Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a323232363a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: V/XzgUTfaFTdceFnr6zu57+uZ0I4odgEDNKQDgDdekY=
Subject key identifier: 0A:11:97:11:3B:17:94:9D:EE:69:07:F1:D5:F9:87:B0:92:E7:31:2F
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 25C6F0FCEEECC4F140EC5FDB9538B7EA3B5A94A0
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:53:05 +0000
ROA not before: Sun 30 Jun 2024 04:48:05 +0000
ROA not after: Sun 29 Jun 2025 04:53:05 +0000
asID: 138814
IP address blocks: 2404:97c0:2226::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:c6:f0:fc:ee:ec:c4:f1:40:ec:5f:db:95:38:b7:ea:3b:5a:94:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:48:05 2024 GMT
Not After : Jun 29 04:53:05 2025 GMT
Subject: CN=0A1197113B17949DEE6907F1D5F987B092E7312F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:be:ee:53:77:36:92:40:76:73:66:77:a8:
1f:fc:20:8d:95:0d:f1:71:f9:b9:c6:c3:6e:ff:02:
ce:1a:7e:7f:d4:77:ff:4b:d9:a6:b6:e4:54:76:6d:
20:1b:4a:e6:fb:8c:af:4e:75:04:c0:62:b0:73:57:
92:34:ec:24:29:73:f7:32:e9:67:e9:20:09:86:b6:
62:5c:f5:6d:34:03:0a:9f:e5:7b:b2:e8:aa:c6:da:
00:c4:35:b5:72:51:c2:64:c0:59:2c:26:c4:36:8e:
18:70:e9:70:f4:d4:f7:05:c5:41:d4:49:5e:fd:14:
8e:d9:f5:4d:e2:33:fc:71:4b:37:9a:3f:d6:89:34:
5d:d8:cb:21:38:31:68:47:24:53:1e:fb:82:5c:75:
33:e7:18:80:b0:cb:d2:74:24:ec:21:ef:c0:50:9b:
d2:e8:82:3b:d9:ed:21:ee:cb:4c:a9:2a:29:0d:aa:
34:31:60:f2:3d:04:f0:d8:32:13:89:da:5a:79:13:
88:20:e2:d1:7f:d7:18:69:52:d1:e7:a8:38:46:6d:
96:d9:f3:d2:81:4a:f4:53:0b:91:08:e1:97:9a:48:
3e:a5:b0:f0:da:f2:ea:5e:66:40:a1:a1:66:3f:4f:
bd:a7:95:bb:4d:31:0b:00:d4:63:e7:fc:80:48:ba:
2e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:11:97:11:3B:17:94:9D:EE:69:07:F1:D5:F9:87:B0:92:E7:31:2F
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2226::/48
Signature Algorithm: sha256WithRSAEncryption
d0:41:32:e6:9a:87:d7:1b:c7:16:d7:73:a4:ad:01:2c:d1:bf:
9a:28:8d:df:97:98:a4:73:38:f5:96:67:ba:13:fd:34:31:16:
a4:5c:33:8e:8e:d2:22:03:6a:8a:d3:ed:68:a0:0b:b9:7f:7c:
ba:a0:1f:e9:53:45:9d:f0:db:b0:25:a1:3f:4f:d4:a3:c8:42:
2c:e4:6b:17:09:a4:ce:79:8f:ff:a3:5c:28:0b:8b:5c:34:38:
40:e1:a5:8e:da:b6:9e:d5:44:76:3e:84:6b:a5:38:92:54:b0:
19:c7:b4:70:b3:c6:4e:d3:09:4c:52:e6:c2:c9:22:58:cd:81:
73:82:f4:03:f6:1a:20:f9:7e:c7:b0:d8:9b:d2:cd:fd:ee:f6:
4b:ed:e0:2c:b7:cf:24:e4:17:b4:45:34:c2:27:04:b0:30:00:
75:be:8a:d4:ba:d1:e5:e4:16:39:bf:ab:40:68:6f:ed:fe:24:
6d:1c:db:43:f1:32:86:0f:43:76:45:f2:af:56:23:d3:ad:2a:
9d:d2:48:15:af:e2:9b:44:42:24:21:1c:38:9c:ad:d0:bb:12:
dc:a3:14:82:85:9b:08:e5:a5:28:ec:31:74:14:1c:57:44:ae:
92:89:81:e6:d0:68:aa:96:8c:5c:83:68:4c:c5:9e:84:e5:67:
cb:9a:3c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:30 2025 by rpki-client