Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313430343735.roa
File: 3230322e31302e36322e302f32342d3234203d3e20313430343735.roa (raw, json)
Hash identifier: FHq8orl1+UqXVAHWRxYRlIuISyGcZqCbrPkqQy5tJjA=
Subject key identifier: 60:C2:7D:F8:AF:D5:4D:22:99:52:40:69:5E:E8:38:92:5B:82:E6:C5
Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Certificate serial: 5D7F4234952823AF3D80C8DEC0FCA9BFB2541ECD
Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313430343735.roa
Signing time: Mon 21 Apr 2025 06:19:15 +0000
ROA not before: Mon 21 Apr 2025 06:14:15 +0000
ROA not after: Mon 20 Apr 2026 06:19:15 +0000
asID: 140475
IP address blocks: 202.10.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Jun 2025 09:21:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:7f:42:34:95:28:23:af:3d:80:c8:de:c0:fc:a9:bf:b2:54:1e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Validity
Not Before: Apr 21 06:14:15 2025 GMT
Not After : Apr 20 06:19:15 2026 GMT
Subject: CN=60C27DF8AFD54D22995240695EE838925B82E6C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b2:b1:de:78:b9:d9:e8:fe:df:d8:53:9c:cd:
bd:67:1b:40:e8:16:82:b0:04:d9:e9:f6:7e:40:23:
31:08:3a:1e:45:3a:a8:6f:b4:22:0b:59:06:e7:19:
71:c7:a2:6b:0f:b1:ac:e7:5d:ab:30:2a:62:7d:c3:
79:34:ac:10:72:4f:ed:5b:40:1b:63:fc:6d:3b:ef:
fd:57:c4:9e:ca:90:9d:f3:da:44:2d:96:bb:b9:f9:
42:90:39:28:c3:1b:31:e3:16:1c:60:f3:40:6a:32:
d8:b4:e0:de:c8:1d:dc:5c:dc:bf:9b:28:55:4d:b8:
c1:e0:b8:7e:d7:07:be:5d:b5:ea:ec:c0:3b:90:c7:
98:ff:c2:20:49:d8:b1:a2:b4:f6:f1:e2:29:d0:83:
d8:d6:d2:7f:09:95:8d:53:a8:46:54:44:8b:55:ae:
28:fe:c6:7b:2e:3c:d1:3c:2f:27:17:1e:16:a8:1b:
3c:32:08:e8:ed:7e:01:9b:99:ae:6b:bb:cc:4d:ec:
d2:27:89:20:66:05:14:77:dd:4c:51:e1:97:e8:31:
1c:06:2a:c8:11:67:c0:2f:ff:14:bf:04:87:a7:9a:
24:5f:ff:ef:ed:ad:73:70:ba:d1:a3:5d:14:9a:c0:
bf:dd:a6:c2:cb:45:f7:4d:0c:54:15:e8:4e:2d:d1:
bf:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C2:7D:F8:AF:D5:4D:22:99:52:40:69:5E:E8:38:92:5B:82:E6:C5
X509v3 Authority Key Identifier:
keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313430343735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.10.62.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:e7:07:82:80:e3:cf:3d:44:a9:af:94:f8:46:1f:ff:f5:cb:
0b:08:b8:61:f8:92:32:14:a0:c8:73:2f:cc:69:94:ba:56:3e:
9c:33:bf:b1:e1:c8:81:bf:d1:e6:8a:a1:eb:ac:48:71:f7:3f:
ff:10:47:87:c1:e5:79:55:81:46:14:74:8e:2e:45:6d:7d:43:
b7:13:af:9b:c9:ac:85:88:15:f6:af:17:91:d3:98:f9:71:5f:
79:22:ac:1c:a2:dc:53:7b:0d:2c:5e:c9:17:02:16:06:e0:6c:
33:5f:da:fe:ab:5c:b3:58:ca:73:69:72:d4:2f:da:98:13:e3:
1e:5d:21:35:2b:d9:b7:fc:dc:2e:2e:be:7e:50:70:99:da:6a:
37:a9:9e:24:1d:1c:01:b4:ea:47:0f:1e:06:7b:72:25:8f:79:
11:79:8d:bd:92:b1:65:fa:ec:a3:94:91:0e:64:49:88:d5:4b:
15:18:a9:23:41:d9:53:5a:9b:d6:ac:a6:9a:44:87:a2:9c:d0:
82:40:93:c2:84:fd:1e:44:fd:a0:da:e7:b0:f2:d2:aa:04:1d:
26:ae:41:52:fb:b0:a1:dc:c7:1a:03:49:86:93:39:3b:ef:b9:
6a:e8:3d:4e:66:ac:82:f5:a6:38:17:65:da:a3:2e:97:39:0c:
7b:0b:73:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 23:10:31 2025 by rpki-client