Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa
File:                     323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa (raw, json)
Hash identifier:          Aj7SkuUfGUEHg3ZvocvK1b8gnuT/F1GrtYg9gvGoY9g=
Subject key identifier:   BD:19:CA:74:FD:11:6B:F4:A9:5C:0A:10:47:17:4A:68:85:34:87:11
Certificate issuer:       /CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3
Certificate serial:       3DCE265ABD1FF4EDC451091BF1D7C1E2D70C6CF2
Authority key identifier: 80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa
Signing time:             Wed 20 Dec 2023 03:19:57 +0000
ROA not before:           Wed 20 Dec 2023 03:14:57 +0000
ROA not after:            Wed 18 Dec 2024 03:19:57 +0000
asID:                     140399
IP address blocks:        2404:4780:1::/48 maxlen: 48

Validation:               Failed, certificate revoked on Tue 20 Aug 2024 09:03:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3d:ce:26:5a:bd:1f:f4:ed:c4:51:09:1b:f1:d7:c1:e2:d7:0c:6c:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3
        Validity
            Not Before: Dec 20 03:14:57 2023 GMT
            Not After : Dec 18 03:19:57 2024 GMT
        Subject: CN=BD19CA74FD116BF4A95C0A1047174A6885348711
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:d8:b8:f5:be:76:7a:5c:6f:42:36:1d:5e:15:
                    1c:86:b1:7f:be:00:cb:c3:c6:6b:a8:50:35:81:7f:
                    36:70:e3:f0:5a:44:11:be:1c:da:ab:6d:c8:dd:17:
                    a9:44:98:5a:4b:36:d7:c3:c5:f3:10:5d:3f:4e:7a:
                    48:fd:8f:d9:c2:20:c5:a7:5c:3b:3b:fd:f7:a4:68:
                    7c:76:bf:57:2d:60:53:7c:ef:21:61:45:87:32:3b:
                    53:34:df:97:e7:2a:35:37:d6:10:c2:81:79:3d:db:
                    f7:2a:4e:6d:18:bc:3d:37:84:96:05:4d:d9:83:5c:
                    66:be:3e:e2:cb:49:4c:3f:dd:e4:ba:41:96:46:38:
                    e6:a4:6a:4b:18:b9:49:40:52:e0:ae:e3:ff:4e:7c:
                    ba:81:9d:4d:72:0e:b9:57:55:77:8b:93:fe:86:83:
                    b8:85:c2:d8:d7:1b:f8:c9:e3:0a:a9:a1:e8:88:fa:
                    1a:e4:30:61:81:48:5b:3a:11:dc:f8:77:27:8a:22:
                    38:8d:ec:35:dd:20:e3:13:9e:2b:6e:8b:f4:1b:53:
                    73:eb:23:3e:8b:e9:8e:e5:1b:8c:e2:13:96:a9:d5:
                    6e:a4:43:cd:24:09:b9:ab:42:14:20:f2:8f:4c:3e:
                    ef:48:b2:15:eb:91:00:ac:0a:e9:be:36:8a:3c:29:
                    95:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:19:CA:74:FD:11:6B:F4:A9:5C:0A:10:47:17:4A:68:85:34:87:11
            X509v3 Authority Key Identifier:
                keyid:80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e20313430333939.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2404:4780:1::/48

    Signature Algorithm: sha256WithRSAEncryption
         1c:99:11:d4:12:16:48:c8:65:d1:25:2b:b4:0a:95:8c:96:60:
         17:bb:77:d6:09:a6:56:aa:5d:df:7f:f2:74:67:39:57:30:67:
         2c:37:2a:ed:3f:93:15:08:dd:86:9d:3d:fe:32:32:4e:f9:75:
         95:33:59:d6:50:6f:46:fc:ae:10:6a:d4:a0:6a:49:d4:82:57:
         4f:c0:61:c0:e0:45:b0:df:b9:5f:0e:c1:74:41:5e:aa:d1:40:
         ea:ff:d1:37:99:15:6a:d6:6c:0d:f2:48:5d:c8:6f:4d:7a:23:
         00:b5:45:0f:0f:ff:02:e6:0c:9e:88:b2:43:7b:82:12:8a:ed:
         43:d3:5a:b4:16:08:c0:ec:fc:91:f4:ce:95:ec:cc:79:5a:16:
         65:33:ac:e7:93:fb:d5:ef:2e:1a:6c:8b:2f:ce:38:71:73:22:
         a8:92:65:fc:cc:80:b2:a9:f2:ce:69:13:72:83:72:69:5b:e2:
         03:c5:41:11:db:db:a0:e2:0f:a9:ae:2a:b5:19:65:a8:9a:70:
         00:f6:9a:f2:1f:f6:c8:6f:6f:55:fe:50:0e:be:d9:0d:dd:50:
         e8:ea:25:29:49:a3:7e:0f:37:62:95:f9:a5:58:2b:b8:81:4d:
         2c:ec:f7:b7:76:c6:bb:96:35:28:eb:4c:e5:3d:ff:4b:48:a1:
         4c:0d:70:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 13:32:10 2024 by rpki-client on console-ams.rpki-client.org