Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a3136323a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: AqA8I4s8S8DsPmR9UoCtLg7RP27Cf965UCXuIFS3s8U=
Subject key identifier: 37:B7:62:7E:5B:24:02:0C:78:31:58:76:86:4B:FC:22:3F:3A:FF:FB
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 74B17FBAAE585BFFB989581EA3192988CFA7466B
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:47:57 +0000
ROA not before: Sun 30 Jun 2024 04:42:57 +0000
ROA not after: Sun 29 Jun 2025 04:47:57 +0000
asID: 138814
IP address blocks: 2404:97c0:162::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Feb 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:b1:7f:ba:ae:58:5b:ff:b9:89:58:1e:a3:19:29:88:cf:a7:46:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:42:57 2024 GMT
Not After : Jun 29 04:47:57 2025 GMT
Subject: CN=37B7627E5B24020C78315876864BFC223F3AFFFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b3:d0:4e:cd:3c:db:49:b2:ae:f7:06:c2:cb:
2a:ff:db:42:20:4e:74:51:98:08:be:a3:ef:8d:de:
c4:a6:74:a1:94:5d:2d:7c:61:ec:e7:97:9d:47:f0:
db:99:81:ac:1b:28:c1:02:ec:94:e2:ac:c9:4b:5c:
de:b4:0a:ba:06:98:70:6f:ca:3f:e1:75:16:50:f2:
54:9f:80:c3:5a:a4:7b:7e:3f:b1:5a:24:54:da:8f:
9d:ca:bf:64:2a:97:60:94:1c:45:fc:c6:fb:ef:c5:
a4:cb:be:1b:16:22:0f:0a:c4:8b:5b:45:01:3d:1e:
2d:1f:e0:c2:66:c1:bf:ff:3e:cb:9e:a5:96:ff:a4:
be:1f:86:33:3f:87:7b:50:45:7d:c0:4f:df:c4:a8:
5b:56:1f:fc:b3:15:0e:df:50:c3:e5:a2:b9:c6:4d:
66:3a:59:06:45:1e:c6:a8:91:c7:92:6d:21:e3:7c:
a4:6e:30:ff:59:42:08:a9:e0:6f:95:c1:1f:08:3b:
3a:ff:6a:8d:54:e3:7e:58:af:57:4f:fb:b0:81:ac:
66:64:4f:c1:2a:1b:c7:40:f8:2f:83:66:6e:d7:d3:
d9:48:e5:f7:9a:53:d7:83:34:14:25:32:2c:df:36:
bc:c0:4f:b6:dd:96:7a:62:a2:ad:99:ea:26:26:c5:
ca:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B7:62:7E:5B:24:02:0C:78:31:58:76:86:4B:FC:22:3F:3A:FF:FB
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:162::/48
Signature Algorithm: sha256WithRSAEncryption
b3:0d:1e:e7:59:e9:a7:2b:d6:bc:b5:37:42:1b:b6:dd:c4:38:
77:b5:76:06:84:dc:02:e8:96:98:89:22:0a:e5:11:4a:d0:94:
1f:45:3f:76:da:97:a1:ec:29:1c:d9:c7:98:21:f2:65:1b:4f:
4f:86:df:3b:15:0f:69:fe:03:51:75:41:99:53:e2:51:f0:23:
0d:0b:2e:ba:5b:ca:1d:0d:b8:d5:22:be:64:d8:1b:bf:65:e4:
64:6a:a4:95:7f:6c:6a:a4:c3:75:31:81:5d:d5:63:1b:8a:57:
79:77:ed:fa:bf:b8:8f:21:e6:fd:86:7c:f1:ec:53:a1:68:3e:
15:a7:9a:af:bf:4e:e1:43:fc:67:b3:75:08:82:e4:29:e5:6e:
40:bd:7e:c4:1a:85:37:fe:9e:31:6f:6a:ca:ef:07:d9:f2:7c:
2f:1b:e3:71:29:1e:5d:19:56:90:d2:d3:25:02:9d:96:15:92:
ed:e3:34:1f:ce:43:06:63:14:20:69:5b:18:e1:7d:87:ad:d4:
05:78:27:c2:37:c0:90:e7:3f:bb:ce:a4:ef:7b:fe:28:10:bd:
cd:67:b3:7c:8f:a0:98:04:73:50:50:8e:9d:5e:e0:cb:82:12:
41:78:21:5f:c6:b5:6e:aa:c2:50:f6:7b:c3:22:21:4c:cd:7a:
1a:4f:46:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:03 2025 by rpki-client