Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa
File: 323430323a3738303a3a2f34382d3438203d3e203435373235.roa (raw, json)
Hash identifier: 12VBWCfXddgh4KV5dt3aRwEKahSrJTUueTZTli9UhbE=
Subject key identifier: 45:40:1B:4C:76:C7:30:53:7D:07:52:61:57:D0:63:06:16:DA:96:F7
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 761DFB5BF8D3941CC9EEAA697B8CAFE6666B0B36
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa
Signing time: Wed 07 Feb 2024 04:02:43 +0000
ROA not before: Wed 07 Feb 2024 03:57:43 +0000
ROA not after: Wed 05 Feb 2025 04:02:43 +0000
asID: 45725
IP address blocks: 2402:780::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:1d:fb:5b:f8:d3:94:1c:c9:ee:aa:69:7b:8c:af:e6:66:6b:0b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Feb 7 03:57:43 2024 GMT
Not After : Feb 5 04:02:43 2025 GMT
Subject: CN=45401B4C76C730537D07526157D0630616DA96F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:77:b6:e6:05:b6:af:a1:7b:fb:c1:1e:88:33:
3d:6c:06:31:42:51:3d:65:fe:e9:2e:88:fa:a8:24:
b8:cc:2b:ef:af:6d:8c:98:e6:3f:f2:49:2c:15:f3:
90:c0:3b:b7:29:ee:b0:92:57:04:32:fe:bc:f3:10:
92:b7:ea:6a:29:af:83:f0:3d:0c:b7:12:c2:13:bb:
df:f4:fd:cd:36:5e:23:b1:78:b1:b3:36:d1:77:f5:
27:b6:97:94:5a:5b:07:d9:b2:da:21:b1:b0:cc:b0:
e2:88:e5:a3:ad:c5:ef:62:00:1f:bd:c3:a9:dc:a1:
8b:74:05:81:e9:83:24:ce:b0:51:db:59:be:58:1f:
a9:91:c0:8f:d4:3b:32:a0:6f:63:c9:a2:a9:5d:e6:
ca:dc:34:8b:e2:0b:e1:05:75:0c:06:39:b1:4f:ee:
8b:26:e3:be:41:65:35:a3:47:cf:c4:a0:79:dc:0d:
34:e6:76:46:7e:81:50:2d:cf:3a:40:46:6b:0f:24:
52:e6:c3:ee:17:ef:7a:11:a1:d4:44:ce:71:da:54:
de:53:b6:f9:4a:c3:df:f9:d0:8d:cc:b7:43:66:39:
5b:41:88:99:df:fb:bc:c9:4b:f5:12:7d:80:c8:22:
34:5f:75:ba:05:b4:e4:1b:fb:8d:23:1b:1d:55:a0:
b7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:40:1B:4C:76:C7:30:53:7D:07:52:61:57:D0:63:06:16:DA:96:F7
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:780::/48
Signature Algorithm: sha256WithRSAEncryption
08:b3:09:5e:27:85:de:0c:bd:7f:72:54:e6:0c:61:61:8c:b4:
c0:ad:33:bd:49:22:2d:02:53:60:6e:cd:ea:17:fa:37:e0:d1:
06:bc:f3:19:0e:cd:dd:ba:45:4f:bb:d1:23:9c:d4:ff:8e:dd:
41:70:e2:05:78:4e:21:5d:ae:36:ff:8a:50:11:67:01:d1:2c:
6b:43:ff:15:94:4d:07:9e:1b:a4:aa:60:a2:f9:b6:0f:ab:fc:
6d:f9:ee:cd:08:c0:53:45:06:02:7f:4c:6d:50:6d:18:3b:5f:
3c:fa:92:ac:00:3f:6f:58:4d:d8:12:92:90:70:c3:9f:e5:3e:
b4:39:59:c2:a6:6a:43:79:0b:e6:ca:34:69:c7:66:4f:9f:18:
bd:cb:f5:0a:89:59:53:80:27:8d:b9:1f:23:90:22:8c:eb:87:
7a:56:f2:07:a2:8f:6c:27:2d:b7:6d:6e:8e:f0:75:dd:99:40:
1f:d8:d6:a1:45:50:37:b3:81:13:85:4b:9c:c3:0f:b7:97:d3:
27:61:70:73:6d:ec:e9:f0:d5:0d:62:28:2a:61:fa:72:da:45:
02:e6:c7:61:4e:74:44:4f:69:35:bb:be:06:ef:7b:e7:9a:42:
a6:0c:cc:ac:2e:6e:03:95:00:0a:b2:97:39:54:76:8e:4b:0f:
f0:6b:f3:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org