Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a323234393a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: 46mKgqClDXNlw0nxcU7GkfW4YgO5QM7n1ToxfRdt2xo=
Subject key identifier: 38:78:43:4C:38:26:49:58:F2:49:23:17:10:A3:C0:D8:85:0D:35:32
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 2E1FB8F219783647BDABC68BE47779C4D15E7070
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:56:49 +0000
ROA not before: Sun 30 Jun 2024 04:51:49 +0000
ROA not after: Sun 29 Jun 2025 04:56:49 +0000
asID: 138814
IP address blocks: 2404:97c0:2249::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:1f:b8:f2:19:78:36:47:bd:ab:c6:8b:e4:77:79:c4:d1:5e:70:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:51:49 2024 GMT
Not After : Jun 29 04:56:49 2025 GMT
Subject: CN=3878434C38264958F249231710A3C0D8850D3532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f9:ee:38:d7:e4:33:7a:8b:16:ab:04:1e:9b:
6f:7f:58:3f:71:6a:b1:9a:72:6a:b5:25:17:89:cf:
0c:f1:76:25:0a:0b:53:a1:fa:90:b2:21:4e:7a:19:
22:0f:ab:02:47:31:33:3f:5c:1e:36:42:c4:22:58:
31:6b:69:ba:57:35:c1:70:ef:13:8c:bc:65:0d:78:
e8:4b:4c:2b:d6:a3:78:e7:8b:b1:e5:58:d0:6e:3d:
c6:82:e8:6e:a5:bb:36:fa:b4:98:bf:9b:fa:69:45:
9f:80:02:9f:48:51:52:dc:99:42:fa:5f:e8:98:c0:
75:02:dd:fd:94:94:14:a8:30:27:ac:19:19:df:ec:
b6:d3:af:ad:91:4c:10:32:95:7f:74:ea:34:48:1b:
ca:90:96:e2:35:eb:a0:78:5b:b9:ef:41:f5:64:eb:
71:bb:91:bd:f5:4b:77:03:da:e8:e3:4d:6c:ad:57:
76:79:53:42:91:5c:16:a9:65:42:bf:0b:4b:aa:f8:
90:67:cb:dc:8d:9c:8d:f7:de:c4:1a:f2:03:28:a8:
19:eb:70:e4:4a:77:93:82:87:b7:6d:a1:77:43:af:
08:b0:54:5b:4a:9f:ee:20:db:b3:0d:1f:f9:bf:ff:
b9:cb:51:eb:e4:21:5e:17:10:84:c8:60:1c:03:2e:
aa:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:78:43:4C:38:26:49:58:F2:49:23:17:10:A3:C0:D8:85:0D:35:32
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2249::/48
Signature Algorithm: sha256WithRSAEncryption
72:00:c7:30:95:49:7b:4a:03:4a:11:88:8a:b5:ef:08:b7:34:
f6:72:ad:d2:a4:3f:13:81:c3:e6:a5:4c:53:2e:22:36:5a:ae:
34:d5:05:1b:0f:85:44:4b:81:e4:1e:af:9e:97:6e:f5:50:72:
87:ef:bc:77:98:49:2b:ab:f9:cf:d2:a7:98:35:e9:d1:0d:bf:
25:10:43:29:96:d6:fa:eb:3a:5a:32:b0:a1:52:2a:63:b4:9a:
d0:4e:16:9a:b2:20:be:f1:8d:44:f2:a9:4b:e5:d6:b5:25:cd:
c4:54:11:d8:93:cc:7d:a4:94:5c:21:38:d6:0b:dc:df:21:d5:
13:97:9b:70:9a:d2:dd:e1:58:a5:01:a7:dd:9c:76:1a:bd:d0:
82:58:3d:9f:5a:21:2d:f6:f1:8d:11:c0:13:d7:d9:28:f3:ea:
7a:84:2b:b0:c2:4f:de:fe:7e:70:36:b4:6f:80:de:01:43:b5:
74:25:83:6a:d6:09:c2:79:bd:eb:c4:de:a4:6c:78:bc:16:0c:
37:5d:e5:e1:7a:5a:e7:23:33:49:ab:a8:20:ec:03:1d:b6:f7:
9c:5f:63:9e:8c:08:b5:03:0d:17:f2:2a:84:d2:73:5d:95:87:
d5:82:55:69:c2:94:b0:7d:8c:e9:77:0a:f5:c0:c7:9c:56:24:
54:f4:93:cc
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIULh+48hl4Nke9q8aL5Hd5xNFecHAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDUxNDlaFw0yNTA2MjkwNDU2NDlaMDMxMTAvBgNV
BAMTKDM4Nzg0MzRDMzgyNjQ5NThGMjQ5MjMxNzEwQTNDMEQ4ODUwRDM1MzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf+e441+QzeosWqwQem29/WD9x
arGacmq1JReJzwzxdiUKC1Oh+pCyIU56GSIPqwJHMTM/XB42QsQiWDFrabpXNcFw
7xOMvGUNeOhLTCvWo3jni7HlWNBuPcaC6G6luzb6tJi/m/ppRZ+AAp9IUVLcmUL6
X+iYwHUC3f2UlBSoMCesGRnf7LbTr62RTBAylX906jRIG8qQluI166B4W7nvQfVk
63G7kb31S3cD2ujjTWytV3Z5U0KRXBapZUK/C0uq+JBny9yNnI333sQa8gMoqBnr
cORKd5OCh7dtoXdDrwiwVFtKn+4g27MNH/m//7nLUevkIV4XEITIYBwDLqojAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUOHhDTDgmSVjySSMXEKPA2IUNNTIwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzkz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
BJfAIkkwDQYJKoZIhvcNAQELBQADggEBAHIAxzCVSXtKA0oRiIq17wi3NPZyrdKk
PxOBw+alTFMuIjZarjTVBRsPhURLgeQer56XbvVQcofvvHeYSSur+c/Sp5g16dEN
vyUQQymW1vrrOloysKFSKmO0mtBOFpqyIL7xjUTyqUvl1rUlzcRUEdiTzH2klFwh
ONYL3N8h1ROXm3Ca0t3hWKUBp92cdhq90IJYPZ9aIS328Y0RwBPX2Sjz6nqEK7DC
T97+fnA2tG+A3gFDtXQlg2rWCcJ5vevE3qRseLwWDDdd5eF6WucjM0mrqCDsAx22
95xfY56MCLUDDRfyKoTSc12Vh9WCVWnClLB9jOl3CvXAx5xWJFT0k8w=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:12:52 2025 by rpki-client