Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3131322e302f32302d3234203d3e20323633363932.roa
File: 3130312e3132382e3131322e302f32302d3234203d3e20323633363932.roa (raw, json)
Hash identifier: MZVytyxDnd+DSBUDu3kq9uTtMt009njyygNHLyPDjfc=
Subject key identifier: 20:8C:5E:E7:FC:75:71:16:10:58:7C:F1:CA:D7:DA:F1:CB:E2:55:A0
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 5744A799FD34D3F4396DCE1823EF011F5FBA82E4
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3131322e302f32302d3234203d3e20323633363932.roa
Signing time: Tue 30 Jul 2024 02:11:18 +0000
ROA not before: Tue 30 Jul 2024 02:06:18 +0000
ROA not after: Tue 29 Jul 2025 02:11:18 +0000
asID: 263692
IP address blocks: 101.128.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Apr 2025 13:42:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:44:a7:99:fd:34:d3:f4:39:6d:ce:18:23:ef:01:1f:5f:ba:82:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 30 02:06:18 2024 GMT
Not After : Jul 29 02:11:18 2025 GMT
Subject: CN=208C5EE7FC75711610587CF1CAD7DAF1CBE255A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7a:17:7f:c8:a6:fd:78:00:1c:82:4b:0e:7d:
f3:15:53:ff:5c:66:d1:e2:75:53:1d:f3:12:bd:cd:
b1:95:45:d2:70:ee:80:69:a9:09:a1:03:8f:a1:33:
66:a3:47:b9:f1:a1:b2:17:4f:37:cc:34:79:c8:a6:
b0:25:23:65:3f:d4:4b:45:ba:e7:69:7e:e5:ca:38:
46:cd:1e:56:24:2b:0b:d2:9d:8b:04:13:1a:66:7f:
7c:d8:7e:7a:20:92:db:48:89:14:6a:3b:ae:5f:88:
d1:23:bf:b3:33:c8:cd:d6:f0:8a:e5:1b:29:11:f3:
d4:3e:45:38:82:88:3b:93:04:11:15:af:61:e8:97:
5f:fe:20:c2:04:c5:bd:1e:0d:3d:26:ca:21:ae:b8:
c8:d1:1d:ba:7c:f2:1c:61:d3:8b:40:ca:04:2b:92:
d9:f8:ab:11:a7:8b:67:f9:96:a8:d6:cd:1a:24:a9:
79:05:3a:77:d5:9b:75:0a:76:03:7e:12:43:79:96:
be:7d:f3:1e:46:fb:6d:a9:35:c9:ae:36:84:91:7e:
64:a0:8e:ac:9e:27:12:db:57:b7:2b:3f:a9:97:07:
b2:49:da:b8:d5:91:fb:41:45:aa:fe:8c:9d:88:63:
37:2e:1f:4c:49:8a:42:44:10:d4:f9:90:2d:fb:fc:
f6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8C:5E:E7:FC:75:71:16:10:58:7C:F1:CA:D7:DA:F1:CB:E2:55:A0
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e3131322e302f32302d3234203d3e20323633363932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
83:24:f3:72:44:8b:f4:2f:aa:ff:39:c7:c6:86:1b:35:69:a3:
06:2a:c2:02:d4:6d:7d:90:a5:55:f2:d3:1e:ba:e3:df:41:b4:
c2:8c:73:a7:a0:39:4d:8d:c5:86:a6:c5:5b:bb:50:5c:cc:21:
2c:1e:02:bc:5c:9c:1e:56:06:f1:e2:8c:61:83:3b:be:55:d7:
26:b0:04:10:f0:a4:15:e4:1f:8f:9f:b5:af:04:fa:af:ea:53:
62:a9:25:a6:23:30:0e:e9:fe:6a:9a:69:3c:15:32:b1:0b:69:
99:54:b4:48:9b:0b:51:09:bd:db:88:32:01:55:67:a7:3e:ed:
86:45:d9:c4:dd:2d:98:9f:15:de:45:29:02:ee:18:32:6e:a7:
79:11:42:0c:b9:b7:62:05:1d:df:a1:36:90:b5:f8:85:e3:b0:
75:17:16:5a:f8:68:fe:0d:3e:03:aa:c9:e4:f6:89:9a:53:33:
dd:3d:10:f0:ec:5b:c5:99:82:a1:57:75:b8:e6:32:35:0e:bc:
22:45:90:76:f0:26:3d:64:23:00:46:9d:79:a7:30:0f:92:b2:
c0:85:5d:98:81:5f:63:41:f5:53:19:a6:a0:46:6c:47:81:1f:
f2:57:0b:be:03:f3:a9:11:3e:a6:f2:51:97:30:fa:c5:f5:05:
9c:ce:40:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:07:09 2025 by rpki-client