Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a323136373a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: SZ6lbmXK75a5jlusqgGaLKckcDGBolXJvFNSx2fqEEE=
Subject key identifier: 5F:8A:2E:9E:BD:6E:A9:A2:83:1A:30:D2:D5:22:FB:41:97:21:D6:03
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 4E37EBD9E04422A86051EDE0A0875D1EF5998207
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:50:10 +0000
ROA not before: Sun 30 Jun 2024 04:45:10 +0000
ROA not after: Sun 29 Jun 2025 04:50:10 +0000
asID: 138814
IP address blocks: 2404:97c0:2167::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 18 Apr 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:37:eb:d9:e0:44:22:a8:60:51:ed:e0:a0:87:5d:1e:f5:99:82:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:45:10 2024 GMT
Not After : Jun 29 04:50:10 2025 GMT
Subject: CN=5F8A2E9EBD6EA9A2831A30D2D522FB419721D603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b5:d2:58:57:6b:80:ba:0a:a3:d0:ee:4a:74:
ad:94:55:69:83:f9:c8:d4:6a:44:f1:19:24:1d:cb:
5b:db:18:21:65:c9:eb:41:dc:ee:c5:27:5b:bf:33:
94:30:92:17:bd:5e:d7:6d:04:a7:f3:6e:92:3c:52:
27:60:09:c2:f7:8f:ab:05:60:0b:94:80:54:d6:73:
7b:39:ec:df:a7:ef:e7:86:4c:da:2b:77:38:1c:3a:
e7:1e:39:21:3f:b5:27:6b:04:e7:37:93:59:3f:e7:
58:07:c7:e6:b9:bb:aa:29:31:ee:81:ed:a3:57:64:
9f:09:30:05:89:22:64:2d:61:6d:7c:a4:ec:a8:5a:
ce:65:1c:70:3e:16:b0:e3:fd:db:68:19:4e:dd:68:
4c:b7:dd:25:45:14:92:c5:aa:fe:54:ff:dd:3f:3c:
13:61:04:44:21:19:af:5c:9e:40:29:f9:07:3a:0a:
8a:4d:f0:a8:b4:a1:80:76:4b:4c:cf:ef:35:9b:bc:
2f:ea:ab:4d:e7:df:20:ad:56:4d:bc:30:8b:6e:5e:
40:4f:6f:e8:44:f7:51:03:28:69:b8:5b:91:87:c5:
10:ef:86:b4:2c:2d:ac:62:ae:c3:9a:57:c7:fa:67:
d8:ff:d3:4f:01:d7:f8:66:31:2c:3d:b5:cb:a8:51:
cd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8A:2E:9E:BD:6E:A9:A2:83:1A:30:D2:D5:22:FB:41:97:21:D6:03
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2167::/48
Signature Algorithm: sha256WithRSAEncryption
9f:a9:1c:91:d3:77:6d:9c:ed:a6:e9:fc:6e:07:30:7c:d6:2c:
5e:c5:83:7e:86:29:29:8e:aa:18:4d:e4:96:9b:ac:f5:34:ac:
15:8d:d8:06:33:e9:b4:28:09:bb:37:3e:72:25:14:f9:a7:c6:
dc:1f:23:c5:0a:28:c3:fa:fb:3d:64:60:e5:c3:42:93:90:ee:
98:aa:b1:bb:95:7f:f4:a6:27:38:d7:72:ed:4a:9f:81:1b:5d:
e4:c9:70:ab:75:c1:f2:81:a9:f1:4b:58:01:82:55:97:27:58:
d6:4e:05:6a:2f:e7:97:ec:b6:6b:ba:0c:fe:59:31:e8:ef:c6:
9a:b9:a3:8c:cc:30:89:85:b0:35:6d:0e:b5:3c:c7:18:a3:f4:
db:43:b4:09:6f:b4:2c:8a:8c:fa:cf:08:e0:6e:3c:81:73:92:
8e:07:b7:c4:cb:50:48:ec:e6:db:db:47:9e:91:a0:fc:dc:80:
f4:20:c9:5b:9b:a0:10:e3:49:c8:8a:3b:90:78:59:58:a1:46:
35:07:de:50:9b:48:1d:1b:46:71:9c:49:5d:db:49:e7:aa:52:
d8:05:0e:4a:90:de:02:fe:af:e8:55:62:84:b3:70:cd:ef:a6:
19:15:8a:18:15:45:df:81:d3:78:09:9a:ae:02:df:6c:90:f9:
86:85:3b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:30:12 2025 by rpki-client