Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232383a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a323232383a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: WTrggO5GUww5+aYj6udFMoyeD/DZaYaCyp66gzTN11Q=
Subject key identifier: AB:29:25:49:75:E5:0B:5E:98:51:FE:72:83:6F:B1:75:36:B0:31:F5
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 70E15FCE6A2CE377D288EDAC8D9832A72F8092
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232383a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:53:22 +0000
ROA not before: Sun 30 Jun 2024 04:48:22 +0000
ROA not after: Sun 29 Jun 2025 04:53:22 +0000
asID: 138814
IP address blocks: 2404:97c0:2228::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Feb 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:e1:5f:ce:6a:2c:e3:77:d2:88:ed:ac:8d:98:32:a7:2f:80:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:48:22 2024 GMT
Not After : Jun 29 04:53:22 2025 GMT
Subject: CN=AB29254975E50B5E9851FE72836FB17536B031F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a3:e0:c4:f8:b6:a8:9f:b7:d6:4c:a9:34:2e:
4c:a5:31:9a:9c:23:99:7d:ef:d5:71:81:7f:ca:52:
05:c8:0e:56:63:69:4e:98:51:cd:70:64:a6:7e:e8:
b8:b2:b1:11:d5:aa:fb:11:c9:db:e2:99:f1:4c:31:
9e:50:2e:66:af:e1:72:ad:84:24:d4:13:90:1b:11:
db:b0:36:57:78:07:f9:dc:e1:a9:da:47:aa:9d:df:
31:ed:2f:6f:f2:be:82:4f:df:a1:e2:ad:f6:16:ab:
bc:21:f3:42:fe:f0:31:24:b2:33:b0:1a:85:f3:2b:
49:09:25:25:46:be:4f:8d:84:bf:d6:d6:e1:11:21:
5a:5a:b6:47:d2:1d:ac:01:f0:bc:15:9c:c3:96:5f:
89:86:d9:c3:1c:e0:65:07:8b:6a:ac:3d:0a:c4:e1:
b4:68:f5:87:8d:e5:29:9f:73:a0:16:7d:ff:cc:c9:
40:ca:54:32:92:10:3f:d6:41:9e:49:09:f8:b9:fc:
1c:d0:b3:41:5b:ba:51:8f:0b:c6:12:26:31:0e:f7:
19:42:07:e7:ee:20:0a:c7:5d:21:85:a1:79:55:7b:
7e:2a:26:04:ec:ae:52:20:1d:93:ac:de:f8:4f:07:
4c:74:3f:5b:4b:0f:fd:30:65:96:6b:53:9a:14:3d:
74:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:29:25:49:75:E5:0B:5E:98:51:FE:72:83:6F:B1:75:36:B0:31:F5
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232383a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2228::/48
Signature Algorithm: sha256WithRSAEncryption
52:d9:d2:68:61:0d:0a:63:e1:5f:5f:d1:55:a1:25:35:63:89:
3b:6b:3c:26:b5:09:f5:f5:32:6e:a0:11:3f:a5:5c:4f:12:c0:
09:cc:bb:36:7b:76:ba:41:80:62:83:3a:48:7e:1d:aa:23:50:
48:ed:58:d9:b4:ab:0d:8c:3f:fb:ec:ea:65:71:65:03:93:27:
2e:70:9a:0f:3e:60:20:6c:f4:ec:ed:23:4c:74:34:89:13:d2:
07:4d:85:a7:99:a2:39:6c:86:84:63:29:d6:08:42:1f:0c:a7:
a6:5e:a6:e1:c6:e7:7b:58:89:44:3d:93:19:5b:76:46:05:68:
fd:d8:cd:8e:69:9c:ba:f0:6e:54:2e:eb:b4:7f:7a:a5:2f:34:
91:ef:2a:05:d3:bb:ed:5c:9a:ca:35:ee:a0:b7:47:05:bd:6c:
25:10:02:20:dd:54:3b:5d:4d:8e:a9:f9:d9:ee:b9:44:16:20:
e3:0d:11:b8:bb:3f:e0:a0:37:93:14:11:11:69:c2:70:8b:19:
4f:fc:2a:c6:c7:6b:de:30:f9:c9:e0:14:77:40:4d:3d:fd:0c:
c4:1a:49:e8:e7:1a:d7:1e:3a:76:5a:c3:1c:a2:69:20:02:7c:
d5:00:b7:ce:ef:77:32:26:86:7d:4f:b4:78:8f:00:d2:50:e7:
b9:21:fa:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:06 2025 by rpki-client