Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a3a2f34382d3438203d3e20313338313339.roa
File: 323430343a346563303a3a2f34382d3438203d3e20313338313339.roa (raw, json)
Hash identifier: 6Sm2b4RIaPMDgYK4K6IDBD+ROWWR8k3NAbPNPvTl38o=
Subject key identifier: 80:1E:C2:1D:54:41:AE:54:8D:AF:E0:2C:B6:88:07:19:DB:A7:C3:BE
Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Certificate serial: 2007ECB5886E8941A9BC1ED757E6C98BDD86FEB9
Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a3a2f34382d3438203d3e20313338313339.roa
Signing time: Thu 18 Jul 2024 03:36:13 +0000
ROA not before: Thu 18 Jul 2024 03:31:13 +0000
ROA not after: Thu 17 Jul 2025 03:36:13 +0000
asID: 138139
IP address blocks: 2404:4ec0::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jul 2024 02:25:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:07:ec:b5:88:6e:89:41:a9:bc:1e:d7:57:e6:c9:8b:dd:86:fe:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Validity
Not Before: Jul 18 03:31:13 2024 GMT
Not After : Jul 17 03:36:13 2025 GMT
Subject: CN=801EC21D5441AE548DAFE02CB6880719DBA7C3BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:27:bb:b7:bf:29:58:16:74:72:4f:d2:86:d6:
3f:ff:b9:32:3c:b5:13:ea:7c:12:f2:68:2a:16:de:
ed:d8:27:c0:1a:70:aa:d5:67:6d:65:f4:02:40:75:
73:29:59:93:f9:01:02:57:e1:59:71:83:a4:d0:77:
b5:90:e4:60:5d:96:64:c4:b9:2b:23:93:a9:93:ec:
a2:38:8a:60:cd:46:9a:65:0f:39:db:a6:47:ad:b8:
81:43:63:b4:a6:80:33:bb:2f:64:95:7e:63:79:f7:
13:06:35:1b:1c:ab:6a:35:b2:ed:07:d6:de:3d:f5:
8d:0d:cf:cd:2d:dd:15:23:ec:5c:a2:c8:a5:0e:6a:
59:ed:b6:11:26:0d:94:23:96:34:f4:78:04:38:7c:
77:d1:41:4b:83:44:e1:2a:e0:f4:02:a2:1c:d3:b7:
49:a2:41:d0:46:c6:7a:eb:43:20:3f:be:df:65:4c:
64:1e:7c:dc:92:c8:38:31:5d:be:d2:a3:8b:ea:7c:
9a:a7:ce:01:3a:97:4a:6c:a9:3f:55:c7:3f:4d:10:
dd:92:a3:fd:ea:55:19:e5:31:04:33:cd:05:bf:99:
9c:7d:83:63:70:7d:38:3d:aa:98:fd:18:2c:d0:d3:
2f:77:8e:a2:f5:34:45:54:2b:d8:b1:ca:3a:46:d9:
ed:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1E:C2:1D:54:41:AE:54:8D:AF:E0:2C:B6:88:07:19:DB:A7:C3:BE
X509v3 Authority Key Identifier:
keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a3a2f34382d3438203d3e20313338313339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:4ec0::/48
Signature Algorithm: sha256WithRSAEncryption
3b:04:0e:ff:cd:8c:46:78:5b:8b:d4:e7:d0:f1:26:ef:c4:13:
b3:36:24:fd:48:e2:9c:dd:41:56:fc:1c:59:81:c3:65:6b:74:
59:0e:e6:73:59:17:5e:40:33:62:7f:e6:0d:09:92:ef:d7:47:
99:8a:c7:b7:f2:57:08:bd:fa:94:3b:86:fc:3d:d3:29:35:e3:
27:ec:3d:62:8f:57:dd:c9:7e:bb:fb:95:37:42:9f:bd:61:75:
78:d6:04:ae:bd:26:9f:d9:d4:87:08:73:30:9f:9d:26:66:07:
62:9b:23:8b:21:2f:55:6a:3b:5e:9b:d2:fd:d6:2d:91:57:f9:
c5:6d:e1:63:d0:bb:ed:82:46:10:8a:d5:df:55:a2:35:5e:c4:
15:94:c4:8c:67:e1:ed:d0:75:b6:41:9d:fb:84:da:84:51:b8:
b9:e2:db:04:61:b1:54:22:dd:e3:0b:fa:fd:1a:cb:88:59:32:
77:9e:be:91:5d:e1:95:2c:9d:33:41:0d:62:8f:ed:de:c4:37:
a3:2a:30:7f:60:17:f6:d0:8b:8d:41:18:ce:e2:2e:a8:76:d2:
4d:57:e7:fa:b1:5b:0d:3e:e6:79:b9:d1:73:3a:ba:08:89:7c:
5a:89:48:68:28:89:55:f7:17:51:6f:f9:68:81:b0:39:79:52:
9e:4a:99:c7
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgIUIAfstYhuiUGpvB7XV+bJi92G/rkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0
MzUzRjZGRjAeFw0yNDA3MTgwMzMxMTNaFw0yNTA3MTcwMzM2MTNaMDMxMTAvBgNV
BAMTKDgwMUVDMjFENTQ0MUFFNTQ4REFGRTAyQ0I2ODgwNzE5REJBN0MzQkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoJ7u3vylYFnRyT9KG1j//uTI8
tRPqfBLyaCoW3u3YJ8AacKrVZ21l9AJAdXMpWZP5AQJX4Vlxg6TQd7WQ5GBdlmTE
uSsjk6mT7KI4imDNRpplDznbpketuIFDY7SmgDO7L2SVfmN59xMGNRscq2o1su0H
1t499Y0Nz80t3RUj7FyiyKUOalntthEmDZQjljT0eAQ4fHfRQUuDROEq4PQCohzT
t0miQdBGxnrrQyA/vt9lTGQefNySyDgxXb7So4vqfJqnzgE6l0psqT9Vxz9NEN2S
o/3qVRnlMQQzzQW/mZx9g2NwfTg9qpj9GCzQ0y93jqL1NEVUK9ixyjpG2e3FAgMB
AAGjggI1MIICMTAdBgNVHQ4EFgQUgB7CHVRBrlSNr+AstogHGdunw74wHwYDVR0j
BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG
QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz
RjZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05
NjliLThkYTI1MzZjNWMyNC8wLzMyMzQzMDM0M2EzNDY1NjMzMDNhM2EyZjM0Mzgy
ZDM0MzgyMDNkM2UyMDMxMzMzODMxMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQETsAAADANBgkq
hkiG9w0BAQsFAAOCAQEAOwQO/82MRnhbi9Tn0PEm78QTszYk/UjinN1BVvwcWYHD
ZWt0WQ7mc1kXXkAzYn/mDQmS79dHmYrHt/JXCL36lDuG/D3TKTXjJ+w9Yo9X3cl+
u/uVN0KfvWF1eNYErr0mn9nUhwhzMJ+dJmYHYpsjiyEvVWo7XpvS/dYtkVf5xW3h
Y9C77YJGEIrV31WiNV7EFZTEjGfh7dB1tkGd+4TahFG4ueLbBGGxVCLd4wv6/RrL
iFkyd56+kV3hlSydM0ENYo/t3sQ3oyowf2AX9tCLjUEYzuIuqHbSTVfn+rFbDT7m
ebnRczq6CIl8WolIaCiJVfcXUW/5aIGwOXlSnkqZxw==
-----END CERTIFICATE-----
Generated at Thu Jul 25 05:24:02 2024 by rpki-client on console-fra.rpki-client.org