Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa
File: 323430313a633432303a3a2f33322d3438203d3e20313431303538.roa (raw, json)
Hash identifier: ts+CaZ/wNLVs3wqbfCAVU2T55H4jIw3AP7/q8uSAS4Y=
Subject key identifier: C2:7C:D4:CE:0C:1C:36:51:81:33:CE:0F:CA:94:86:58:0F:54:DC:3B
Certificate issuer: /CN=90317E269FFE9F713F20CFBACE642A6F60F78FCA
Certificate serial: 346368B63FA461393F783C4986616F9FF7CCB2FD
Authority key identifier: 90:31:7E:26:9F:FE:9F:71:3F:20:CF:BA:CE:64:2A:6F:60:F7:8F:CA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90317E269FFE9F713F20CFBACE642A6F60F78FCA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa
Signing time: Mon 23 Sep 2024 05:08:46 +0000
ROA not before: Mon 23 Sep 2024 05:03:46 +0000
ROA not after: Mon 22 Sep 2025 05:08:46 +0000
asID: 141058
IP address blocks: 2401:c420::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 26 Sep 2024 01:06:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:63:68:b6:3f:a4:61:39:3f:78:3c:49:86:61:6f:9f:f7:cc:b2:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90317E269FFE9F713F20CFBACE642A6F60F78FCA
Validity
Not Before: Sep 23 05:03:46 2024 GMT
Not After : Sep 22 05:08:46 2025 GMT
Subject: CN=C27CD4CE0C1C36518133CE0FCA9486580F54DC3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e4:6d:aa:66:91:5b:c9:ae:b2:07:81:a5:73:
3c:3c:f5:1d:cf:5b:71:d7:9e:6d:8c:43:27:1e:5a:
34:ba:30:ea:f8:05:d6:70:d5:6a:47:3e:df:60:77:
84:62:ee:79:03:65:c8:eb:99:20:ef:74:c6:25:b0:
6c:e1:ad:9f:4b:67:52:38:8e:3b:db:d5:95:a6:51:
2c:68:8a:df:7f:4b:cc:b3:90:cd:64:12:a4:9d:bf:
7a:38:39:03:76:37:54:9f:61:19:0e:8a:55:82:57:
14:60:cd:61:d0:72:61:16:f8:1f:d0:97:d1:ad:a5:
af:6e:49:c8:59:30:83:bf:cb:82:7a:d3:30:62:a3:
f5:e6:48:58:1c:04:21:96:88:da:1b:2c:98:6b:54:
4d:d8:25:85:c9:94:62:9a:2d:ce:ae:06:6a:f5:71:
59:8c:36:44:52:73:8a:3d:c4:5a:b4:20:2d:88:b8:
9b:72:2d:dc:11:bf:10:00:12:6f:89:04:5d:68:85:
5c:63:c6:ee:4c:1c:39:d4:61:a1:17:30:14:a8:4f:
33:b8:39:4b:3f:6b:07:7b:e4:94:a3:6e:2d:a7:e2:
01:c5:d0:56:5f:31:0d:12:6c:48:7a:c7:ef:32:cd:
bd:8a:03:0e:19:64:a3:1c:c2:98:2c:31:c8:38:41:
7a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7C:D4:CE:0C:1C:36:51:81:33:CE:0F:CA:94:86:58:0F:54:DC:3B
X509v3 Authority Key Identifier:
keyid:90:31:7E:26:9F:FE:9F:71:3F:20:CF:BA:CE:64:2A:6F:60:F7:8F:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/90317E269FFE9F713F20CFBACE642A6F60F78FCA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90317E269FFE9F713F20CFBACE642A6F60F78FCA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:c420::/32
Signature Algorithm: sha256WithRSAEncryption
51:d2:48:7b:03:08:0a:5c:ec:b2:57:70:4d:a4:d9:c0:87:38:
a3:f5:f5:2c:f4:2a:8d:c8:b8:66:15:3d:0c:82:b7:0c:2b:aa:
0a:54:88:23:90:5e:25:b1:05:22:56:b1:d0:59:27:2b:7c:13:
f1:76:47:c2:72:df:81:1c:cc:95:40:dd:a0:fe:37:99:97:09:
b4:c6:ce:35:17:1e:d0:09:42:31:e0:6d:d5:3d:b2:11:42:5a:
97:d4:4a:57:46:c8:f9:fc:9e:94:86:3a:dd:5e:82:bc:47:61:
19:69:5d:88:fe:2e:9c:80:65:61:ac:42:05:84:09:d5:8d:ed:
78:d2:c3:cd:e5:97:00:7f:c5:fa:ff:ba:56:16:b2:60:3e:4e:
f8:71:04:50:85:7e:c9:b9:72:be:e8:cb:96:3a:4b:6b:92:b7:
b1:1c:47:b3:37:97:b4:2f:18:1f:98:07:00:3f:e0:fe:cb:b7:
41:54:89:b9:cd:01:a4:50:f8:4b:e0:13:d7:59:92:e3:62:03:
e9:fb:af:91:a1:0f:75:16:88:5c:95:e4:47:53:71:90:01:b1:
45:22:9d:fd:f2:61:5f:03:38:5c:04:8a:c2:66:a7:26:cc:1e:
88:a4:e9:0b:ea:24:3e:20:b8:18:cb:f6:79:1d:be:df:09:3b:
58:3b:e1:b3
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgIUNGNotj+kYTk/eDxJhmFvn/fMsv0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTAzMTdFMjY5RkZFOUY3MTNGMjBDRkJBQ0U2NDJBNkY2
MEY3OEZDQTAeFw0yNDA5MjMwNTAzNDZaFw0yNTA5MjIwNTA4NDZaMDMxMTAvBgNV
BAMTKEMyN0NENENFMEMxQzM2NTE4MTMzQ0UwRkNBOTQ4NjU4MEY1NERDM0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi5G2qZpFbya6yB4Glczw89R3P
W3HXnm2MQyceWjS6MOr4BdZw1WpHPt9gd4Ri7nkDZcjrmSDvdMYlsGzhrZ9LZ1I4
jjvb1ZWmUSxoit9/S8yzkM1kEqSdv3o4OQN2N1SfYRkOilWCVxRgzWHQcmEW+B/Q
l9Gtpa9uSchZMIO/y4J60zBio/XmSFgcBCGWiNobLJhrVE3YJYXJlGKaLc6uBmr1
cVmMNkRSc4o9xFq0IC2IuJtyLdwRvxAAEm+JBF1ohVxjxu5MHDnUYaEXMBSoTzO4
OUs/awd75JSjbi2n4gHF0FZfMQ0SbEh6x+8yzb2KAw4ZZKMcwpgsMcg4QXrJAgMB
AAGjggIzMIICLzAdBgNVHQ4EFgQUwnzUzgwcNlGBM84PypSGWA9U3DswHwYDVR0j
BBgwFoAUkDF+Jp/+n3E/IM+6zmQqb2D3j8owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
M2I4NThmNi1kZTIwLTQxMjEtYmNlYS05MDc2ZWRjY2MwOTcvMC85MDMxN0UyNjlG
RkU5RjcxM0YyMENGQkFDRTY0MkE2RjYwRjc4RkNBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTAzMTdFMjY5RkZFOUY3MTNGMjBDRkJBQ0U2NDJBNkY2MEY3
OEZDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzYjg1OGY2LWRlMjAtNDEyMS1i
Y2VhLTkwNzZlZGNjYzA5Ny8wLzMyMzQzMDMxM2E2MzM0MzIzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDMxMzQzMTMwMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBxCAwDQYJKoZI
hvcNAQELBQADggEBAFHSSHsDCApc7LJXcE2k2cCHOKP19Sz0Ko3IuGYVPQyCtwwr
qgpUiCOQXiWxBSJWsdBZJyt8E/F2R8Jy34EczJVA3aD+N5mXCbTGzjUXHtAJQjHg
bdU9shFCWpfUSldGyPn8npSGOt1egrxHYRlpXYj+LpyAZWGsQgWECdWN7XjSw83l
lwB/xfr/ulYWsmA+TvhxBFCFfsm5cr7oy5Y6S2uSt7EcR7M3l7QvGB+YBwA/4P7L
t0FUibnNAaRQ+EvgE9dZkuNiA+n7r5GhD3UWiFyV5EdTcZABsUUinf3yYV8DOFwE
isJmpybMHoik6QvqJD4guBjL9nkdvt8JO1g74bM=
-----END CERTIFICATE-----
Generated at Thu Sep 26 04:20:53 2024 by rpki-client on console-ams.rpki-client.org