Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a3236363a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: shDH5zh4oBS89wXHVWtpyUGIst27kk4kHRErM7J1LvQ=
Subject key identifier: E3:17:6A:08:4B:3F:79:F9:08:36:3E:86:D8:D4:A0:90:B7:A3:D7:5E
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 2D6FC59F52234FB23F3F24335179EEE750FEA4FC
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:48:59 +0000
ROA not before: Sun 30 Jun 2024 04:43:59 +0000
ROA not after: Sun 29 Jun 2025 04:48:59 +0000
asID: 138814
IP address blocks: 2404:97c0:266::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:6f:c5:9f:52:23:4f:b2:3f:3f:24:33:51:79:ee:e7:50:fe:a4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:43:59 2024 GMT
Not After : Jun 29 04:48:59 2025 GMT
Subject: CN=E3176A084B3F79F908363E86D8D4A090B7A3D75E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e0:a7:ab:ce:29:c4:29:77:35:00:d0:19:56:
9c:39:12:30:07:3b:a2:28:bc:b2:c5:e5:c2:e0:fa:
31:d0:7d:16:55:98:f3:28:39:fb:ff:a3:16:4b:9d:
4f:3d:4c:5d:d8:51:8d:2a:70:8a:ec:8f:d6:ba:82:
34:01:64:24:31:8c:f0:d4:d6:00:b0:0b:41:ae:f9:
1e:32:cb:8f:5e:0f:ec:a5:07:cf:8c:73:2c:ab:da:
9a:76:6f:ac:1c:10:26:8a:c7:da:f6:99:63:c0:49:
45:3f:b8:3a:53:9b:a4:1d:1e:f8:e1:e6:21:89:4d:
d0:13:af:07:e8:09:d5:1e:1d:1d:5d:0e:c9:94:3d:
d2:bb:8c:37:ac:7e:f3:ce:2c:58:d0:57:3b:b9:5f:
85:1b:e3:81:3d:75:3c:b5:33:7a:2d:e6:db:be:d5:
e5:75:48:11:b1:db:16:dc:8e:2e:f2:c1:e6:fd:08:
d3:f6:82:d6:2f:e8:0a:06:5a:c4:ce:3e:3e:73:0d:
cd:83:d2:51:e4:80:1b:e3:f7:d4:a1:7e:16:e9:5b:
6f:91:9e:c1:39:e5:bd:c2:01:00:7f:3c:b2:1e:8b:
44:bc:88:9e:1b:ac:dd:17:d9:80:ae:9d:13:09:52:
62:59:c1:bf:4b:8e:3c:d1:92:6c:05:82:04:87:7f:
96:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:17:6A:08:4B:3F:79:F9:08:36:3E:86:D8:D4:A0:90:B7:A3:D7:5E
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:266::/48
Signature Algorithm: sha256WithRSAEncryption
0f:b2:6b:a2:0e:14:72:6e:62:21:57:67:ea:97:40:3d:f9:ad:
d5:7a:45:38:e4:6a:39:9d:0c:be:ce:84:24:4d:6d:22:ae:92:
4b:70:a9:6e:3f:bf:96:33:ab:fd:2c:7f:37:ab:e7:9b:77:3f:
58:3e:75:01:07:95:0d:9e:8d:8b:27:3e:90:c6:12:50:83:14:
3a:16:f5:92:ff:d3:8f:8a:83:ce:7f:8c:71:5d:69:4f:17:05:
42:a6:4d:ec:86:7f:fe:80:85:b9:a3:e7:32:27:ca:19:5d:45:
27:e4:8b:c1:7a:ef:42:33:fb:13:a1:16:c5:78:74:8b:3a:5d:
b9:4e:19:19:91:ad:ea:12:be:ba:c9:07:1e:ec:d5:37:01:41:
1b:27:7e:83:e3:0c:c5:dd:6f:f3:33:71:8f:18:21:0e:20:b0:
21:67:7e:5a:db:f1:35:49:1b:51:f2:4f:b0:6b:15:2d:f1:38:
5e:7a:10:58:39:36:27:8a:05:38:2b:53:12:e5:ca:68:f4:b7:
33:8a:79:35:14:f8:5d:83:c7:de:c2:2d:b2:23:d2:f1:b0:b3:
6d:82:fa:24:76:b8:0f:60:e8:b4:52:8a:81:17:c8:52:3b:e5:
dd:d6:24:87:ca:30:8f:ba:81:4f:48:e4:a7:ee:2e:49:12:7b:
4f:fb:a8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:09 2025 by rpki-client