Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/Dv3A8g8yldR9f-JIu-S0GRMpqWw.roa
File: Dv3A8g8yldR9f-JIu-S0GRMpqWw.roa (raw, json)
Hash identifier: F/uRc97WwEe/7NfzWw3ASW9p2LSlJpoWfsDecSt5yC4=
Subject key identifier: 0E:FD:C0:F2:0F:32:95:D4:7D:7F:E2:48:BB:E4:B4:19:13:29:A9:6C
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 0192BE7B2FF3EBDAA18EFFB713DCAAF61E67
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/Dv3A8g8yldR9f-JIu-S0GRMpqWw.roa
Signing time: Thu 24 Oct 2024 12:23:16 +0000
ROA not before: Thu 24 Oct 2024 12:23:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20940
IP address blocks: 2a10:fa44::/48 maxlen: 48
2a10:fa44:100::/64 maxlen: 64
Validation: Failed, certificate revoked on Thu 21 Nov 2024 11:03:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:be:7b:2f:f3:eb:da:a1:8e:ff:b7:13:dc:aa:f6:1e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Oct 24 12:23:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0efdc0f20f3295d47d7fe248bbe4b4191329a96c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e4:43:33:27:2d:0a:90:8f:20:1d:8c:e7:c9:
0e:99:6d:46:fb:8c:47:28:06:05:4f:bf:94:16:26:
5e:a7:81:ea:77:ed:d7:b8:b0:f4:77:3c:3e:3e:f9:
39:0f:78:2a:ea:d2:3e:eb:2a:1e:33:64:a3:07:1f:
ae:a4:c5:61:66:9e:d0:86:01:d3:59:83:5a:8e:55:
25:68:97:e3:97:e6:6f:3f:07:15:ea:b7:11:ed:77:
04:c0:04:f6:54:7f:4b:25:39:9d:9b:67:bd:fd:5e:
4c:ed:f2:dd:f0:04:01:b1:21:39:bf:1d:f8:c3:87:
44:79:fb:2d:94:52:cf:f9:17:b8:a8:0f:29:34:95:
34:53:6a:b7:4c:db:d8:0f:29:63:52:2c:4c:cc:84:
6e:5b:5b:31:df:9b:61:90:f9:1a:db:57:de:e2:b9:
82:9e:0d:4d:5b:b4:d4:d3:44:fe:c6:d5:7c:56:73:
6f:fb:e1:39:30:1b:ea:74:88:63:b7:9e:02:d9:8b:
7e:cf:d8:b8:40:25:e2:5c:5d:2c:f6:97:bd:5a:a6:
b4:11:f9:61:19:8a:36:73:3e:d1:47:91:8c:0a:a6:
0d:1f:33:f8:9e:2c:b1:2f:da:21:2e:e2:b3:8c:27:
01:b7:90:e0:bf:b7:33:3c:39:59:44:e3:46:dc:8a:
e5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FD:C0:F2:0F:32:95:D4:7D:7F:E2:48:BB:E4:B4:19:13:29:A9:6C
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/Dv3A8g8yldR9f-JIu-S0GRMpqWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fa44::/48
2a10:fa44:100::/64
Signature Algorithm: sha256WithRSAEncryption
7b:c1:bc:af:9c:ac:f0:78:97:23:01:02:21:56:51:50:70:ab:
ea:6b:d8:c5:cf:4e:9a:73:5b:e0:d7:ee:e2:8f:ea:be:07:ab:
a7:0e:2b:1e:35:16:ac:85:83:24:bd:aa:51:2f:6b:38:de:7e:
4f:15:f5:78:51:fc:de:12:28:aa:3c:01:25:d1:42:16:09:89:
c8:97:5a:a7:7b:b8:9d:78:d7:43:7e:83:bb:08:19:b2:db:eb:
61:19:36:d7:0e:6e:3b:72:1a:ef:87:31:d1:13:00:b6:64:90:
b8:e2:99:b3:66:84:4b:93:93:7f:5c:b1:a7:38:43:a9:b2:c5:
1c:b6:2c:d2:c9:72:35:f5:d1:59:e9:2b:05:5e:4e:ad:2c:42:
ed:8e:1f:51:1d:a1:8c:97:ae:67:14:0e:6c:19:23:30:e8:18:
1d:9f:9b:31:48:c1:08:08:1c:d9:50:72:d6:b4:63:c8:2c:50:
9f:6b:fa:3d:5c:0f:df:37:47:17:78:3f:76:92:f9:35:9f:a2:
3f:4c:08:ae:00:c5:f5:c8:89:55:07:e6:da:f0:93:0c:cc:40:
9a:0c:19:88:1e:52:28:62:bb:41:39:47:d3:cf:0a:e2:c9:5b:
94:42:6f:19:e0:5e:63:b3:1c:c4:28:84:3b:92:08:be:b1:e4:
45:97:0e:33
-----BEGIN CERTIFICATE-----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=
Generated at Thu Nov 21 13:55:55 2024 by rpki-client on console-fra.rpki-client.org