Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e39342e3233382e302f32342d3234203d3e20313334393633.roa
File: 3130332e39342e3233382e302f32342d3234203d3e20313334393633.roa (raw, json)
Hash identifier: nJgWx/AVr8Mv1kWPU44O7t25KScDj4+pBSLVkJ3JBjY=
Subject key identifier: DD:82:50:7B:F6:65:85:B3:2F:23:21:D5:DD:53:B9:94:39:31:BB:34
Certificate issuer: /CN=5CDA120200D28E4FC66FECD60F5AFCC57E79E642
Certificate serial: 1AE4A80265F403EF4E9C1155707917F9AAEA414D
Authority key identifier: 5C:DA:12:02:00:D2:8E:4F:C6:6F:EC:D6:0F:5A:FC:C5:7E:79:E6:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e39342e3233382e302f32342d3234203d3e20313334393633.roa
Signing time: Fri 16 Aug 2024 10:44:18 +0000
ROA not before: Fri 16 Aug 2024 10:39:18 +0000
ROA not after: Fri 15 Aug 2025 10:44:18 +0000
asID: 134963
IP address blocks: 103.94.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 10:11:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:e4:a8:02:65:f4:03:ef:4e:9c:11:55:70:79:17:f9:aa:ea:41:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CDA120200D28E4FC66FECD60F5AFCC57E79E642
Validity
Not Before: Aug 16 10:39:18 2024 GMT
Not After : Aug 15 10:44:18 2025 GMT
Subject: CN=DD82507BF66585B32F2321D5DD53B9943931BB34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cc:83:af:25:20:ef:4e:fa:4f:d3:13:93:e8:
0c:78:d8:47:81:fd:55:5a:65:c2:20:5d:41:fa:06:
23:2d:b4:f4:bc:d8:54:78:20:07:2e:49:ab:6a:06:
44:ab:10:55:fc:5f:7e:2b:d8:f4:56:ed:1a:2e:18:
3d:6e:e7:3e:54:9f:09:ab:a6:6b:17:b0:0c:23:a0:
45:30:6f:e1:ed:26:e3:bd:61:83:f7:e6:5a:41:b3:
ef:fc:13:8b:07:af:1f:bf:20:f1:e5:d9:76:60:b2:
87:ab:9a:29:cc:f7:7a:41:79:dd:83:4f:b3:79:d3:
3e:f8:a8:03:d2:f4:3c:24:17:65:76:27:db:8d:ec:
b4:7b:85:b2:7c:16:65:81:b9:6f:f1:f1:09:4a:3f:
8a:ff:ed:6d:83:3d:f4:e3:94:e7:69:91:5b:32:7d:
89:a3:bd:ee:f8:ed:eb:fe:7f:0e:0e:3c:02:35:92:
f4:00:04:48:90:e9:1d:b1:24:9e:ff:ba:38:2d:d8:
d5:44:41:f7:28:28:7b:92:83:af:55:b7:eb:9f:2b:
9e:40:91:8c:9b:18:8a:84:c0:bc:d2:34:f3:81:3d:
5f:f6:65:a3:06:e3:ca:f1:24:c5:99:91:d1:3f:b5:
e8:34:50:19:1d:ba:85:5e:e3:84:08:79:c1:d6:67:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:82:50:7B:F6:65:85:B3:2F:23:21:D5:DD:53:B9:94:39:31:BB:34
X509v3 Authority Key Identifier:
keyid:5C:DA:12:02:00:D2:8E:4F:C6:6F:EC:D6:0F:5A:FC:C5:7E:79:E6:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e39342e3233382e302f32342d3234203d3e20313334393633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.94.238.0/24
Signature Algorithm: sha256WithRSAEncryption
18:bb:ef:5b:3a:8a:e9:e6:e2:5e:7f:51:4f:d3:28:dc:b1:2f:
e2:e6:c2:6f:46:5b:d8:e6:4e:12:93:ec:00:7d:52:11:d3:a2:
99:8b:b3:2a:7c:c3:bf:a4:8e:90:72:4a:ef:88:78:da:ee:9f:
c3:cd:8a:87:1b:2a:a2:49:de:ae:4e:71:02:68:26:52:19:f4:
fe:d5:2f:f4:30:4b:ea:18:2b:c3:33:29:df:ec:b3:f4:13:52:
79:c2:03:a1:d6:51:15:f6:f1:8b:66:6e:0f:cd:3e:db:04:14:
71:59:08:14:6c:2c:ab:74:c7:80:05:bb:d6:24:d9:4f:74:c5:
fa:37:b8:17:2f:98:e9:66:5d:f9:88:05:39:7b:da:ae:e8:01:
66:04:5d:ab:9f:c1:f0:59:e9:e7:45:de:20:aa:8a:d6:73:c0:
74:fb:e6:12:29:71:a2:e4:a1:e4:55:79:8b:10:58:2e:2b:43:
55:6d:d4:4a:3b:ff:01:0d:6b:b0:2a:0f:bf:a0:9e:c2:39:a0:
26:bb:fe:01:0e:8f:67:67:14:62:74:6d:bb:33:9a:ab:d4:b9:
b9:03:7d:01:b9:78:df:81:1f:f6:27:da:b3:fb:6c:5e:01:ec:
6a:29:30:6d:0a:af:ae:51:16:5d:64:a8:e2:02:08:a7:4f:ef:
07:17:16:36
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUGuSoAmX0A+9OnBFVcHkX+arqQU0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUNEQTEyMDIwMEQyOEU0RkM2NkZFQ0Q2MEY1QUZDQzU3
RTc5RTY0MjAeFw0yNDA4MTYxMDM5MThaFw0yNTA4MTUxMDQ0MThaMDMxMTAvBgNV
BAMTKEREODI1MDdCRjY2NTg1QjMyRjIzMjFENURENTNCOTk0MzkzMUJCMzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgzIOvJSDvTvpP0xOT6Ax42EeB
/VVaZcIgXUH6BiMttPS82FR4IAcuSatqBkSrEFX8X34r2PRW7RouGD1u5z5Unwmr
pmsXsAwjoEUwb+HtJuO9YYP35lpBs+/8E4sHrx+/IPHl2XZgsoerminM93pBed2D
T7N50z74qAPS9DwkF2V2J9uN7LR7hbJ8FmWBuW/x8QlKP4r/7W2DPfTjlOdpkVsy
fYmjve747ev+fw4OPAI1kvQABEiQ6R2xJJ7/ujgt2NVEQfcoKHuSg69Vt+ufK55A
kYybGIqEwLzSNPOBPV/2ZaMG48rxJMWZkdE/teg0UBkduoVe44QIecHWZ/vnAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU3YJQe/ZlhbMvIyHV3VO5lDkxuzQwHwYDVR0j
BBgwFoAUXNoSAgDSjk/Gb+zWD1r8xX555kIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
MmFmODM1Mi1jZDY1LTRkYjctYjBjYi0wNDhiNDVlN2E0YmYvMC81Q0RBMTIwMjAw
RDI4RTRGQzY2RkVDRDYwRjVBRkNDNTdFNzlFNjQyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNUNEQTEyMDIwMEQyOEU0RkM2NkZFQ0Q2MEY1QUZDQzU3RTc5
RTY0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyYWY4MzUyLWNkNjUtNGRiNy1i
MGNiLTA0OGI0NWU3YTRiZi8wLzMxMzAzMzJlMzkzNDJlMzIzMzM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzkzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ17uMA0GCSqG
SIb3DQEBCwUAA4IBAQAYu+9bOorp5uJef1FP0yjcsS/i5sJvRlvY5k4Sk+wAfVIR
06KZi7MqfMO/pI6QckrviHja7p/DzYqHGyqiSd6uTnECaCZSGfT+1S/0MEvqGCvD
Mynf7LP0E1J5wgOh1lEV9vGLZm4PzT7bBBRxWQgUbCyrdMeABbvWJNlPdMX6N7gX
L5jpZl35iAU5e9qu6AFmBF2rn8HwWennRd4gqorWc8B0++YSKXGi5KHkVXmLEFgu
K0NVbdRKO/8BDWuwKg+/oJ7COaAmu/4BDo9nZxRidG27M5qr1Lm5A30BuXjfgR/2
J9qz+2xeAexqKTBtCq+uURZdZKjiAginT+8HFxY2
-----END CERTIFICATE-----
Generated at Fri Nov 8 03:29:13 2024 by rpki-client on console.sobornost.net