Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/323430343a63303a3a2f33322d3332203d3e203233363933.roa
File: 323430343a63303a3a2f33322d3332203d3e203233363933.roa (raw, json)
Hash identifier: 24mtyYZYCE1jq3f0s3KuhkYtzkH5/64aeWcEAI182E4=
Subject key identifier: AC:E8:A0:7D:96:A7:61:B6:FB:41:41:69:55:01:B0:AD:5A:4B:27:5A
Certificate issuer: /CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Certificate serial: 51B599FDD6E6E6C538FB4098077E07B2F36DD9E2
Authority key identifier: 66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/323430343a63303a3a2f33322d3332203d3e203233363933.roa
Signing time: Fri 08 Nov 2024 07:58:57 +0000
ROA not before: Fri 08 Nov 2024 07:53:57 +0000
ROA not after: Fri 07 Nov 2025 07:58:57 +0000
asID: 23693
IP address blocks: 2404:c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 11 Nov 2024 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:b5:99:fd:d6:e6:e6:c5:38:fb:40:98:07:7e:07:b2:f3:6d:d9:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Validity
Not Before: Nov 8 07:53:57 2024 GMT
Not After : Nov 7 07:58:57 2025 GMT
Subject: CN=ACE8A07D96A761B6FB4141695501B0AD5A4B275A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b6:fd:ef:8b:4f:25:12:24:d1:81:4c:0b:fa:
d4:76:24:67:20:a9:be:67:ef:bc:ec:53:cb:07:1d:
b3:50:0b:b7:20:f7:19:8f:24:60:9e:6c:35:91:72:
fd:b5:9d:db:93:16:49:3f:91:67:8c:34:8a:ef:65:
bc:47:24:e8:c5:bd:fe:d8:30:24:f7:76:72:6c:37:
e0:15:19:89:6b:45:b2:8e:39:fc:b9:bc:c8:4d:00:
b8:14:85:dc:1a:4f:3a:e5:2c:e8:49:25:da:8f:6e:
c4:f3:05:24:17:11:7f:23:ca:5c:2e:fe:0d:f9:70:
24:f4:35:60:ab:84:78:72:e3:e8:57:e0:78:37:bd:
65:e8:46:af:3f:d2:67:77:bd:78:61:d8:17:e1:5f:
1d:12:27:fa:ac:eb:65:43:98:4b:d9:82:eb:12:68:
e2:34:da:49:9f:b6:37:4c:85:7c:8d:02:90:ed:e2:
ff:dd:70:ed:bc:69:b1:5e:b6:7b:b6:13:14:59:1a:
45:8b:68:90:52:1e:2a:d0:39:ef:80:70:cd:00:44:
e4:3c:98:23:31:9b:af:fb:01:9f:67:06:c2:31:bb:
21:94:4f:95:38:a8:fa:0c:96:f3:61:38:1e:48:5b:
c9:e2:0d:c4:1f:e1:94:71:3e:5b:e8:f6:ca:9f:02:
d0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E8:A0:7D:96:A7:61:B6:FB:41:41:69:55:01:B0:AD:5A:4B:27:5A
X509v3 Authority Key Identifier:
keyid:66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/323430343a63303a3a2f33322d3332203d3e203233363933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:c0::/32
Signature Algorithm: sha256WithRSAEncryption
52:51:81:47:6a:fa:ca:56:01:ee:ae:ab:10:de:a4:9b:e5:48:
10:7b:6b:8b:56:42:6d:bb:8d:cf:77:a8:71:42:13:c6:1f:e2:
3d:64:db:89:66:f4:ac:03:ef:0b:14:96:c8:96:d6:3e:8f:bd:
2d:16:a8:12:04:b5:76:a5:38:00:0c:6e:d6:c7:02:ee:69:75:
b6:e9:80:fa:8d:b9:a7:24:b2:3b:56:44:7a:30:45:c4:0a:8c:
20:81:55:5a:a2:6d:31:44:dd:66:98:f9:9e:93:3c:59:a8:59:
ce:6b:01:4f:b5:2b:90:ff:e5:37:3a:f8:77:fa:6e:00:a3:02:
46:2e:01:28:da:e6:e9:34:ce:2d:2b:c3:46:67:3a:f6:1d:91:
e5:13:9d:9a:e7:cb:9b:7a:e2:b3:3b:01:60:3e:4f:b2:5a:12:
31:58:88:45:0a:1c:f5:a7:a7:80:86:4c:f1:42:94:76:30:ac:
36:1b:6d:73:89:04:74:4f:bb:ce:f8:aa:3e:c7:18:4b:cd:c4:
7e:fe:13:8d:b1:dd:f8:50:e6:9b:eb:a1:d4:f4:36:ad:3f:c2:
1e:b4:12:50:77:1d:d5:7d:11:e2:81:a1:53:e1:e3:7f:b5:c6:
45:7f:c6:88:d6:4f:c4:1f:eb:e5:62:8c:c4:ed:a4:06:71:55:
93:63:b5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 17:00:11 2024 by rpki-client on console-ams.rpki-client.org