Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e203333363137.roa
File: 3230322e3135382e302e302f31372d3234203d3e203333363137.roa (raw, json)
Hash identifier: pIVSr+qcSQq+LTxAsRaVGXCy+R0PgzA3A8vklYKh5M0=
Subject key identifier: 7C:92:50:6D:20:50:6D:01:05:5C:65:3F:AF:43:E4:FB:27:B0:3F:D0
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 0DD29E3EA4BEAB46BB5AF33886315BB5CDA58798
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e203333363137.roa
Signing time: Tue 30 Jul 2024 01:15:20 +0000
ROA not before: Tue 30 Jul 2024 01:10:20 +0000
ROA not after: Tue 29 Jul 2025 01:15:20 +0000
asID: 33617
IP address blocks: 202.158.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 May 2025 12:44:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:d2:9e:3e:a4:be:ab:46:bb:5a:f3:38:86:31:5b:b5:cd:a5:87:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 30 01:10:20 2024 GMT
Not After : Jul 29 01:15:20 2025 GMT
Subject: CN=7C92506D20506D01055C653FAF43E4FB27B03FD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c0:98:99:0d:c4:ba:b1:04:a6:97:4e:17:f9:
19:37:7c:32:38:a0:1d:43:10:91:f7:31:f9:58:7f:
06:68:62:26:89:84:72:b0:89:9b:da:42:67:dd:54:
77:88:8d:e5:0c:9b:24:8c:30:92:8a:cf:7b:4c:72:
cd:6c:05:96:fd:c3:2d:22:a6:68:e2:9f:a2:3c:77:
44:a0:12:64:4c:6d:58:30:06:c3:0d:a1:02:34:06:
45:dc:26:7b:47:df:b5:a0:c8:a0:a6:7d:76:26:7c:
c1:c4:ad:45:74:3a:80:a0:5e:61:4f:b5:f4:24:fa:
40:53:58:68:8f:1d:42:ec:60:e7:1a:19:7f:ea:2d:
ba:05:bd:67:28:43:52:77:89:bb:9f:93:b6:71:fa:
6c:ce:bc:78:ce:49:e8:86:0b:40:1b:3c:fe:95:57:
d2:aa:c4:bb:ce:62:28:61:e6:a7:30:cc:d5:20:36:
55:95:27:6b:7b:16:0b:c3:c8:18:f7:1e:98:a2:0e:
2e:bc:23:09:2c:dd:73:c8:5e:84:f8:cf:b7:a7:5a:
7c:fe:fa:37:da:9f:30:d6:a5:66:00:8c:c6:59:6d:
38:05:87:2f:4b:9e:03:83:c4:0a:67:8f:bb:e1:e5:
3c:80:74:48:23:2e:72:66:44:24:9d:84:87:85:27:
f8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:92:50:6D:20:50:6D:01:05:5C:65:3F:AF:43:E4:FB:27:B0:3F:D0
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e203333363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.158.0.0/17
Signature Algorithm: sha256WithRSAEncryption
40:2b:aa:df:88:96:46:d3:24:5c:e1:c7:76:d7:32:6e:f8:da:
f0:87:4e:93:39:f0:4c:3b:77:4a:cd:04:65:ac:f7:2b:be:f7:
f9:18:82:f6:0f:c2:89:e8:fd:1e:3f:51:55:0d:ab:6f:7f:69:
e3:ed:77:83:75:d6:32:77:69:dd:d2:66:4c:12:2a:3d:bd:d7:
cf:a3:95:44:8f:2d:2d:2e:73:3d:7b:91:5a:99:d8:14:68:0f:
fc:56:dd:36:ec:3b:1d:f7:0b:f9:b6:7a:00:3e:08:fa:d0:9f:
3e:02:0c:f3:25:5c:0e:38:ab:12:d0:49:df:01:8e:78:71:8b:
f8:e6:2d:eb:d8:c1:96:e2:75:d0:5f:d1:f4:46:03:32:a6:15:
27:c0:42:08:45:f3:40:9d:78:07:c2:8f:13:41:25:e2:80:b0:
ce:a1:a2:fc:dd:95:1c:70:5b:e5:3c:d3:37:5e:24:48:b0:a6:
ed:43:01:64:05:da:4f:69:4f:92:56:13:33:8f:37:7e:70:23:
79:07:26:9c:d5:42:79:76:83:6f:75:20:58:fa:2e:02:11:c7:
b9:8d:88:99:8f:43:bf:0e:0d:23:00:bd:46:dd:14:13:b2:4f:
85:16:10:fa:74:d6:12:66:89:82:68:b6:8b:76:f9:5a:b3:2e:
ef:56:37:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 00:42:08 2025 by rpki-client