Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/3130332e3134382e37392e302f32342d3234203d3e20313339393830.roa
File: 3130332e3134382e37392e302f32342d3234203d3e20313339393830.roa (raw, json)
Hash identifier: PkZNAwPHn8pdU0Aj9FPxWwv084z+wwKFYS5NA/gGCdo=
Subject key identifier: C8:4A:81:1C:F5:D3:4F:A9:51:C9:33:EA:BD:64:C8:E8:0D:CF:33:20
Certificate issuer: /CN=7C33921B29322EBAAC6645FC4B920923F5E49E1A
Certificate serial: 42C1AF6553A49B879BB703A81CD94167BA716581
Authority key identifier: 7C:33:92:1B:29:32:2E:BA:AC:66:45:FC:4B:92:09:23:F5:E4:9E:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C33921B29322EBAAC6645FC4B920923F5E49E1A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/3130332e3134382e37392e302f32342d3234203d3e20313339393830.roa
Signing time: Fri 29 Nov 2024 04:02:05 +0000
ROA not before: Fri 29 Nov 2024 03:57:05 +0000
ROA not after: Fri 28 Nov 2025 04:02:05 +0000
asID: 139980
IP address blocks: 103.148.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Apr 2025 22:41:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:c1:af:65:53:a4:9b:87:9b:b7:03:a8:1c:d9:41:67:ba:71:65:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7C33921B29322EBAAC6645FC4B920923F5E49E1A
Validity
Not Before: Nov 29 03:57:05 2024 GMT
Not After : Nov 28 04:02:05 2025 GMT
Subject: CN=C84A811CF5D34FA951C933EABD64C8E80DCF3320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d8:11:dd:56:a0:82:2d:a2:bd:13:74:6b:dc:
8f:3d:c1:5f:f0:2a:6f:79:f2:a6:a5:06:68:e0:a8:
07:36:22:fe:fe:91:15:f4:25:25:b2:3f:8a:0a:67:
f4:4c:77:6e:4d:3b:34:20:d6:f5:d6:67:4d:12:77:
e3:17:bf:8b:40:0b:8d:d4:45:5b:3d:a7:ae:07:68:
d7:c3:f8:f7:fb:0d:56:c9:5a:8d:e2:3b:a9:a4:ba:
7d:68:9a:75:7e:a6:72:fc:dc:73:83:63:39:05:6b:
1a:25:64:ad:1b:0b:bc:f2:04:9f:42:6d:eb:77:ef:
27:3f:4a:d4:56:24:c6:34:94:c5:b3:a3:47:c7:d8:
df:f3:21:0b:be:9e:f0:62:d6:ff:55:99:c7:c1:12:
ac:3b:9c:6b:02:8f:2d:61:c4:35:eb:9f:51:3b:85:
a4:8f:ac:25:a7:34:37:b3:0f:1e:c0:c8:89:48:23:
75:09:df:4d:3c:9d:fc:cb:48:4c:83:6d:3d:69:77:
f3:24:79:da:14:4a:11:67:2d:30:b1:4e:53:2e:e8:
a6:2f:8d:e4:a3:f4:d6:b8:a5:83:a5:d8:3a:1c:40:
e8:dd:29:c1:36:23:90:8e:21:5c:86:5e:a0:93:7e:
80:74:92:42:b7:29:52:3b:f1:e5:90:fd:a7:db:84:
b0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4A:81:1C:F5:D3:4F:A9:51:C9:33:EA:BD:64:C8:E8:0D:CF:33:20
X509v3 Authority Key Identifier:
keyid:7C:33:92:1B:29:32:2E:BA:AC:66:45:FC:4B:92:09:23:F5:E4:9E:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/7C33921B29322EBAAC6645FC4B920923F5E49E1A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C33921B29322EBAAC6645FC4B920923F5E49E1A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fae4cd96-cfc1-4577-ad3f-7983c0523c10/0/3130332e3134382e37392e302f32342d3234203d3e20313339393830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.79.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:03:8f:60:98:82:94:8e:76:40:26:e5:8d:49:d8:96:14:07:
9f:72:95:62:4b:b3:b8:88:2a:ac:ce:7c:b2:0c:26:aa:71:60:
58:4b:ff:bd:31:f9:76:44:2d:89:88:41:36:9d:f6:b3:94:a9:
c1:0b:b0:3e:86:d2:1e:99:f6:58:03:17:2d:d8:06:2f:b3:47:
44:14:01:c9:58:d7:80:78:d8:7a:39:85:43:0e:d1:40:3b:0b:
54:b5:67:18:9e:14:98:2e:17:e0:ff:6f:fc:e7:af:8b:b1:33:
5f:ce:a8:ab:6d:b5:2d:b6:cd:0a:38:1d:b0:4f:a2:f7:0c:fd:
1d:8c:05:b4:00:b7:4f:a3:bd:07:d2:c5:58:84:a8:81:3e:71:
44:ef:9a:24:ee:f4:96:69:1b:44:39:79:44:0c:e3:bd:40:b5:
4b:1e:9b:d8:12:b3:63:28:ef:82:9e:e8:0b:2f:33:aa:2b:71:
48:ff:e9:77:f6:c2:ee:14:4f:fa:40:6a:8f:2d:cd:56:ce:ef:
f8:af:70:99:11:52:b1:11:03:6e:38:b4:c0:46:1d:14:55:2a:
ab:64:c3:cf:30:ce:92:1c:2d:fa:60:32:23:e2:d0:47:68:1b:
2a:6f:b4:f5:99:b2:81:80:69:8b:f3:53:5d:3b:5e:4d:16:0b:
56:c0:c8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:57:41 2025 by rpki-client