Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a323234383a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: 6jeu1wE7Gj9jzPo5O7lzb2FqO/mNyeWvcHcOBxYjFpI=
Subject key identifier: F8:5B:7A:A0:3E:B1:04:CD:8A:32:17:8F:A3:A6:26:21:46:13:11:DC
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 2CA0F53272C997F70599B82150405641C739A568
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:56:32 +0000
ROA not before: Sun 30 Jun 2024 04:51:32 +0000
ROA not after: Sun 29 Jun 2025 04:56:32 +0000
asID: 138814
IP address blocks: 2404:97c0:2248::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:a0:f5:32:72:c9:97:f7:05:99:b8:21:50:40:56:41:c7:39:a5:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:51:32 2024 GMT
Not After : Jun 29 04:56:32 2025 GMT
Subject: CN=F85B7AA03EB104CD8A32178FA3A62621461311DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:eb:6f:be:8d:24:78:9d:61:19:73:8c:5f:af:
60:bc:77:f4:85:09:25:28:cd:9d:25:8f:f1:c3:bf:
a8:8c:2c:f6:21:23:c9:2e:42:e3:4b:a3:b4:9a:95:
d0:39:68:e9:78:3f:66:cc:51:39:66:1f:b3:b2:1e:
f1:f9:1c:37:76:fe:32:98:05:7f:da:62:f3:67:50:
56:6c:29:bc:65:37:b7:33:95:f7:84:ec:fa:ce:68:
68:77:c1:c1:0b:2b:e8:78:df:19:82:9d:50:02:d8:
46:c2:a8:f9:0e:78:80:db:db:f6:a7:ba:4b:bd:c2:
8f:1a:7d:06:72:8b:69:d3:99:64:b4:f9:e5:e2:75:
8e:ad:ed:dd:64:17:c6:bc:84:66:dd:57:ee:57:80:
69:ca:94:95:16:b3:10:0c:3b:ae:b9:0a:b9:70:99:
6a:b1:cf:bd:43:ee:ee:21:19:bc:5a:a0:7d:ef:a0:
16:fc:a5:99:82:a8:d2:6b:8e:fd:ea:ab:85:d5:15:
51:66:e0:48:7e:26:c1:f9:a9:ff:f3:4b:34:40:d2:
5f:6b:cc:53:b6:53:f5:d1:5e:eb:22:c8:5a:db:e1:
98:e6:7a:17:9f:ad:d2:78:71:a8:e7:1c:b5:de:21:
a3:88:7f:21:8c:67:60:dd:40:1e:04:83:b1:83:48:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5B:7A:A0:3E:B1:04:CD:8A:32:17:8F:A3:A6:26:21:46:13:11:DC
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2248::/48
Signature Algorithm: sha256WithRSAEncryption
a4:e9:22:3b:a8:2e:a9:91:a3:de:b4:32:2c:37:df:c1:52:42:
e5:a9:31:13:23:a5:6d:7f:8e:79:7b:5a:52:3a:56:bf:38:aa:
c9:5b:b2:8a:b5:b4:84:fe:2b:04:f7:8d:db:7e:25:98:73:2b:
d1:56:1d:e0:67:74:53:89:a0:34:0f:6f:65:92:91:b4:04:2a:
04:20:7e:56:de:cd:7c:46:3a:f2:5c:c6:a4:43:5a:3e:f5:73:
b3:97:13:fb:3a:ce:6e:f9:09:61:b6:e2:45:8a:49:eb:ea:52:
f6:7b:6a:a9:0e:49:32:1c:ed:28:f1:26:5b:0d:22:e0:8c:54:
af:16:bb:cc:d4:27:dc:70:94:88:97:51:5e:72:e5:16:cd:f7:
5a:eb:61:b0:c7:a1:2f:89:aa:37:76:f3:69:0d:cf:b2:31:d0:
9e:fb:d6:de:b4:cc:e5:83:4c:51:7e:4e:df:7c:9d:47:4d:37:
4d:40:ab:f7:64:85:60:af:45:72:1f:87:18:f8:3d:e6:cb:4a:
f1:bb:a7:87:47:a6:34:cc:0a:2c:57:ad:e4:e9:08:d8:dc:1a:
e6:ce:a6:ab:b1:56:f9:1c:8a:fe:ee:a0:9d:c9:10:41:37:e3:
0f:0a:31:4f:67:04:20:23:5d:4c:6c:9a:2b:91:17:4e:0f:2e:
4d:e9:f0:7b
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIULKD1MnLJl/cFmbghUEBWQcc5pWgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDUxMzJaFw0yNTA2MjkwNDU2MzJaMDMxMTAvBgNV
BAMTKEY4NUI3QUEwM0VCMTA0Q0Q4QTMyMTc4RkEzQTYyNjIxNDYxMzExREMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU62++jSR4nWEZc4xfr2C8d/SF
CSUozZ0lj/HDv6iMLPYhI8kuQuNLo7SaldA5aOl4P2bMUTlmH7OyHvH5HDd2/jKY
BX/aYvNnUFZsKbxlN7czlfeE7PrOaGh3wcELK+h43xmCnVAC2EbCqPkOeIDb2/an
uku9wo8afQZyi2nTmWS0+eXidY6t7d1kF8a8hGbdV+5XgGnKlJUWsxAMO665Crlw
mWqxz71D7u4hGbxaoH3voBb8pZmCqNJrjv3qq4XVFVFm4Eh+JsH5qf/zSzRA0l9r
zFO2U/XRXusiyFrb4ZjmehefrdJ4cajnHLXeIaOIfyGMZ2DdQB4Eg7GDSBO1AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU+Ft6oD6xBM2KMhePo6YmIUYTEdwwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzgz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
BJfAIkgwDQYJKoZIhvcNAQELBQADggEBAKTpIjuoLqmRo960Miw338FSQuWpMRMj
pW1/jnl7WlI6Vr84qslbsoq1tIT+KwT3jdt+JZhzK9FWHeBndFOJoDQPb2WSkbQE
KgQgflbezXxGOvJcxqRDWj71c7OXE/s6zm75CWG24kWKSevqUvZ7aqkOSTIc7Sjx
JlsNIuCMVK8Wu8zUJ9xwlIiXUV5y5RbN91rrYbDHoS+Jqjd282kNz7Ix0J771t60
zOWDTFF+Tt98nUdNN01Aq/dkhWCvRXIfhxj4PebLSvG7p4dHpjTMCixXreTpCNjc
GubOpquxVvkciv7uoJ3JEEE34w8KMU9nBCAjXUxsmiuRF04PLk3p8Hs=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:24 2025 by rpki-client