Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a3136333a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: Ksy1r4q3kqn+dbysEHILQYoN4l4OdJ0SgSnFrFSJ7IQ=
Subject key identifier: 0B:71:95:E2:23:1D:BF:0B:75:2C:A5:20:33:60:48:83:2B:3C:E3:E3
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 03EF6333CFAFC5B1FE3C721B2AF574523EF3F176
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:48:17 +0000
ROA not before: Sun 30 Jun 2024 04:43:17 +0000
ROA not after: Sun 29 Jun 2025 04:48:17 +0000
asID: 138814
IP address blocks: 2404:97c0:163::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ef:63:33:cf:af:c5:b1:fe:3c:72:1b:2a:f5:74:52:3e:f3:f1:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:43:17 2024 GMT
Not After : Jun 29 04:48:17 2025 GMT
Subject: CN=0B7195E2231DBF0B752CA520336048832B3CE3E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:62:9d:00:c4:51:1d:cb:3a:82:b3:e8:16:04:
b5:04:b5:66:40:fc:24:65:a2:36:56:8f:ff:22:79:
f5:24:f8:8e:f3:bc:41:89:a3:23:e9:24:4e:d7:c4:
e0:3b:d7:7c:15:43:96:d1:b9:c8:43:5c:2b:57:d4:
d7:05:71:e8:87:56:86:b4:36:02:8c:56:dd:4f:43:
91:d9:fc:70:ff:79:aa:3b:3e:b6:77:ec:08:81:3e:
d7:98:9b:48:38:f5:f8:a8:bc:25:1f:94:0a:5a:f3:
65:09:5d:3c:cd:0c:b5:1f:e9:fd:07:05:97:ca:79:
43:8f:86:2a:9b:7e:89:13:4c:ff:59:46:ef:32:67:
05:2d:fa:2e:0d:fb:e7:7a:9b:2b:3d:e6:ad:00:eb:
f0:cf:27:55:f8:26:0f:40:2b:95:3f:cc:17:d3:80:
92:98:23:b0:5e:1f:eb:2b:fa:b9:16:fc:39:17:c6:
3d:9a:c7:ba:fa:9c:45:41:c3:3a:50:6b:f6:ac:55:
79:f8:cf:13:b0:a5:e6:c2:75:3c:2c:f8:e1:65:1d:
2f:6d:0e:e8:50:a4:16:be:fa:cb:8b:4b:0c:f7:f3:
6d:40:10:e0:a4:93:1f:39:e9:a2:9b:e8:40:df:84:
d0:61:5e:94:a4:50:4c:a9:42:e1:89:8f:30:18:e5:
e5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:71:95:E2:23:1D:BF:0B:75:2C:A5:20:33:60:48:83:2B:3C:E3:E3
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:163::/48
Signature Algorithm: sha256WithRSAEncryption
3d:cb:7c:eb:04:92:c2:de:3f:d9:44:9d:1c:91:45:1c:e4:96:
c3:fe:1e:4c:22:9e:82:c8:04:36:eb:96:2a:fb:3c:55:0e:96:
e1:41:20:ef:c4:b8:cb:69:64:ca:81:77:0b:86:57:8a:e9:57:
67:99:a8:8a:89:82:65:31:0b:10:e8:91:d8:78:ad:46:07:72:
74:b6:22:84:dd:4e:bd:dd:43:c8:88:3e:18:b1:19:40:00:c0:
e3:e5:4d:33:04:bd:ae:31:38:b1:31:15:2a:08:37:35:ed:f1:
ce:c2:a2:77:36:25:27:c8:a3:54:3c:cb:a2:07:13:f2:0c:58:
af:0e:bb:36:28:b7:6e:c6:83:4e:d4:fb:51:e2:9d:ec:ab:23:
60:55:ca:54:e9:57:fb:8d:96:a7:49:88:4d:f8:e0:06:ce:35:
33:3b:c6:38:f1:c7:ed:9a:3b:77:fe:23:28:2b:94:74:7a:17:
fd:af:d8:2e:01:5d:0b:51:08:b7:30:83:be:e4:9c:f3:e5:2d:
ac:7a:84:17:e7:c5:c0:64:4f:b9:47:0b:1a:e3:a1:a7:09:6d:
97:c7:c1:8f:06:f2:71:a7:4b:61:94:10:6d:b1:1d:fb:15:99:
d0:30:82:b1:04:60:7c:f8:d3:ff:c9:5d:71:9b:c6:b7:3d:6f:
44:e6:54:ec
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUA+9jM8+vxbH+PHIbKvV0Uj7z8XYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDQzMTdaFw0yNTA2MjkwNDQ4MTdaMDMxMTAvBgNV
BAMTKDBCNzE5NUUyMjMxREJGMEI3NTJDQTUyMDMzNjA0ODgzMkIzQ0UzRTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKYp0AxFEdyzqCs+gWBLUEtWZA
/CRlojZWj/8iefUk+I7zvEGJoyPpJE7XxOA713wVQ5bRuchDXCtX1NcFceiHVoa0
NgKMVt1PQ5HZ/HD/eao7PrZ37AiBPteYm0g49fiovCUflApa82UJXTzNDLUf6f0H
BZfKeUOPhiqbfokTTP9ZRu8yZwUt+i4N++d6mys95q0A6/DPJ1X4Jg9AK5U/zBfT
gJKYI7BeH+sr+rkW/DkXxj2ax7r6nEVBwzpQa/asVXn4zxOwpebCdTws+OFlHS9t
DuhQpBa++suLSwz3821AEOCkkx856aKb6EDfhNBhXpSkUEypQuGJjzAY5eUBAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUC3GV4iMdvwt1LKUgM2BIgys84+MwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzMTM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX
wAFjMA0GCSqGSIb3DQEBCwUAA4IBAQA9y3zrBJLC3j/ZRJ0ckUUc5JbD/h5MIp6C
yAQ265Yq+zxVDpbhQSDvxLjLaWTKgXcLhleK6VdnmaiKiYJlMQsQ6JHYeK1GB3J0
tiKE3U693UPIiD4YsRlAAMDj5U0zBL2uMTixMRUqCDc17fHOwqJ3NiUnyKNUPMui
BxPyDFivDrs2KLduxoNO1PtR4p3sqyNgVcpU6Vf7jZanSYhN+OAGzjUzO8Y48cft
mjt3/iMoK5R0ehf9r9guAV0LUQi3MIO+5Jzz5S2seoQX58XAZE+5Rwsa46GnCW2X
x8GPBvJxp0thlBBtsR37FZnQMIKxBGB8+NP/yV1xm8a3PW9E5lTs
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:12:51 2025 by rpki-client