Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/3136302e31392e3137382e302f32332d3234203d3e20313532373837.roa
File: 3136302e31392e3137382e302f32332d3234203d3e20313532373837.roa (raw, json)
Hash identifier: bFiyTs8VVSAM08Sqt7ZcEHbx/miJ1pPEciBjY/4snE0=
Subject key identifier: B9:EA:87:B8:04:64:47:14:C0:67:FB:09:2E:7D:71:1A:D3:BB:19:99
Certificate issuer: /CN=C2D593D1C8A7F70D45125D4BDBE5774927C14E55
Certificate serial: 5950A0B1E87ECF56D67C772F24EB47462ABBBDE5
Authority key identifier: C2:D5:93:D1:C8:A7:F7:0D:45:12:5D:4B:DB:E5:77:49:27:C1:4E:55
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/3136302e31392e3137382e302f32332d3234203d3e20313532373837.roa
Signing time: Fri 20 Sep 2024 11:53:56 +0000
ROA not before: Fri 20 Sep 2024 11:48:56 +0000
ROA not after: Fri 19 Sep 2025 11:53:56 +0000
asID: 152787
IP address blocks: 160.19.178.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 03:49:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:50:a0:b1:e8:7e:cf:56:d6:7c:77:2f:24:eb:47:46:2a:bb:bd:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2D593D1C8A7F70D45125D4BDBE5774927C14E55
Validity
Not Before: Sep 20 11:48:56 2024 GMT
Not After : Sep 19 11:53:56 2025 GMT
Subject: CN=B9EA87B804644714C067FB092E7D711AD3BB1999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9b:c3:a0:91:8e:ab:1a:71:4e:06:dc:29:40:
4f:2b:55:3f:26:5f:b1:c7:84:d4:83:43:db:84:b3:
8b:97:48:44:90:26:a7:23:21:bb:f2:ca:84:5f:46:
c4:63:78:b5:71:35:56:11:b5:f1:d3:5a:79:2c:e5:
98:1d:1f:47:08:df:08:a2:17:a3:60:05:e7:65:8a:
06:6c:3a:a5:d5:41:3f:7f:77:0f:3d:98:23:9b:80:
09:fd:96:23:46:6c:3b:d9:b7:9b:d3:3c:5f:b9:b7:
cd:e4:e3:01:47:ed:07:9d:21:75:42:e4:ec:20:61:
a5:d5:8e:b0:34:d8:3c:a4:51:1a:89:40:b3:f6:e5:
f4:ec:38:29:b7:1b:0b:04:af:95:16:c3:0a:24:0d:
bf:8b:64:7a:d9:ea:87:06:68:9a:bb:28:4b:14:fb:
2d:b8:59:37:7c:0e:88:8e:ef:17:db:93:c4:4e:d5:
87:f4:4d:c6:07:d9:1f:23:5e:96:dd:29:df:67:e8:
2a:e3:96:9f:e1:0b:46:08:b8:77:fd:d1:86:6b:74:
bf:fe:ee:2c:79:dc:39:e3:4c:77:f1:98:f4:a5:5f:
c1:04:c1:c5:d3:b0:02:b8:d6:96:d8:98:51:5a:41:
b9:d1:f7:e4:a9:ab:52:ba:71:e5:a3:b4:38:a0:9e:
8e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:EA:87:B8:04:64:47:14:C0:67:FB:09:2E:7D:71:1A:D3:BB:19:99
X509v3 Authority Key Identifier:
keyid:C2:D5:93:D1:C8:A7:F7:0D:45:12:5D:4B:DB:E5:77:49:27:C1:4E:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C2D593D1C8A7F70D45125D4BDBE5774927C14E55.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fdb0130d-caa3-476f-af81-ba722330be2c/0/3136302e31392e3137382e302f32332d3234203d3e20313532373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.19.178.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:1c:60:2e:20:66:29:54:99:f3:4f:46:4d:c6:dc:5f:cb:3e:
1b:8d:3e:36:fc:66:30:68:06:99:8a:ff:2f:34:60:db:5d:0e:
71:3e:dd:86:e1:55:73:05:fd:1d:7d:10:d9:49:86:5a:16:9f:
7d:58:be:86:5f:49:28:5b:21:5b:f2:de:b8:69:44:ab:d8:d7:
8c:3d:bb:46:96:05:0c:4a:d1:ae:80:32:e2:a2:7f:85:48:69:
4e:74:87:09:a0:b6:32:19:fd:aa:48:1d:48:8c:be:8f:ef:fc:
8e:98:7c:d8:3c:f0:1b:fb:95:a7:1e:09:35:c2:73:a8:f7:25:
93:3e:a2:2e:6f:79:62:ab:b5:f8:e1:71:c8:c3:a7:4d:8d:e1:
d1:d9:60:03:d3:2c:76:a1:47:7f:aa:e2:ae:75:2a:44:8d:72:
6c:c3:5c:94:db:2a:e2:80:75:ed:16:2f:75:02:16:16:2d:55:
f9:b9:23:04:2f:d9:8c:23:f5:04:d5:04:65:7e:65:0a:4e:8b:
4c:c2:d6:1c:53:1f:0b:3a:aa:08:5f:8b:45:ec:22:36:08:8c:
d7:89:d3:e3:7b:92:a9:15:fa:c9:6c:ac:d5:41:8f:34:ea:25:
bd:77:fa:11:4d:94:3f:7c:88:ef:bd:fa:47:db:d2:6e:c9:e2:
e2:82:3d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 07:16:18 2024 by rpki-client on console-ams.rpki-client.org