Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa
File: 323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa (raw, json)
Hash identifier: pngMedBDaYYglOZ2lFNEwbLvaClVHsrdgrignzTJeAc=
Subject key identifier: 58:2D:00:40:EA:B0:8B:F7:8D:14:B6:03:D3:06:4C:AE:C8:4D:0A:5E
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 0B4C797360CE67A49FB65729277E03E160F2D2DC
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa
Signing time: Thu 27 Jun 2024 15:00:02 +0000
ROA not before: Thu 27 Jun 2024 14:55:02 +0000
ROA not after: Thu 26 Jun 2025 15:00:02 +0000
asID: 138814
IP address blocks: 2404:97c0:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Sun 16 Feb 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:4c:79:73:60:ce:67:a4:9f:b6:57:29:27:7e:03:e1:60:f2:d2:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jun 27 14:55:02 2024 GMT
Not After : Jun 26 15:00:02 2025 GMT
Subject: CN=582D0040EAB08BF78D14B603D3064CAEC84D0A5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e9:6c:9b:01:e2:d8:fb:af:86:a0:5a:c9:d6:
72:d0:87:f4:86:74:56:50:8d:f1:de:7d:c5:8b:6e:
d5:01:ad:cf:b5:b9:96:83:d3:c7:30:84:7d:ad:ef:
a5:7d:8d:31:6e:42:dc:6e:06:e8:17:2e:58:91:11:
0e:c3:9b:08:c0:f7:9b:80:4e:06:47:2b:de:7a:44:
2f:51:33:70:e5:59:1c:e5:6a:56:f7:3d:1b:9b:b3:
bc:9e:0d:8d:6d:79:d2:56:ea:9a:51:9c:76:6a:4c:
5c:80:25:ee:d4:32:c7:ea:dc:ff:fc:a9:e4:cd:66:
c0:61:1c:8d:63:6c:75:1a:db:93:65:71:92:e4:aa:
41:38:98:33:65:33:c1:4f:b6:49:6e:54:44:60:cd:
4d:1f:4c:b0:01:06:8e:fc:1f:86:e0:92:6a:02:8a:
6e:1e:8f:99:3c:e4:8f:e8:e1:1d:51:1e:24:38:22:
1f:41:32:fe:39:19:0c:8e:c4:45:67:06:a0:4d:b6:
ae:40:37:60:c8:01:7f:50:0a:18:08:c2:4c:57:02:
4f:9c:6f:30:aa:af:2c:89:c1:5a:e6:c2:24:0f:8d:
e4:40:d0:7d:aa:d2:b7:e9:2d:b2:ff:5f:88:5a:b9:
9f:26:45:a5:10:23:d1:57:2a:1f:c9:87:e5:ea:1d:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2D:00:40:EA:B0:8B:F7:8D:14:B6:03:D3:06:4C:AE:C8:4D:0A:5E
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:5000::/36
Signature Algorithm: sha256WithRSAEncryption
16:2e:1f:c4:9b:7b:b6:c9:5e:c4:cf:f4:fa:6a:fa:57:ee:ca:
2d:54:a9:4e:f3:25:91:4d:f3:9e:be:81:f4:59:69:e9:06:26:
fd:28:b6:ec:b5:d9:3f:7a:d8:83:08:01:8e:2c:f7:a7:e3:17:
c1:17:88:09:f5:e3:93:03:67:1c:39:bb:be:8f:11:bf:65:8c:
ba:93:b9:dd:85:70:7f:7f:84:6d:00:0d:10:3f:5d:45:13:a7:
b0:c2:09:d6:97:5e:82:a5:e0:33:dc:83:d7:1d:6e:d8:bd:81:
45:d7:57:ba:08:ee:18:84:0b:79:2e:aa:3a:ff:1f:d8:4a:82:
ca:3b:32:91:d3:b4:69:fd:62:ae:ad:ae:5b:4d:17:67:96:e7:
4f:93:76:d0:8b:52:42:3b:c4:90:d2:f8:9f:49:31:5d:a3:e9:
83:4b:2f:d9:ac:bd:41:68:18:e8:7f:d6:98:4d:b0:f9:dc:f7:
c0:22:5b:7c:56:b8:33:1d:67:e7:0c:4c:2a:3f:9b:cb:72:fb:
1a:0b:a1:cf:b7:af:1d:cd:8d:1e:5a:35:d7:65:d0:af:f7:30:
10:00:19:54:1c:ec:b4:6a:7b:14:45:11:a7:c2:09:c0:b7:e3:
f6:c8:de:e8:c3:7e:7f:ce:56:2c:02:96:e7:f7:d3:4a:51:92:
78:35:10:b2
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUC0x5c2DOZ6SftlcpJ34D4WDy0twwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA2MjcxNDU1MDJaFw0yNTA2MjYxNTAwMDJaMDMxMTAvBgNV
BAMTKDU4MkQwMDQwRUFCMDhCRjc4RDE0QjYwM0QzMDY0Q0FFQzg0RDBBNUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq6WybAeLY+6+GoFrJ1nLQh/SG
dFZQjfHefcWLbtUBrc+1uZaD08cwhH2t76V9jTFuQtxuBugXLliREQ7DmwjA95uA
TgZHK956RC9RM3DlWRzlalb3PRubs7yeDY1tedJW6ppRnHZqTFyAJe7UMsfq3P/8
qeTNZsBhHI1jbHUa25NlcZLkqkE4mDNlM8FPtkluVERgzU0fTLABBo78H4bgkmoC
im4ej5k85I/o4R1RHiQ4Ih9BMv45GQyOxEVnBqBNtq5AN2DIAX9QChgIwkxXAk+c
bzCqryyJwVrmwiQPjeRA0H2q0rfpLbL/X4hauZ8mRaUQI9FXKh/Jh+XqHQynAgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQUWC0AQOqwi/eNFLYD0wZMrshNCl4wHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzUzMDMwMzAz
YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk
BJfAUDANBgkqhkiG9w0BAQsFAAOCAQEAFi4fxJt7tslexM/0+mr6V+7KLVSpTvMl
kU3znr6B9Flp6QYm/Si27LXZP3rYgwgBjiz3p+MXwReICfXjkwNnHDm7vo8Rv2WM
upO53YVwf3+EbQANED9dRROnsMIJ1pdegqXgM9yD1x1u2L2BRddXugjuGIQLeS6q
Ov8f2EqCyjsykdO0af1irq2uW00XZ5bnT5N20ItSQjvEkNL4n0kxXaPpg0sv2ay9
QWgY6H/WmE2w+dz3wCJbfFa4Mx1n5wxMKj+by3L7Gguhz7evHc2NHlo112XQr/cw
EAAZVBzstGp7FEURp8IJwLfj9sje6MN+f85WLAKW5/fTSlGSeDUQsg==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:43 2025 by rpki-client