Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a333235333a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: DCg6VuElq9ky+7xsLYhf/0mtC6OBdFJess18bGvfQQU=
Subject key identifier: 65:68:01:D0:27:68:67:BF:4C:E9:33:BD:97:1B:59:E8:AB:56:A9:E0
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 794BEB71D120E922C40ABD594268D6E54A215AEB
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:58:33 +0000
ROA not before: Sun 30 Jun 2024 04:53:33 +0000
ROA not after: Sun 29 Jun 2025 04:58:33 +0000
asID: 138814
IP address blocks: 2404:97c0:3253::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 02:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:4b:eb:71:d1:20:e9:22:c4:0a:bd:59:42:68:d6:e5:4a:21:5a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:53:33 2024 GMT
Not After : Jun 29 04:58:33 2025 GMT
Subject: CN=656801D0276867BF4CE933BD971B59E8AB56A9E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7e:f9:14:66:52:67:b3:e1:0f:d4:a7:af:57:
ab:e5:15:51:86:61:3b:14:96:db:7d:21:11:4b:03:
36:7e:34:1d:c9:15:6a:ad:81:06:50:16:95:dd:9a:
ad:ba:4a:70:99:46:dd:ec:0a:59:a9:48:f7:aa:15:
d8:ca:40:14:de:0d:c0:b9:b1:3a:b6:12:7b:c3:be:
5c:26:c8:43:c0:ec:6d:6c:33:2c:45:33:65:ec:89:
23:c0:b4:9c:95:f6:8e:30:df:3a:d6:d9:77:ea:36:
7a:7a:f4:2e:0a:57:8d:1e:9d:24:81:60:bb:fc:36:
40:0d:02:fd:d3:d7:1a:cc:7d:ca:dd:14:13:27:2c:
ed:42:ba:67:01:a3:d9:69:ac:0c:c7:d8:5c:55:e1:
b5:b2:93:0a:4e:3e:ce:f4:bf:79:f5:a5:b6:d3:3e:
87:3c:db:f3:73:3d:ba:f5:8b:dc:04:3a:61:02:47:
ed:10:af:d0:d5:3f:a4:f4:1c:d1:b2:b6:fa:bd:5a:
b6:80:5c:7e:2b:0a:03:81:70:fc:1f:ea:b8:01:04:
01:98:91:0b:ef:72:42:d6:08:49:2e:75:d7:40:6e:
b6:9f:fa:a7:2c:b6:6a:5e:b7:e9:0f:29:22:a5:90:
72:b6:9d:ad:3e:38:9c:05:9c:3b:a4:18:7e:6c:f9:
a7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:68:01:D0:27:68:67:BF:4C:E9:33:BD:97:1B:59:E8:AB:56:A9:E0
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:3253::/48
Signature Algorithm: sha256WithRSAEncryption
31:ef:d4:d6:77:f4:9e:cd:b2:34:b2:f1:fb:4e:44:a3:69:b9:
9c:2b:aa:df:fe:af:0d:d7:18:2d:16:e7:4d:45:28:c4:51:57:
33:c4:b0:85:9d:3e:4d:77:28:97:19:ef:dd:9a:50:b3:6c:b9:
d8:a1:d2:67:73:98:82:ea:d5:f3:a7:a8:69:dc:f0:cd:62:9e:
9c:65:6e:98:66:f9:c3:95:dc:ed:00:99:a1:c0:44:40:78:37:
21:91:d6:23:f0:28:ac:83:07:5b:70:cd:12:a9:41:76:2c:b4:
c1:02:49:e5:bc:76:47:c8:b4:4c:68:30:a2:2d:0b:97:e6:00:
a4:57:1f:a2:56:54:d1:93:33:92:69:b0:84:d4:6f:bd:92:27:
77:3c:8f:6d:a9:da:67:b7:30:93:91:4d:c6:4f:3f:df:03:b9:
5b:e2:b5:08:d4:b6:31:fe:22:f7:99:12:31:4f:3e:d6:b8:59:
9b:87:da:37:68:a1:16:25:a0:42:18:b8:58:af:c1:10:2c:79:
c2:9f:4c:9a:e6:ef:64:da:f5:1b:ac:b4:6d:92:7c:a2:93:ac:
5a:b6:2e:bd:bf:0f:0a:83:52:da:bf:01:26:42:d3:5a:ab:d3:
c7:f6:01:08:50:d8:26:10:34:0f:7f:d3:65:b1:3e:eb:d4:9a:
9e:13:7c:69
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUeUvrcdEg6SLECr1ZQmjW5UohWuswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDUzMzNaFw0yNTA2MjkwNDU4MzNaMDMxMTAvBgNV
BAMTKDY1NjgwMUQwMjc2ODY3QkY0Q0U5MzNCRDk3MUI1OUU4QUI1NkE5RTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBfvkUZlJns+EP1KevV6vlFVGG
YTsUltt9IRFLAzZ+NB3JFWqtgQZQFpXdmq26SnCZRt3sClmpSPeqFdjKQBTeDcC5
sTq2EnvDvlwmyEPA7G1sMyxFM2XsiSPAtJyV9o4w3zrW2XfqNnp69C4KV40enSSB
YLv8NkANAv3T1xrMfcrdFBMnLO1CumcBo9lprAzH2FxV4bWykwpOPs70v3n1pbbT
Poc82/NzPbr1i9wEOmECR+0Qr9DVP6T0HNGytvq9WraAXH4rCgOBcPwf6rgBBAGY
kQvvckLWCEkudddAbraf+qcstmpet+kPKSKlkHK2na0+OJwFnDukGH5s+acVAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUZWgB0CdoZ79M6TO9lxtZ6KtWqeAwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMjM1MzMz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
BJfAMlMwDQYJKoZIhvcNAQELBQADggEBADHv1NZ39J7NsjSy8ftORKNpuZwrqt/+
rw3XGC0W501FKMRRVzPEsIWdPk13KJcZ792aULNsudih0mdzmILq1fOnqGnc8M1i
npxlbphm+cOV3O0AmaHAREB4NyGR1iPwKKyDB1twzRKpQXYstMECSeW8dkfItExo
MKItC5fmAKRXH6JWVNGTM5JpsITUb72SJ3c8j22p2me3MJORTcZPP98DuVvitQjU
tjH+IveZEjFPPta4WZuH2jdooRYloEIYuFivwRAsecKfTJrm72Ta9RustG2SfKKT
rFq2Lr2/DwqDUtq/ASZC01qr08f2AQhQ2CYQNA9/02WxPuvUmp4TfGk=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:45 2025 by rpki-client