Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/Alu3-uhIDA1YveuraK3LB4EaaTc.roa
File: Alu3-uhIDA1YveuraK3LB4EaaTc.roa (raw, json)
Hash identifier: VEeHqSIKJFDEtB1krGb1mZYND1H5YBlUS1BemK9seQo=
Subject key identifier: 02:5B:B7:FA:E8:48:0C:0D:58:BD:EB:AB:68:AD:CB:07:81:1A:69:37
Certificate issuer: /CN=f62eeb879085c94194297dd9e4cd249cd2516515
Certificate serial: 0191B6AC7A8F8570FC17DFC5A62A67E58143
Authority key identifier: F6:2E:EB:87:90:85:C9:41:94:29:7D:D9:E4:CD:24:9C:D2:51:65:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9i7rh5CFyUGUKX3Z5M0knNJRZRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/Alu3-uhIDA1YveuraK3LB4EaaTc.roa
Signing time: Tue 03 Sep 2024 06:57:22 +0000
ROA not before: Tue 03 Sep 2024 06:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 2a0a:4cc0::/43 maxlen: 43
2a0a:4cc0:40::/43 maxlen: 43
2a0a:4cc0:80::/43 maxlen: 43
2a0a:4cc0:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Nov 2024 10:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b6:ac:7a:8f:85:70:fc:17:df:c5:a6:2a:67:e5:81:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62eeb879085c94194297dd9e4cd249cd2516515
Validity
Not Before: Sep 3 06:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=025bb7fae8480c0d58bdebab68adcb07811a6937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:13:87:32:a2:6b:f7:21:9c:50:14:b1:19:66:
60:2e:07:9b:6e:5a:e9:47:30:41:35:07:36:8e:6a:
2e:df:1c:f2:f3:ea:4c:6a:44:8f:5f:fd:4e:d1:b0:
25:ab:df:11:4f:80:a8:08:b0:a8:ca:54:62:0b:11:
f1:39:e1:ed:d0:2f:62:db:e6:bb:bd:04:b4:5f:42:
19:09:b9:2f:e5:cc:2d:1e:de:27:fd:cb:b2:9c:b0:
fc:f5:0b:f5:e3:48:0f:73:39:05:a2:f8:9d:23:6e:
c4:b8:da:12:49:b8:71:c8:73:2f:b9:aa:7e:be:49:
0a:37:18:28:f3:16:dc:98:d2:6b:16:fa:1f:0a:2b:
14:fe:07:b5:16:c0:b8:0d:98:1d:78:65:2f:76:cc:
0e:f7:0b:a3:16:e8:34:28:0a:ad:23:8b:a1:3d:a9:
c8:87:99:d8:d4:0e:fa:5e:23:8f:8f:32:a0:04:bf:
01:29:1c:f6:0d:95:ee:f9:b6:86:8b:8f:f3:df:c5:
cd:ee:42:24:05:a2:74:5b:49:99:4d:93:28:62:fe:
b4:ca:3d:c0:79:aa:5d:04:11:82:a4:5c:3d:1d:f7:
72:ea:c1:12:cf:e3:d2:24:3c:91:ab:f7:be:c1:ef:
03:a6:ca:83:23:d7:3f:2f:55:5b:a4:80:c6:ce:28:
4a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5B:B7:FA:E8:48:0C:0D:58:BD:EB:AB:68:AD:CB:07:81:1A:69:37
X509v3 Authority Key Identifier:
keyid:F6:2E:EB:87:90:85:C9:41:94:29:7D:D9:E4:CD:24:9C:D2:51:65:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9i7rh5CFyUGUKX3Z5M0knNJRZRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/Alu3-uhIDA1YveuraK3LB4EaaTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/9i7rh5CFyUGUKX3Z5M0knNJRZRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4cc0::/43
2a0a:4cc0:40::/43
2a0a:4cc0:80::/43
2a0a:4cc0:2000::/48
Signature Algorithm: sha256WithRSAEncryption
37:a5:81:bf:aa:0a:cd:79:55:60:b8:fd:ae:d8:66:94:96:ee:
93:5b:f2:46:ae:6a:50:13:0c:92:a4:19:86:f0:f4:c8:17:74:
e7:fd:0c:7e:2a:e6:ff:4e:6e:ab:f3:18:1a:09:51:13:fb:be:
4f:8c:5b:51:c3:7d:18:77:bd:42:2e:56:11:6d:4f:bf:7a:1c:
10:65:8d:1d:d1:d6:c1:86:de:84:b3:2c:17:9f:ce:f5:ec:57:
3c:8e:1d:66:a2:56:b4:ed:9a:fb:b1:90:94:86:1b:8b:3c:a3:
7c:93:e9:04:7d:6e:60:d0:a5:a0:07:f0:1c:29:9f:9f:15:30:
13:42:11:80:f7:57:b0:69:cc:3d:ec:b9:ba:79:18:77:36:d9:
40:75:b4:5f:b8:dc:20:cc:63:08:0e:6e:8d:ba:21:ef:7a:ba:
6b:c2:37:e9:d7:b2:0b:af:8d:2d:38:fe:32:46:95:d7:c7:e9:
20:34:10:9c:82:4b:51:d4:23:9d:c0:6c:5d:2d:22:33:26:22:
9c:7e:07:ab:bd:cd:35:ae:15:b7:72:1a:03:4e:00:bc:c4:67:
47:96:11:a4:8a:50:49:59:b9:bd:95:4c:32:ff:34:98:2d:65:
aa:9b:16:c7:dd:8e:35:aa:22:1a:0e:55:d1:c8:af:e5:88:c5:
11:f9:74:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 12:16:04 2024 by rpki-client on console-fra.rpki-client.org