Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/323430303a386230303a3230303a3a2f34342d3434203d3e203435373237.roa
File: 323430303a386230303a3230303a3a2f34342d3434203d3e203435373237.roa (raw, json)
Hash identifier: CwawVu+z3Qa9+lcnVnChXex3VYhst6G9RAUv/CXFRaI=
Subject key identifier: 9A:88:D4:F8:EF:B3:82:9C:C3:C2:EF:6F:2F:42:1E:40:9B:73:FE:71
Certificate issuer: /CN=E4309A93EFBD137B291B121E7944EB2E9055348B
Certificate serial: 6F6015ABA4E3E4D5A688736429DB79B82ECF7DBD
Authority key identifier: E4:30:9A:93:EF:BD:13:7B:29:1B:12:1E:79:44:EB:2E:90:55:34:8B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4309A93EFBD137B291B121E7944EB2E9055348B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/323430303a386230303a3230303a3a2f34342d3434203d3e203435373237.roa
Signing time: Tue 03 Dec 2024 20:36:29 +0000
ROA not before: Tue 03 Dec 2024 20:31:29 +0000
ROA not after: Tue 02 Dec 2025 20:36:29 +0000
asID: 45727
IP address blocks: 2400:8b00:200::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 06 Jun 2025 03:20:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:60:15:ab:a4:e3:e4:d5:a6:88:73:64:29:db:79:b8:2e:cf:7d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E4309A93EFBD137B291B121E7944EB2E9055348B
Validity
Not Before: Dec 3 20:31:29 2024 GMT
Not After : Dec 2 20:36:29 2025 GMT
Subject: CN=9A88D4F8EFB3829CC3C2EF6F2F421E409B73FE71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:e4:e2:b6:54:e2:9b:74:57:fa:10:88:cc:
81:20:47:07:aa:1a:2e:10:5b:f9:64:a5:38:51:09:
4b:a1:63:67:64:1a:cb:a7:02:bd:fb:ca:e8:c2:04:
8c:6f:63:8e:bd:4a:9c:8e:57:e2:d1:d0:e2:75:1e:
bf:b9:e2:3a:32:71:f0:b5:0e:c4:29:d6:6a:42:4f:
ce:5a:b2:a8:ca:53:ec:1a:c3:43:6c:7c:41:ef:d5:
93:21:21:9f:c3:25:08:cd:e1:66:b6:ca:c4:ca:bc:
3d:62:5b:94:87:d4:6a:e2:e7:9d:d5:51:8b:f8:c0:
b0:e8:23:94:fd:a5:7c:4a:18:43:98:10:ce:87:94:
22:64:29:02:99:63:fb:b4:60:02:10:73:47:4c:50:
f2:e7:47:c5:87:64:5f:de:0c:93:5a:53:d1:5e:ce:
fd:0b:80:59:3b:2b:bc:c3:09:f6:6e:84:45:fd:b1:
f8:7b:66:c3:86:5f:86:1c:57:1d:a0:58:02:c6:9a:
08:38:4f:03:08:be:a6:05:f9:5c:b3:a9:b5:97:0c:
b7:f9:17:a2:38:ce:a8:22:29:a3:6a:a0:8e:81:4e:
0d:0b:df:2f:9b:39:6c:b4:0b:7b:8a:8f:37:61:9b:
d2:4e:92:57:5a:52:54:b3:be:2b:c8:ee:fd:69:da:
43:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:88:D4:F8:EF:B3:82:9C:C3:C2:EF:6F:2F:42:1E:40:9B:73:FE:71
X509v3 Authority Key Identifier:
keyid:E4:30:9A:93:EF:BD:13:7B:29:1B:12:1E:79:44:EB:2E:90:55:34:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/E4309A93EFBD137B291B121E7944EB2E9055348B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4309A93EFBD137B291B121E7944EB2E9055348B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/323430303a386230303a3230303a3a2f34342d3434203d3e203435373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:8b00:200::/44
Signature Algorithm: sha256WithRSAEncryption
54:8c:6f:77:a6:95:2a:6c:ba:95:ee:31:52:54:02:3e:a5:9f:
bd:76:26:91:2f:37:43:92:1e:24:c4:da:f9:9c:ae:c8:4c:13:
9e:bb:ce:36:57:c9:68:34:11:27:d3:6a:34:b0:e0:d0:ff:90:
4c:12:9f:fd:78:ac:d9:8d:1d:c9:13:d3:a3:56:60:54:e1:e2:
a2:78:ab:aa:08:7e:1f:4c:37:02:b7:65:27:02:8a:b4:4e:f0:
42:0c:6c:1e:b1:6d:f2:e3:ba:0f:29:0e:17:6e:32:c0:96:72:
c1:e6:e5:96:71:a5:a6:e2:57:84:16:62:4d:0f:75:e6:fe:63:
79:27:fb:c3:da:a0:cf:5f:ce:6e:0e:28:79:cd:04:f4:7b:0c:
89:08:bd:f1:91:73:ca:ca:6e:ce:0e:e0:82:6e:8e:d2:d2:ff:
88:71:d0:d7:4f:eb:be:16:99:0e:6a:52:12:db:d1:62:bb:19:
54:f5:19:26:e9:ac:18:5c:1c:37:7f:73:db:9c:7b:be:49:9e:
b5:e0:3e:fe:3b:1c:05:fc:0e:47:37:5b:df:31:88:e1:d5:30:
74:0d:31:27:ab:c0:11:6a:4a:12:0d:2f:00:e5:71:29:cc:6b:
89:2c:04:c6:e5:bd:10:0b:59:12:75:57:e1:24:47:5b:de:93:
4e:88:1b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:31:23 2025 by rpki-client