJyBR9kH7H9WF9FLVFK5w/bgZgp2jRxnkS83WYbZv57BdNi3Y8d3C2mUi/5
+uYN3ZIa1BlLLJ9Sjiz/QmIudoOvW7rUwnl3LUJx
-----END CERTIFICATE-----
Generated at Tue Sep 10 05:37:08 2024 by rpki-client on console-ams.rpki-client.org