Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a323232393a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: Bm7Ikp7/LfgD1qFW12iXTDosGegUeLzB2MasILx0aMk=
Subject key identifier: 56:E9:9E:C4:3E:23:38:E4:DF:D4:29:E0:9C:58:21:8A:5D:58:E5:EB
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 58F1A088FE7B21847917DDF66BAD5DD201C375B6
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:53:42 +0000
ROA not before: Sun 30 Jun 2024 04:48:42 +0000
ROA not after: Sun 29 Jun 2025 04:53:42 +0000
asID: 138814
IP address blocks: 2404:97c0:2229::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:f1:a0:88:fe:7b:21:84:79:17:dd:f6:6b:ad:5d:d2:01:c3:75:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:48:42 2024 GMT
Not After : Jun 29 04:53:42 2025 GMT
Subject: CN=56E99EC43E2338E4DFD429E09C58218A5D58E5EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2c:5c:f1:88:84:a3:dc:a4:dd:47:08:9e:61:
37:b8:c3:d3:6f:3b:73:f7:de:ff:7e:02:7a:41:a0:
ed:f9:6b:34:41:98:5f:8f:9c:05:ae:ae:1b:18:4e:
46:45:53:ab:ac:4f:91:76:86:10:73:ed:2d:e8:f0:
71:7f:80:82:76:47:11:ad:57:ac:fa:f7:c6:8e:99:
8b:ff:f2:4e:28:a9:f2:df:b7:38:f3:f9:9f:76:da:
b7:1f:41:45:87:f9:c9:9b:26:66:10:01:69:6c:eb:
55:44:9b:a1:74:d7:78:b1:19:58:9c:42:6a:98:64:
f1:06:61:d2:a1:c7:32:f7:0e:50:66:d8:ae:56:9c:
8d:85:22:a2:b1:a7:70:de:d4:9b:6a:87:b4:11:3e:
e2:7f:49:e4:d4:fa:ba:fb:d1:78:9d:29:15:77:59:
e4:d8:6c:bd:a1:37:d0:93:20:e2:97:c8:3d:0a:39:
82:b5:9a:d0:fd:b7:c2:b0:2e:0b:e0:93:68:74:83:
ac:1c:aa:74:f5:55:3b:ac:50:45:22:6a:20:df:e9:
1d:95:67:a2:b8:b5:f5:9f:93:cd:51:66:70:4f:a1:
b3:9f:4a:9f:dd:ad:c4:42:9f:7f:76:8f:74:72:44:
7c:c4:6c:e5:e7:e7:a8:6b:82:b2:27:36:49:de:7d:
c7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E9:9E:C4:3E:23:38:E4:DF:D4:29:E0:9C:58:21:8A:5D:58:E5:EB
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2229::/48
Signature Algorithm: sha256WithRSAEncryption
7a:e9:90:10:4b:ff:8d:8c:30:f1:87:b7:4c:51:9b:8c:c2:b2:
cb:0a:af:69:9f:ad:7f:dc:51:f1:76:f8:ff:b0:7b:53:b5:2c:
18:a8:f3:d8:1d:f0:e5:72:76:2e:fd:f7:64:8a:37:e3:7f:23:
67:f3:b5:fb:45:ed:ca:47:cc:b9:75:75:d9:47:65:f8:fb:32:
b3:d7:d4:67:e3:75:f4:64:0a:67:eb:75:c5:48:c2:99:a1:46:
c8:f7:6f:38:f7:b8:27:3f:63:cd:00:0a:18:a1:24:8f:f5:0d:
c7:ce:7f:a3:5c:45:4c:7e:a3:f8:12:6d:f0:a1:db:3c:5c:52:
89:52:14:0c:52:84:f4:d3:7b:cc:c3:09:23:9f:3f:f3:d9:44:
24:1a:c0:0c:87:04:e1:07:f6:d7:73:51:a7:b0:9c:37:cc:9d:
1e:43:cf:21:75:1d:b0:3a:3b:5e:b0:19:e7:e3:19:a4:ce:3a:
68:4e:4d:24:fb:5a:89:30:56:a4:fa:30:3c:7b:ef:16:83:75:
43:fd:e8:92:72:21:ca:b9:46:e2:f2:29:4f:3e:b6:7c:17:1f:
52:aa:af:4e:df:72:15:39:27:c2:aa:73:30:e9:49:67:0b:9f:
14:94:59:c6:b8:df:90:76:e5:4a:ab:0e:3f:94:2c:84:8f:7c:
dc:15:04:67
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUWPGgiP57IYR5F932a61d0gHDdbYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDQ4NDJaFw0yNTA2MjkwNDUzNDJaMDMxMTAvBgNV
BAMTKDU2RTk5RUM0M0UyMzM4RTRERkQ0MjlFMDlDNTgyMThBNUQ1OEU1RUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDALFzxiISj3KTdRwieYTe4w9Nv
O3P33v9+AnpBoO35azRBmF+PnAWurhsYTkZFU6usT5F2hhBz7S3o8HF/gIJ2RxGt
V6z698aOmYv/8k4oqfLftzjz+Z922rcfQUWH+cmbJmYQAWls61VEm6F013ixGVic
QmqYZPEGYdKhxzL3DlBm2K5WnI2FIqKxp3De1Jtqh7QRPuJ/SeTU+rr70XidKRV3
WeTYbL2hN9CTIOKXyD0KOYK1mtD9t8KwLgvgk2h0g6wcqnT1VTusUEUiaiDf6R2V
Z6K4tfWfk81RZnBPobOfSp/drcRCn392j3RyRHzEbOXn56hrgrInNknefcfBAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUVumexD4jOOTf1CngnFghil1Y5eswHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzkz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
BJfAIikwDQYJKoZIhvcNAQELBQADggEBAHrpkBBL/42MMPGHt0xRm4zCsssKr2mf
rX/cUfF2+P+we1O1LBio89gd8OVydi7992SKN+N/I2fztftF7cpHzLl1ddlHZfj7
MrPX1GfjdfRkCmfrdcVIwpmhRsj3bzj3uCc/Y80AChihJI/1DcfOf6NcRUx+o/gS
bfCh2zxcUolSFAxShPTTe8zDCSOfP/PZRCQawAyHBOEH9tdzUaewnDfMnR5DzyF1
HbA6O16wGefjGaTOOmhOTST7WokwVqT6MDx77xaDdUP96JJyIcq5RuLyKU8+tnwX
H1Kqr07fchU5J8KqczDpSWcLnxSUWca435B25UqrDj+ULISPfNwVBGc=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:55 2025 by rpki-client