Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3234203d3e20313337343433.roa
File: 3138302e3233352e3133372e302f32342d3234203d3e20313337343433.roa (raw, json)
Hash identifier: 3V2brMTiwbRw6Pnd3VdwM9bGu5rzveA6UaGnyNymA/o=
Subject key identifier: 92:B9:57:49:D0:0B:45:8A:38:77:49:55:7E:3C:82:A2:01:24:3B:A3
Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B
Certificate serial: 0E7AE1827461B7DFFD5A7386D8415E71C35355E0
Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3234203d3e20313337343433.roa
Signing time: Wed 06 Dec 2023 17:32:50 +0000
ROA not before: Wed 06 Dec 2023 17:27:50 +0000
ROA not after: Wed 04 Dec 2024 17:32:50 +0000
asID: 137443
IP address blocks: 180.235.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 05:48:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:7a:e1:82:74:61:b7:df:fd:5a:73:86:d8:41:5e:71:c3:53:55:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B
Validity
Not Before: Dec 6 17:27:50 2023 GMT
Not After : Dec 4 17:32:50 2024 GMT
Subject: CN=92B95749D00B458A387749557E3C82A201243BA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:46:2c:31:c3:95:3d:1f:05:f2:fc:58:ad:43:
e8:95:9a:a8:66:2b:d8:e9:07:53:a0:8a:5e:a0:b9:
43:16:86:ba:70:09:4c:74:4c:e5:fb:8c:0d:ca:04:
53:16:7c:41:68:30:e1:43:ce:f1:0f:2c:0d:b2:71:
a1:3d:9d:fa:f2:01:6c:9d:76:04:26:9d:2e:c8:0e:
34:b3:10:78:48:8f:24:40:58:64:b0:63:9d:a0:cb:
ef:10:9b:c8:54:43:85:06:e6:2e:1a:1a:c4:27:9a:
0b:af:89:21:a9:77:35:03:c7:cf:fb:34:80:09:f5:
66:0a:bd:0b:14:a9:06:a5:ad:f0:6f:e3:38:c1:23:
bf:f7:b8:6a:ac:40:3a:a6:45:30:74:eb:e3:39:77:
68:9b:8d:a1:e0:25:6f:7c:86:e5:c1:6a:51:0e:25:
79:9d:80:ed:3a:7e:8d:60:cc:d5:64:58:1a:48:5f:
ea:1e:f7:61:fb:7e:fd:0d:fd:49:8c:81:06:e5:e0:
55:c9:ab:a9:06:92:c2:cd:e8:33:fd:d7:aa:e6:17:
2b:be:b4:2d:c6:73:9c:1c:02:94:37:e2:d1:8e:cf:
b6:c6:c4:63:45:81:6b:5b:4c:f7:70:04:d8:8f:30:
2d:91:15:e9:5e:ba:6c:9a:5a:c1:50:e9:67:03:4e:
a9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B9:57:49:D0:0B:45:8A:38:77:49:55:7E:3C:82:A2:01:24:3B:A3
X509v3 Authority Key Identifier:
keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3234203d3e20313337343433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.235.137.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:27:12:a8:94:a6:bd:56:65:50:78:d1:e0:4a:41:c5:95:4c:
77:63:c9:5b:db:0d:41:fb:6e:16:71:30:f7:a4:f0:5f:42:61:
8b:e1:a0:46:5c:27:3f:9b:7b:17:b5:0f:41:ad:4f:45:a2:d9:
2d:ed:06:07:d9:e9:c8:e9:a3:2d:b3:8e:9e:c2:07:ee:a5:65:
c0:d5:b8:dd:96:26:5a:8c:69:bf:5a:64:86:cf:14:54:1f:91:
4f:3e:8d:6e:cb:96:54:bf:f1:d8:fa:74:dd:48:c6:89:40:27:
c2:bd:d8:88:bc:2b:32:39:f6:a1:ea:f1:87:95:b3:8b:b5:a7:
8f:a4:6b:4f:29:49:72:8b:16:54:bd:93:2a:56:aa:5f:44:01:
4f:87:4c:d2:42:cb:06:ff:8d:15:a5:db:1f:0e:10:39:ae:42:
eb:a2:d9:83:3f:31:13:86:e6:80:4f:f1:09:cc:ca:ac:74:05:
af:2b:31:5a:60:14:b0:41:77:52:eb:80:fd:d3:62:5e:91:c1:
8d:a0:b9:99:ae:b6:3c:19:10:b3:99:d6:99:a8:eb:f4:07:d3:
c2:74:81:0b:41:15:06:a9:eb:85:36:da:26:73:8b:df:ce:7a:
df:45:1a:b1:8d:a7:65:88:de:e6:79:a1:3b:87:b7:6b:a4:8e:
83:88:33:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:49 2024 by rpki-client on console-ams.rpki-client.org