Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a31333a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a31333a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: oluoz+V2YUpcboEHypifzDDIJ/0LVkdJ0hygO/McqgA=
Subject key identifier: BD:DD:E7:69:52:64:77:DC:37:7B:13:DA:C6:E5:85:2D:34:B1:72:D5
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 361E188B3E9FAA02FD68B79E7F2987D99F93DCC9
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a31333a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:58:59 +0000
ROA not before: Sun 30 Jun 2024 04:53:59 +0000
ROA not after: Sun 29 Jun 2025 04:58:59 +0000
asID: 138814
IP address blocks: 2404:97c0:13::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:1e:18:8b:3e:9f:aa:02:fd:68:b7:9e:7f:29:87:d9:9f:93:dc:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:53:59 2024 GMT
Not After : Jun 29 04:58:59 2025 GMT
Subject: CN=BDDDE769526477DC377B13DAC6E5852D34B172D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2a:5f:50:4f:50:9c:f0:60:5b:e1:24:f1:27:
77:ff:96:76:e6:3d:cb:5d:12:95:2b:b7:29:c9:3c:
ef:0b:b6:0f:09:b0:4e:2a:1e:91:7c:4a:4f:21:54:
a1:47:12:23:e6:7b:3b:8f:08:af:07:a4:be:e5:9b:
e5:97:2a:77:94:db:e1:61:cd:20:00:54:83:ff:cd:
59:e9:eb:69:f0:ce:31:50:93:94:98:34:ff:a6:6b:
8a:85:33:07:d7:64:c8:80:ab:53:ab:48:f4:0f:e4:
4a:40:28:2f:85:7c:9b:89:9d:43:c3:39:d7:1d:76:
fa:c7:8d:1e:10:db:45:2d:67:d7:7c:10:25:30:32:
4a:c2:bb:c4:c7:dc:c9:25:4e:cd:f9:15:03:af:e1:
73:c0:4a:87:6b:ba:10:25:df:95:5a:38:a0:e9:da:
d0:3c:50:4c:e2:92:c0:4f:84:11:d0:93:47:2c:98:
8e:f3:a5:84:dc:87:c6:c1:32:06:8e:45:05:03:2d:
fc:d4:bc:8a:04:21:ec:85:5f:9d:00:11:b0:43:d3:
21:cd:85:07:ce:4c:3d:fa:6a:ef:8a:ac:23:33:d3:
05:40:04:1b:65:ee:b9:da:d8:c1:7d:ae:1c:10:c4:
9a:4b:f4:f1:3d:d8:8b:32:dc:12:46:c2:c6:af:50:
26:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:DD:E7:69:52:64:77:DC:37:7B:13:DA:C6:E5:85:2D:34:B1:72:D5
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a31333a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:13::/48
Signature Algorithm: sha256WithRSAEncryption
b5:e5:06:e2:a2:13:c6:06:37:67:34:16:a7:1a:71:3a:12:c9:
ea:4a:9a:bc:1d:cf:f2:b1:56:bf:24:5c:ba:48:c0:75:cc:d2:
e7:9c:70:65:b1:8d:ad:a5:51:23:5e:0b:6f:0b:70:b7:52:99:
86:b3:5b:1b:85:01:21:4c:04:8b:5b:64:67:f6:2e:79:58:2d:
3b:0e:a7:7c:b4:dd:d2:2b:eb:38:47:10:60:4e:ae:23:f2:f9:
c6:6b:a2:b7:7b:76:2a:0b:11:2f:18:46:5a:fb:84:2e:1f:f1:
86:d8:0b:e2:12:37:c5:cc:97:26:34:46:35:d2:1d:51:95:5c:
c2:cf:97:b5:49:93:89:bc:12:d8:9e:82:21:b9:0d:1a:16:0e:
ec:ab:c2:83:5b:7e:bd:cf:61:e7:83:41:7e:e6:1a:0e:e0:85:
fe:7a:2a:1e:14:4e:4f:c8:58:10:19:a5:1f:ab:dd:2a:3c:c1:
aa:fd:41:30:b5:0c:e6:68:55:d1:7c:d3:a9:26:31:3b:96:10:
74:8f:8f:a9:b5:d7:46:e4:e8:01:07:68:bc:0e:bc:f5:da:62:
db:38:cc:69:8c:91:33:0e:46:6a:06:5e:84:a7:39:80:13:ce:
17:ba:f7:0c:3a:ea:23:7a:5c:39:29:60:a0:56:16:32:7c:80:
a1:2a:3f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:22 2025 by rpki-client