Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa
File: 323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa (raw, json)
Hash identifier: jVFksewc7Q9ZDpd9tjROeSdSXtG/IcnDICwMzESagtY=
Subject key identifier: CE:CA:B2:95:50:1C:8B:EB:14:C9:8A:82:F2:DE:86:24:46:40:52:DB
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 1C06E8B352BF9C69C80320A18C8422D798291781
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa
Signing time: Thu 27 Jun 2024 15:00:02 +0000
ROA not before: Thu 27 Jun 2024 14:55:02 +0000
ROA not after: Thu 26 Jun 2025 15:00:02 +0000
asID: 138814
IP address blocks: 2404:97c0:1000::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:06:e8:b3:52:bf:9c:69:c8:03:20:a1:8c:84:22:d7:98:29:17:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 27 14:55:02 2024 GMT
Not After : Jun 26 15:00:02 2025 GMT
Subject: CN=CECAB295501C8BEB14C98A82F2DE8624464052DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c3:51:fd:0e:8f:61:41:0f:3c:57:9e:82:6c:
ec:51:16:4a:9d:2a:86:2f:6e:12:5b:b8:ff:e7:eb:
ae:65:50:bb:9c:ea:24:bc:37:29:6b:17:1a:51:23:
2b:a6:07:60:e4:e2:32:ec:60:bd:03:4d:3f:5f:56:
86:40:67:c8:69:5d:1b:08:ec:b0:96:0b:14:f9:0e:
a1:32:7d:42:2d:5b:b4:78:82:8d:77:9d:e7:2e:b4:
5d:48:38:41:1a:f3:30:7d:06:d2:fb:f1:2a:a2:5e:
73:86:31:f2:55:a9:9a:86:d7:ee:00:4d:f5:3b:6d:
6e:2a:59:3e:39:a6:03:9c:33:bf:bc:3d:99:10:ae:
c2:5b:19:8d:54:aa:6f:7b:c2:d9:6c:1e:2a:11:44:
45:be:af:1c:3f:e3:89:97:20:0d:90:13:b8:22:4b:
d8:d4:36:c8:c6:fd:9f:11:cf:82:70:fb:f6:6a:fb:
e9:a4:8c:c1:89:bd:7c:71:02:9b:54:47:c3:5b:36:
e9:99:84:9a:48:0b:7b:1a:bc:6a:f0:ce:29:fc:ea:
7e:30:77:4a:8e:1c:01:1f:08:90:db:e4:22:cf:a8:
88:d9:90:dd:41:89:5e:31:2b:f1:5e:79:c5:fd:10:
ca:dd:10:85:cf:49:e1:a3:a6:d7:4c:c1:2b:1b:ac:
1a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:CA:B2:95:50:1C:8B:EB:14:C9:8A:82:F2:DE:86:24:46:40:52:DB
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
38:cc:b7:76:c0:32:82:96:e4:5c:71:1a:68:a4:02:20:d7:05:
b7:11:55:25:ed:f5:db:cd:cb:36:22:40:a6:c0:ee:13:01:1b:
f8:84:77:e3:b2:38:05:c0:f1:3d:60:3d:a9:ee:8d:e1:9b:f8:
9d:a1:4a:6c:5b:94:ef:6f:b4:a4:5c:2d:bd:f9:d6:8b:51:87:
bd:f8:2f:1c:5c:ef:f1:5f:7d:6c:a2:1e:23:7d:66:36:82:da:
a7:05:3a:31:14:0c:81:bc:e0:2c:ec:e8:7a:3b:95:89:8e:ef:
c4:21:2a:98:50:38:0e:f0:b9:4f:f6:e1:5d:59:b3:dd:d9:2b:
35:8a:7e:d9:c4:99:a2:a3:cb:f4:13:a5:68:44:22:e2:01:39:
43:7b:d4:76:67:09:92:c4:fa:9e:a8:28:49:43:03:d7:4a:8e:
84:78:13:3f:38:96:dc:b6:35:4c:51:fb:96:7b:32:e1:67:10:
5e:50:e0:0a:b8:4d:b3:b7:4c:57:25:42:e0:a7:f4:b7:a0:2e:
ee:86:67:f9:6d:5d:f1:b4:61:44:1e:d6:13:66:8b:09:99:ea:
5e:d3:bc:e3:27:3b:6a:92:70:33:53:53:ec:e0:c1:14:1a:3e:
95:b1:41:76:81:71:37:03:15:b7:cf:b4:5c:f1:f4:d5:cc:31:
1c:be:1d:59
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUHAbos1K/nGnIAyChjIQi15gpF4EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MjcxNDU1MDJaFw0yNTA2MjYxNTAwMDJaMDMxMTAvBgNV
BAMTKENFQ0FCMjk1NTAxQzhCRUIxNEM5OEE4MkYyREU4NjI0NDY0MDUyREIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRw1H9Do9hQQ88V56CbOxRFkqd
KoYvbhJbuP/n665lULuc6iS8NylrFxpRIyumB2Dk4jLsYL0DTT9fVoZAZ8hpXRsI
7LCWCxT5DqEyfUItW7R4go13necutF1IOEEa8zB9BtL78SqiXnOGMfJVqZqG1+4A
TfU7bW4qWT45pgOcM7+8PZkQrsJbGY1Uqm97wtlsHioRREW+rxw/44mXIA2QE7gi
S9jUNsjG/Z8Rz4Jw+/Zq++mkjMGJvXxxAptUR8NbNumZhJpIC3savGrwzin86n4w
d0qOHAEfCJDb5CLPqIjZkN1BiV4xK/FeecX9EMrdEIXPSeGjptdMwSsbrBqdAgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQUzsqylVAci+sUyYqC8t6GJEZAUtswHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMwMzAz
YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk
BJfAEDANBgkqhkiG9w0BAQsFAAOCAQEAOMy3dsAygpbkXHEaaKQCINcFtxFVJe31
283LNiJApsDuEwEb+IR347I4BcDxPWA9qe6N4Zv4naFKbFuU72+0pFwtvfnWi1GH
vfgvHFzv8V99bKIeI31mNoLapwU6MRQMgbzgLOzoejuViY7vxCEqmFA4DvC5T/bh
XVmz3dkrNYp+2cSZoqPL9BOlaEQi4gE5Q3vUdmcJksT6nqgoSUMD10qOhHgTPziW
3LY1TFH7lnsy4WcQXlDgCrhNs7dMVyVC4Kf0t6Au7oZn+W1d8bRhRB7WE2aLCZnq
XtO84yc7apJwM1NT7ODBFBo+lbFBdoFxNwMVt8+0XPH01cwxHL4dWQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:03 2025 by rpki-client