Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/3135372e36362e32302e302f32332d3234203d3e20313533303636.roa
File: 3135372e36362e32302e302f32332d3234203d3e20313533303636.roa (raw, json)
Hash identifier: ALT33zbgfhpSiQhUt0Qz+c1UFihLxrlC1K9JvnwyqBU=
Subject key identifier: ED:07:85:72:F3:8F:69:A6:A1:5C:5E:3C:84:BB:3E:AC:26:42:AA:A0
Certificate issuer: /CN=7ABD31DD828DD58C9D91180021903EA04D8EB58E
Certificate serial: 5A60636592FACD77D51F9FC0D6D5B880AAAB78B3
Authority key identifier: 7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/3135372e36362e32302e302f32332d3234203d3e20313533303636.roa
Signing time: Fri 19 Jul 2024 02:26:53 +0000
ROA not before: Fri 19 Jul 2024 02:21:53 +0000
ROA not after: Fri 18 Jul 2025 02:26:53 +0000
asID: 153066
IP address blocks: 157.66.20.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 05:03:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:60:63:65:92:fa:cd:77:d5:1f:9f:c0:d6:d5:b8:80:aa:ab:78:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ABD31DD828DD58C9D91180021903EA04D8EB58E
Validity
Not Before: Jul 19 02:21:53 2024 GMT
Not After : Jul 18 02:26:53 2025 GMT
Subject: CN=ED078572F38F69A6A15C5E3C84BB3EAC2642AAA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ed:2f:f5:44:bd:2a:cc:38:6b:2d:d8:0c:1e:
f3:e2:e1:22:42:67:8d:7e:f0:2d:18:22:15:29:cb:
2e:88:15:91:43:e6:e3:75:6e:14:99:a3:fb:6c:7a:
bd:6f:e1:8b:e0:7b:76:61:a9:14:a8:6e:3d:fe:56:
86:87:88:7a:84:82:d4:b1:77:25:3a:71:83:4f:6b:
77:5d:c3:0a:a3:4c:83:12:e0:4b:9f:4e:f8:0f:14:
9c:f5:9b:c4:86:64:fb:d6:19:88:b5:65:2d:fa:ef:
f2:8f:95:7b:5f:8c:fe:b9:af:4f:af:40:43:da:4c:
d1:89:84:0a:df:69:a1:16:5d:58:fa:eb:1a:dd:1d:
57:8e:9c:18:56:21:b8:96:22:53:75:07:e0:17:3a:
f2:e0:e0:db:c4:a5:43:c9:f6:08:1c:f2:64:5d:87:
e2:d4:19:16:2c:44:d9:99:a1:7b:5d:9c:24:a0:6b:
48:49:47:c6:6f:c4:6c:24:17:f0:03:18:f3:f6:6f:
e5:ce:dd:16:96:c0:5c:f9:16:e4:a0:aa:89:13:c1:
56:53:8c:1f:ac:e0:d4:c7:ca:81:7c:97:eb:e5:81:
a6:62:da:59:9f:a9:4c:d0:0d:c1:33:a3:d2:cc:6e:
de:fc:c9:4c:f5:e7:a4:30:88:ef:b7:7a:1c:18:74:
ef:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:07:85:72:F3:8F:69:A6:A1:5C:5E:3C:84:BB:3E:AC:26:42:AA:A0
X509v3 Authority Key Identifier:
keyid:7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/3135372e36362e32302e302f32332d3234203d3e20313533303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.20.0/23
Signature Algorithm: sha256WithRSAEncryption
36:ed:de:5c:83:90:64:8c:15:f9:54:43:f5:59:07:74:88:71:
7a:3d:f7:d2:64:c3:b4:37:e4:e9:2f:3e:b4:34:33:87:3c:c1:
b4:e4:25:b5:0e:cb:a7:af:21:53:c7:52:3e:76:2c:19:e3:aa:
4c:e2:1f:3b:78:d2:90:52:89:c3:f8:9a:06:82:5b:3c:00:95:
b2:5b:41:9c:8a:ee:c5:8d:16:70:ae:0a:ad:a1:a8:5e:43:f0:
40:c5:af:e1:22:99:ad:99:cb:69:05:cc:60:97:4a:d3:c7:81:
a4:25:f2:3c:20:b7:ef:29:59:53:46:63:2e:a6:39:52:d9:fa:
e8:38:e2:f9:a8:78:36:8b:4c:07:8a:3f:2e:75:71:fb:04:de:
29:24:c2:c6:a1:c7:11:a0:7e:1f:8f:e9:4c:ff:20:dc:8b:d7:
0f:92:e9:7e:b7:6a:1b:b9:87:ae:96:58:1b:f7:74:22:76:79:
81:32:0d:ad:9a:5f:22:2a:12:cd:bb:41:b2:1e:a2:94:86:83:
ae:09:d6:46:42:fe:09:7d:1d:a2:20:33:1c:16:e1:fc:7b:f5:
b1:09:61:68:f4:b3:54:86:ba:9e:03:ca:3c:27:32:1a:4b:a4:
b5:c9:69:a1:da:e1:5e:93:a8:bb:73:7e:14:01:60:74:5f:8c:
8a:72:2e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 06:58:35 2024 by rpki-client on console-fra.rpki-client.org