Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313338383134.roa
File: 323430343a393763303a33333a3a2f34382d3438203d3e20313338383134.roa (raw, json)
Hash identifier: KBm/3a/3H4hP60TqhWUhy7xw0WDDE2dFMWP98r7URLM=
Subject key identifier: 3C:BA:A5:89:0A:23:8F:6A:06:45:4C:71:5F:46:D9:FD:07:2A:0B:E9
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 6D23C02871FAEF78350F1AB6EC5210A49BF367EC
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313338383134.roa
Signing time: Sun 30 Jun 2024 04:46:30 +0000
ROA not before: Sun 30 Jun 2024 04:41:30 +0000
ROA not after: Sun 29 Jun 2025 04:46:30 +0000
asID: 138814
IP address blocks: 2404:97c0:33::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Feb 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:23:c0:28:71:fa:ef:78:35:0f:1a:b6:ec:52:10:a4:9b:f3:67:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 30 04:41:30 2024 GMT
Not After : Jun 29 04:46:30 2025 GMT
Subject: CN=3CBAA5890A238F6A06454C715F46D9FD072A0BE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cf:81:f9:4e:2f:5d:0e:dd:a9:7e:79:8b:ea:
da:f2:99:08:60:76:35:48:6d:d7:3c:1c:99:58:cc:
5b:7e:67:2b:aa:8f:09:91:83:05:02:79:6b:8c:30:
73:3e:fb:a0:d0:6e:0b:45:de:2b:02:26:f5:1b:fd:
4a:c7:17:81:b8:87:d0:f2:78:21:59:fd:50:f4:5b:
17:1c:b8:d4:3d:3b:7a:4a:ba:e7:5c:9f:1b:80:d7:
6a:c4:08:cb:fb:8a:64:c4:a9:29:a3:b2:dc:b2:35:
5c:44:0a:fa:14:3b:6e:67:07:7c:aa:41:21:a5:4b:
6e:2a:4d:e1:07:20:86:bb:fa:ce:fb:47:00:93:a4:
f5:8a:06:2f:bc:0c:ae:ad:fb:6f:db:51:12:e2:39:
fd:5c:87:c9:1f:38:a9:f6:cf:1b:76:8c:95:45:19:
7a:d3:7e:32:bd:2b:a8:fa:7e:f7:b3:ae:58:29:df:
92:5a:14:3f:b5:ab:21:94:2b:34:e4:3e:a0:16:b4:
10:56:2d:57:05:ea:54:f0:2b:8d:ab:5f:e4:6d:64:
38:a9:04:47:dd:c9:34:1e:af:38:4c:ef:ea:9f:4d:
af:49:34:b7:7d:8c:25:e2:cd:53:d9:05:e6:f5:8c:
9e:29:5d:70:ca:78:f8:46:98:b5:75:9b:db:72:1c:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BA:A5:89:0A:23:8F:6A:06:45:4C:71:5F:46:D9:FD:07:2A:0B:E9
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:33::/48
Signature Algorithm: sha256WithRSAEncryption
39:50:c3:16:5b:8b:70:2d:32:ea:7e:69:83:85:6f:f1:26:46:
15:ad:af:80:6a:41:30:53:27:18:b0:8d:a6:57:71:ab:59:ba:
2c:a8:18:c1:e4:b8:e5:a4:f2:c5:11:5c:a0:2a:a3:9c:8c:34:
4b:1a:98:51:54:6e:14:9d:85:d2:06:3b:d5:a3:38:27:8b:99:
14:93:6c:c3:ae:85:34:49:22:9b:1f:3f:99:36:93:99:d0:37:
39:86:bf:c8:06:40:22:dc:45:82:17:3f:7b:84:20:eb:e6:7d:
78:55:b6:1f:b3:5b:2f:04:c7:15:8a:bb:2c:b2:3c:af:70:62:
95:c4:f4:38:cb:40:fb:0e:cb:72:84:fa:33:18:2b:74:6c:d1:
a0:52:ce:62:50:72:46:57:84:78:52:b0:38:61:33:3e:0a:74:
a2:86:d6:57:95:be:9f:2f:71:14:8f:d9:d8:34:85:ac:ce:97:
2a:05:29:fe:ce:60:d7:bc:bc:54:e5:23:0d:f4:e8:45:07:db:
dd:67:d3:19:72:01:c9:3b:3c:b0:50:1b:f3:6c:cd:77:d5:6c:
a4:0c:3e:da:86:ec:8e:09:f6:27:d2:28:3a:ac:4a:32:df:d4:
8e:2b:47:db:68:4a:2f:73:41:7e:0b:6e:fd:04:af:23:08:b0:
b4:20:40:29
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUbSPAKHH673g1Dxq27FIQpJvzZ+wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MzAwNDQxMzBaFw0yNTA2MjkwNDQ2MzBaMDMxMTAvBgNV
BAMTKDNDQkFBNTg5MEEyMzhGNkEwNjQ1NEM3MTVGNDZEOUZEMDcyQTBCRTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDez4H5Ti9dDt2pfnmL6trymQhg
djVIbdc8HJlYzFt+ZyuqjwmRgwUCeWuMMHM++6DQbgtF3isCJvUb/UrHF4G4h9Dy
eCFZ/VD0WxccuNQ9O3pKuudcnxuA12rECMv7imTEqSmjstyyNVxECvoUO25nB3yq
QSGlS24qTeEHIIa7+s77RwCTpPWKBi+8DK6t+2/bURLiOf1ch8kfOKn2zxt2jJVF
GXrTfjK9K6j6fvezrlgp35JaFD+1qyGUKzTkPqAWtBBWLVcF6lTwK42rX+RtZDip
BEfdyTQerzhM7+qfTa9JNLd9jCXizVPZBeb1jJ4pXXDKePhGmLV1m9tyHLGJAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUPLqliQojj2oGRUxxX0bZ/QcqC+kwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMzNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzODM4MzEzNC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEl8AA
MzANBgkqhkiG9w0BAQsFAAOCAQEAOVDDFluLcC0y6n5pg4Vv8SZGFa2vgGpBMFMn
GLCNpldxq1m6LKgYweS45aTyxRFcoCqjnIw0SxqYUVRuFJ2F0gY71aM4J4uZFJNs
w66FNEkimx8/mTaTmdA3OYa/yAZAItxFghc/e4Qg6+Z9eFW2H7NbLwTHFYq7LLI8
r3BilcT0OMtA+w7LcoT6MxgrdGzRoFLOYlByRleEeFKwOGEzPgp0oobWV5W+ny9x
FI/Z2DSFrM6XKgUp/s5g17y8VOUjDfToRQfb3WfTGXIByTs8sFAb82zNd9VspAw+
2obsjgn2J9IoOqxKMt/UjitH22hKL3NBfgtu/QSvIwiwtCBAKQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:14 2025 by rpki-client