Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a323134343a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: gZwtHCp95mjSnRCvfq9TeP93O2fQMIRjt1BOXXRo2rw=
Subject key identifier: 34:A3:F6:04:69:E7:28:DE:97:88:81:31:50:0E:AE:35:2A:95:0D:47
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 31451AAB092B11A6963CC1B8A649EE11ACC27AC8
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:49:49 +0000
ROA not before: Sun 30 Jun 2024 04:44:49 +0000
ROA not after: Sun 29 Jun 2025 04:49:49 +0000
asID: 138814
IP address blocks: 2404:97c0:2144::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Feb 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:45:1a:ab:09:2b:11:a6:96:3c:c1:b8:a6:49:ee:11:ac:c2:7a:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:44:49 2024 GMT
Not After : Jun 29 04:49:49 2025 GMT
Subject: CN=34A3F60469E728DE97888131500EAE352A950D47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:61:ea:5f:15:dc:e2:b6:94:38:78:a2:5a:be:
16:d9:e8:20:30:c7:75:43:6e:13:82:04:23:2e:ef:
04:a1:84:6f:5c:b3:43:28:3a:ac:e7:c2:37:32:32:
13:0c:15:13:a0:64:e6:48:45:f4:33:23:7b:fe:0d:
6a:e7:b8:6a:73:c2:0f:6d:4a:2a:ba:4f:14:6c:6c:
21:7a:32:ae:fe:d6:72:20:45:75:23:40:41:9c:3f:
06:75:85:40:16:a5:b2:a9:a7:cc:0a:c4:60:28:de:
f6:e6:d2:e6:13:1b:f5:88:96:4d:5e:90:02:b0:84:
7a:05:51:7e:fd:dc:b9:ea:72:c0:86:79:4b:54:cc:
c6:0f:c1:47:8b:ba:db:ec:60:92:17:90:4b:ae:74:
d6:f8:63:55:20:f6:6f:4f:78:8b:79:23:ad:ca:c9:
81:04:2c:c4:ae:08:d9:43:2f:81:54:93:19:8e:c9:
73:11:6c:45:84:a8:18:a9:cd:f5:74:aa:70:02:10:
1b:58:aa:9b:f2:61:02:b1:71:06:37:8c:05:a1:59:
32:03:97:85:ae:74:9f:73:c6:7b:a3:76:5a:ac:65:
4e:44:f1:ec:59:6e:fd:01:83:c7:66:88:2a:34:3e:
f4:e9:d2:72:ff:bd:35:d6:22:96:37:c8:87:a6:af:
48:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A3:F6:04:69:E7:28:DE:97:88:81:31:50:0E:AE:35:2A:95:0D:47
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2144::/48
Signature Algorithm: sha256WithRSAEncryption
4a:98:8a:eb:69:33:14:f5:96:74:1d:6d:57:c6:97:29:9c:99:
bd:1c:d7:f2:9b:60:f4:89:0f:f3:e2:a0:88:c9:d6:dc:be:81:
20:b9:d4:6b:4e:41:8c:56:5a:74:7c:cc:b7:5e:52:e2:d6:d2:
81:dd:45:4e:64:e1:f2:4f:f2:c7:e7:00:8d:29:3f:c4:2a:67:
90:9a:62:cd:0a:c0:f1:2e:99:d2:e1:2a:74:df:77:2b:00:ef:
8c:22:77:30:73:3a:41:35:b3:50:82:c2:7d:c5:ee:8b:d7:0f:
b7:f2:fb:bb:2c:a9:33:d3:f1:f8:5d:22:10:99:ef:49:da:e6:
0d:d0:82:a8:c9:34:1c:54:5e:af:e2:bb:c5:6c:28:2a:cb:62:
a5:3b:91:cc:0d:a7:44:d9:f0:04:88:9b:d0:dd:eb:97:4a:50:
54:70:ed:d7:7c:72:d6:f5:95:2d:a6:18:3c:0d:f8:69:a0:18:
82:40:8b:dd:42:b6:e9:ec:6d:ed:43:2f:f5:a5:f9:c6:fa:bb:
b3:e4:97:38:12:89:9a:4c:2e:37:1f:c3:21:7d:e8:99:e9:0f:
53:b0:3c:0e:82:55:68:a7:db:1f:11:f7:56:e2:68:f7:d8:fb:
74:5f:4d:1b:ab:fc:d3:fd:c2:c2:fd:91:a8:fc:01:35:00:53:
90:45:d2:91
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUMUUaqwkrEaaWPMG4pknuEazCesgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDQ0NDlaFw0yNTA2MjkwNDQ5NDlaMDMxMTAvBgNV
BAMTKDM0QTNGNjA0NjlFNzI4REU5Nzg4ODEzMTUwMEVBRTM1MkE5NTBENDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKYepfFdzitpQ4eKJavhbZ6CAw
x3VDbhOCBCMu7wShhG9cs0MoOqznwjcyMhMMFROgZOZIRfQzI3v+DWrnuGpzwg9t
Siq6TxRsbCF6Mq7+1nIgRXUjQEGcPwZ1hUAWpbKpp8wKxGAo3vbm0uYTG/WIlk1e
kAKwhHoFUX793LnqcsCGeUtUzMYPwUeLutvsYJIXkEuudNb4Y1Ug9m9PeIt5I63K
yYEELMSuCNlDL4FUkxmOyXMRbEWEqBipzfV0qnACEBtYqpvyYQKxcQY3jAWhWTID
l4WudJ9zxnujdlqsZU5E8exZbv0Bg8dmiCo0PvTp0nL/vTXWIpY3yIemr0jHAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUNKP2BGnnKN6XiIExUA6uNSqVDUcwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM0MzQz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
BJfAIUQwDQYJKoZIhvcNAQELBQADggEBAEqYiutpMxT1lnQdbVfGlymcmb0c1/Kb
YPSJD/PioIjJ1ty+gSC51GtOQYxWWnR8zLdeUuLW0oHdRU5k4fJP8sfnAI0pP8Qq
Z5CaYs0KwPEumdLhKnTfdysA74widzBzOkE1s1CCwn3F7ovXD7fy+7ssqTPT8fhd
IhCZ70na5g3QgqjJNBxUXq/iu8VsKCrLYqU7kcwNp0TZ8ASIm9Dd65dKUFRw7dd8
ctb1lS2mGDwN+GmgGIJAi91Ctunsbe1DL/Wl+cb6u7PklzgSiZpMLjcfwyF96Jnp
D1OwPA6CVWin2x8R91biaPfY+3RfTRur/NP9wsL9kaj8ATUAU5BF0pE=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:23 2025 by rpki-client