Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313338383a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a313338383a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: DDMYEc9gw/pL218aXEWTKX0TFqZKpgeNbiR0BiYlWlY=
Subject key identifier: 20:4C:39:09:95:6C:CE:80:4E:08:AA:21:52:2A:FF:C1:B2:C8:51:75
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 2A64627ED687E489315B113712AA6BB88BFA0B01
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313338383a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:48:40 +0000
ROA not before: Sun 30 Jun 2024 04:43:40 +0000
ROA not after: Sun 29 Jun 2025 04:48:40 +0000
asID: 138814
IP address blocks: 2404:97c0:1388::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:64:62:7e:d6:87:e4:89:31:5b:11:37:12:aa:6b:b8:8b:fa:0b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:43:40 2024 GMT
Not After : Jun 29 04:48:40 2025 GMT
Subject: CN=204C3909956CCE804E08AA21522AFFC1B2C85175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8a:32:e9:2c:b7:da:1b:af:a6:f1:d3:ea:7a:
3d:46:57:00:ba:d1:b2:8f:2b:65:66:e2:4d:25:09:
99:9e:b1:07:2f:18:44:92:ac:78:a6:27:15:38:54:
4b:15:fb:ca:09:e4:95:7b:e4:6e:89:97:ff:e8:85:
3b:2b:f1:79:1c:14:55:05:f0:c4:bb:8e:0e:8d:c1:
2c:9a:6c:e6:1e:f7:17:88:1c:3b:99:a8:2c:5e:5f:
85:8d:8d:18:12:8e:7a:0b:84:04:bc:9d:f4:74:c4:
00:c4:67:c7:0c:cb:a9:f9:66:5c:96:1e:e9:98:82:
1c:65:7e:9d:50:99:bf:71:af:5d:a8:37:a8:12:10:
22:4e:c6:5d:8b:15:72:84:a3:b8:24:fc:65:d5:cb:
6b:70:62:9c:7a:c1:1d:bc:cb:38:02:d0:fe:f6:f0:
30:2b:17:fe:99:2e:9d:c5:18:aa:1c:ec:a1:d4:3e:
5a:d5:e6:8d:c7:17:92:1e:79:31:56:1d:f6:a5:d4:
cc:f6:e2:30:10:0d:cd:c5:9b:b5:50:a6:e6:cb:8c:
99:a1:70:3c:7d:ec:b2:6f:31:20:c0:a7:0c:80:34:
59:af:5a:72:90:4f:dc:44:d4:ae:76:d0:0e:e1:a9:
90:9d:30:ed:1a:c3:f2:39:c9:bb:ab:e3:48:d6:41:
3e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4C:39:09:95:6C:CE:80:4E:08:AA:21:52:2A:FF:C1:B2:C8:51:75
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313338383a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:1388::/48
Signature Algorithm: sha256WithRSAEncryption
27:5d:77:b0:8c:5c:e1:32:0c:5b:8d:16:a3:ba:28:8a:61:ea:
35:cc:a3:f7:02:45:32:a9:c4:09:2f:c0:f8:aa:8f:b8:00:82:
21:e7:a1:c1:d9:b0:59:f8:7f:02:c4:72:64:b4:55:4f:72:54:
0f:d4:6c:fa:08:cb:b9:a4:0f:d3:c9:9b:10:42:a3:60:d4:4a:
2d:88:56:37:13:5e:98:1d:c8:8d:3a:4f:ba:24:ce:f3:a3:fc:
9e:17:e3:41:d0:6e:a9:72:29:0c:27:5b:30:83:66:6e:9e:2c:
9d:b2:2d:af:1b:df:56:61:8c:26:20:98:9b:72:2a:7e:79:88:
49:99:c0:85:b5:55:6b:5f:aa:bb:19:fb:b7:66:62:56:fb:dd:
0b:b1:8d:e3:33:a9:23:95:7f:c1:1e:e7:45:b0:3c:38:51:98:
3c:f9:b7:a9:f2:01:72:e9:84:45:34:63:9d:49:5f:f0:a6:df:
74:73:10:77:84:59:91:a2:cc:e2:33:dc:cc:c8:98:ed:91:33:
82:4f:56:16:10:fb:ad:11:6c:52:5d:2e:a9:46:7f:9a:65:5e:
6a:a9:de:03:71:03:31:1f:fc:cb:4c:21:2d:17:a8:8a:9c:16:
7e:4c:4b:ba:67:2a:2d:f5:9c:16:30:be:7b:ba:08:34:0d:c9:
dc:71:59:96
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUKmRiftaH5IkxWxE3EqpruIv6CwEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDQzNDBaFw0yNTA2MjkwNDQ4NDBaMDMxMTAvBgNV
BAMTKDIwNEMzOTA5OTU2Q0NFODA0RTA4QUEyMTUyMkFGRkMxQjJDODUxNzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ijLpLLfaG6+m8dPqej1GVwC6
0bKPK2Vm4k0lCZmesQcvGESSrHimJxU4VEsV+8oJ5JV75G6Jl//ohTsr8XkcFFUF
8MS7jg6NwSyabOYe9xeIHDuZqCxeX4WNjRgSjnoLhAS8nfR0xADEZ8cMy6n5ZlyW
HumYghxlfp1Qmb9xr12oN6gSECJOxl2LFXKEo7gk/GXVy2twYpx6wR28yzgC0P72
8DArF/6ZLp3FGKoc7KHUPlrV5o3HF5IeeTFWHfal1Mz24jAQDc3Fm7VQpubLjJmh
cDx97LJvMSDApwyANFmvWnKQT9xE1K520A7hqZCdMO0aw/I5ybur40jWQT7fAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUIEw5CZVszoBOCKohUir/wbLIUXUwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMzM4Mzgz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
BJfAE4gwDQYJKoZIhvcNAQELBQADggEBACddd7CMXOEyDFuNFqO6KIph6jXMo/cC
RTKpxAkvwPiqj7gAgiHnocHZsFn4fwLEcmS0VU9yVA/UbPoIy7mkD9PJmxBCo2DU
Si2IVjcTXpgdyI06T7okzvOj/J4X40HQbqlyKQwnWzCDZm6eLJ2yLa8b31ZhjCYg
mJtyKn55iEmZwIW1VWtfqrsZ+7dmYlb73QuxjeMzqSOVf8Ee50WwPDhRmDz5t6ny
AXLphEU0Y51JX/Cm33RzEHeEWZGizOIz3MzImO2RM4JPVhYQ+60RbFJdLqlGf5pl
Xmqp3gNxAzEf/MtMIS0XqIqcFn5MS7pnKi31nBYwvnu6CDQNydxxWZY=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:51 2025 by rpki-client