Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: NGXHrRL95Yl4mbFLNd75CwyYFn1w2UW5DEYrE3cj2qQ=
Subject key identifier: C1:11:85:40:83:84:AD:C7:47:EE:8A:A4:9A:65:09:5D:2E:55:78:F0
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 7AAC3315A6AAE69287E682AA0443BE778FF543E7
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 05:05:42 +0000
ROA not before: Sun 30 Jun 2024 05:00:42 +0000
ROA not after: Sun 29 Jun 2025 05:05:42 +0000
asID: 138814
IP address blocks: 2404:97c0:103::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Feb 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:ac:33:15:a6:aa:e6:92:87:e6:82:aa:04:43:be:77:8f:f5:43:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 05:00:42 2024 GMT
Not After : Jun 29 05:05:42 2025 GMT
Subject: CN=C11185408384ADC747EE8AA49A65095D2E5578F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cd:d0:a6:ab:d9:a3:d6:e0:54:17:df:0a:01:
7c:53:83:2c:9b:3e:9b:a4:7f:50:14:e5:55:fd:0a:
e5:54:42:1f:74:93:3d:60:19:ac:ca:f0:4c:26:9d:
d5:a6:6b:cd:4d:7d:20:61:e2:73:86:ae:62:c0:08:
b0:b9:35:6d:87:2c:31:4f:2f:6e:24:5c:ce:e8:42:
a1:31:25:57:c7:96:61:56:48:c2:5e:9c:38:75:e6:
89:3b:c9:48:e5:e0:eb:90:64:08:90:7d:53:ea:3e:
74:d2:39:62:c4:4e:8b:70:70:63:9b:56:42:22:d0:
a6:e5:6f:3a:b2:1b:1b:09:1e:c1:61:95:b5:af:9a:
b5:f4:8d:f1:30:5d:a4:fb:19:9f:0e:1c:07:37:13:
9f:f4:b0:e9:27:a3:ba:bb:c5:a8:85:8d:a0:63:25:
c4:8f:bd:aa:7a:d5:85:81:42:65:57:84:1c:4d:47:
dc:1b:c8:c7:83:38:de:7d:90:52:c5:be:4c:20:d5:
c3:b8:78:11:d3:75:b7:e0:37:9e:c8:c8:e3:50:a3:
f8:ca:1c:b2:c8:f0:2c:ed:fb:9e:8e:30:72:5d:aa:
4f:f8:32:a4:4c:2e:26:eb:fe:b6:d7:4f:e0:55:95:
0f:99:2f:f4:12:47:ef:24:35:fa:34:1c:af:5c:2a:
ef:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:11:85:40:83:84:AD:C7:47:EE:8A:A4:9A:65:09:5D:2E:55:78:F0
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:103::/48
Signature Algorithm: sha256WithRSAEncryption
22:41:7f:f2:0f:7a:ef:f1:53:44:8c:57:50:39:ac:a2:02:0e:
a6:35:72:96:5a:dd:46:1d:71:35:93:d7:3d:d5:2b:6c:4a:5e:
0a:5f:b7:bb:77:43:53:44:24:eb:56:9f:62:1f:fa:ed:96:60:
74:07:d1:d5:03:e7:83:bf:59:3f:1c:58:75:b9:d7:11:73:28:
6d:ed:a3:90:dc:c3:8a:4d:68:2a:92:39:76:44:38:81:5f:93:
98:8b:74:63:5e:0b:aa:52:5e:6c:11:87:ca:75:7b:72:26:2a:
fa:ee:b9:42:44:5f:25:99:2a:c7:95:cc:73:c2:8e:92:1c:76:
45:49:9c:02:d9:7e:b1:66:75:c9:6c:10:a4:60:99:a9:37:ac:
06:80:a4:22:d8:56:e6:09:6d:91:ed:53:69:32:52:e0:4c:d2:
b3:b8:57:f8:99:66:6a:97:21:09:51:da:4f:6f:27:ae:b3:35:
6e:2a:33:ac:43:a9:1a:77:59:66:c7:df:ed:29:ee:bc:a2:15:
2f:21:29:ba:e6:f4:63:73:fe:a6:69:2d:68:5d:47:1b:aa:95:
25:fa:db:93:09:5b:cb:4c:d5:40:94:18:bf:3b:09:1b:88:89:
e7:f7:43:c8:5c:8a:5e:c5:57:a5:0c:28:eb:19:dc:b7:d4:e5:
7e:43:bd:66
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUeqwzFaaq5pKH5oKqBEO+d4/1Q+cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNTAwNDJaFw0yNTA2MjkwNTA1NDJaMDMxMTAvBgNV
BAMTKEMxMTE4NTQwODM4NEFEQzc0N0VFOEFBNDlBNjUwOTVEMkU1NTc4RjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDzdCmq9mj1uBUF98KAXxTgyyb
Ppukf1AU5VX9CuVUQh90kz1gGazK8EwmndWma81NfSBh4nOGrmLACLC5NW2HLDFP
L24kXM7oQqExJVfHlmFWSMJenDh15ok7yUjl4OuQZAiQfVPqPnTSOWLETotwcGOb
VkIi0KblbzqyGxsJHsFhlbWvmrX0jfEwXaT7GZ8OHAc3E5/0sOkno7q7xaiFjaBj
JcSPvap61YWBQmVXhBxNR9wbyMeDON59kFLFvkwg1cO4eBHTdbfgN57IyONQo/jK
HLLI8Czt+56OMHJdqk/4MqRMLibr/rbXT+BVlQ+ZL/QSR+8kNfo0HK9cKu9NAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUwRGFQIOErcdH7oqkmmUJXS5VePAwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzMTM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX
wAEDMA0GCSqGSIb3DQEBCwUAA4IBAQAiQX/yD3rv8VNEjFdQOayiAg6mNXKWWt1G
HXE1k9c91StsSl4KX7e7d0NTRCTrVp9iH/rtlmB0B9HVA+eDv1k/HFh1udcRcyht
7aOQ3MOKTWgqkjl2RDiBX5OYi3RjXguqUl5sEYfKdXtyJir67rlCRF8lmSrHlcxz
wo6SHHZFSZwC2X6xZnXJbBCkYJmpN6wGgKQi2FbmCW2R7VNpMlLgTNKzuFf4mWZq
lyEJUdpPbyeuszVuKjOsQ6kad1lmx9/tKe68ohUvISm65vRjc/6maS1oXUcbqpUl
+tuTCVvLTNVAlBi/OwkbiInn90PIXIpexVelDCjrGdy31OV+Q71m
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:57 2025 by rpki-client