Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32322d3232203d3e203535373031.roa
File: 3230322e37332e32342e302f32322d3232203d3e203535373031.roa (raw, json)
Hash identifier: e5cWiPH0EfcZ50aFwpfiyUsAzr32TtNvwH+zpI+PN2Q=
Subject key identifier: CA:C3:6B:9A:21:A2:61:D6:F0:67:38:C9:1A:05:C9:00:62:55:A4:0B
Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A
Certificate serial: 3B59EDB82DFAC52A17E5BAF0C22492C127B7629D
Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32322d3232203d3e203535373031.roa
Signing time: Wed 16 Apr 2025 13:15:35 +0000
ROA not before: Wed 16 Apr 2025 13:10:35 +0000
ROA not after: Wed 15 Apr 2026 13:15:35 +0000
asID: 55701
IP address blocks: 202.73.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 07 May 2025 05:50:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:59:ed:b8:2d:fa:c5:2a:17:e5:ba:f0:c2:24:92:c1:27:b7:62:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A
Validity
Not Before: Apr 16 13:10:35 2025 GMT
Not After : Apr 15 13:15:35 2026 GMT
Subject: CN=CAC36B9A21A261D6F06738C91A05C9006255A40B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:52:af:12:b5:c4:61:2e:bb:fb:14:97:41:
72:67:73:cc:5d:15:e1:49:c7:64:3d:eb:9c:7f:be:
7f:81:97:8b:df:5c:f7:ce:69:b7:42:df:b5:27:1c:
85:40:12:29:64:7c:fa:b0:d9:52:f7:b8:05:14:22:
e3:07:f0:d9:f4:d8:29:e1:55:68:2f:30:b4:aa:a3:
1e:22:c8:e2:aa:d3:72:af:90:68:12:0f:33:61:3d:
05:d6:69:20:d6:f8:64:57:d3:8e:57:e1:18:35:3a:
f2:88:c6:d2:b3:20:c2:ed:7c:6e:99:d2:90:4d:e5:
5f:88:0f:8a:50:e2:c1:74:d0:1c:cf:34:86:00:01:
de:2c:17:3f:7a:f9:d9:d1:6d:9f:46:ae:4b:45:fa:
1f:4e:0f:10:2f:ee:c9:9d:c4:a7:b5:9b:c1:ca:b7:
2d:5d:34:fa:a8:6f:19:d9:07:09:eb:64:76:f7:27:
0e:b0:de:13:37:ac:8a:0d:90:8c:3a:40:a2:d7:1d:
be:88:e3:2f:2c:2d:a7:43:c6:89:94:60:b3:7a:83:
75:75:02:85:ca:aa:a1:1d:ee:86:31:2f:8e:b2:15:
21:f8:95:c1:5f:95:b3:11:20:c3:a3:d2:a9:1a:c2:
9d:52:d9:ee:a2:5a:19:53:ee:2d:0f:cd:f2:ce:34:
03:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C3:6B:9A:21:A2:61:D6:F0:67:38:C9:1A:05:C9:00:62:55:A4:0B
X509v3 Authority Key Identifier:
keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32322d3232203d3e203535373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.73.24.0/22
Signature Algorithm: sha256WithRSAEncryption
d1:fa:95:62:91:ee:e7:77:af:e0:12:12:49:c0:cf:7e:fc:28:
1a:30:be:92:69:dc:14:56:d6:16:0e:4e:06:9a:4d:bd:af:e0:
74:39:ec:6b:c5:d0:73:6c:20:97:c5:73:92:3a:e9:d0:f8:0a:
67:f8:79:44:74:4c:63:3d:1a:4f:8d:66:1c:e2:0c:b5:b1:3a:
32:e7:98:2b:aa:85:c3:b8:5f:d2:42:7b:f2:3b:6b:3b:aa:49:
83:a9:26:3a:aa:8d:c7:d2:90:00:e0:62:48:dc:e4:b5:27:89:
cb:03:aa:75:e9:5a:f2:df:b1:d5:8c:d5:b5:b0:9f:bf:3b:e4:
9b:1e:e6:34:01:fa:08:9a:54:7a:1b:29:2f:65:71:f3:25:bc:
6b:e4:4a:25:14:30:38:ed:48:38:86:b2:09:75:a0:50:b2:3c:
ab:99:f6:f7:40:65:8d:be:97:3c:25:cd:32:02:1c:7e:5f:7d:
6e:08:4a:90:2d:b3:e4:07:44:a7:ae:f1:2a:fe:cd:7b:db:0d:
6f:e8:d1:f1:29:09:ed:f4:b1:3b:d9:72:4f:6b:e9:8f:ee:69:
cc:17:13:4c:db:7c:26:df:05:fc:0c:88:5d:e4:75:55:b5:05:
24:0d:d5:f9:27:7f:aa:2b:53:03:4a:11:af:bc:b7:6c:8f:60:
07:99:61:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 18:58:01 2025 by rpki-client