Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/UMCLmp_ovWd_R4s3N1LJchSnr2A.roa
File: UMCLmp_ovWd_R4s3N1LJchSnr2A.roa (raw, json)
Hash identifier: T4UpD/n/bTr8eFqR7YyVOGBAlchRI9lnghAwylH6/K8=
Subject key identifier: 50:C0:8B:9A:9F:E8:BD:67:7F:47:8B:37:37:52:C9:72:14:A7:AF:60
Certificate issuer: /CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Certificate serial: 018A07E46C07CB8B1F7C4C224C5B4FD1EA3B
Authority key identifier: 88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/UMCLmp_ovWd_R4s3N1LJchSnr2A.roa
Signing time: Fri 18 Aug 2023 09:05:24 +0000
ROA not before: Fri 18 Aug 2023 09:05:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60939
IP address blocks: 2a05:f300::/29 maxlen: 29
2a12:4b40::/29 maxlen: 29
2a13:c800::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 18 Aug 2023 09:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:e4:6c:07:cb:8b:1f:7c:4c:22:4c:5b:4f:d1:ea:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Validity
Not Before: Aug 18 09:05:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50c08b9a9fe8bd677f478b373752c97214a7af60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:8a:22:00:78:4b:55:39:6d:86:f4:b4:97:95:
2e:db:2c:88:36:04:83:ce:07:52:d2:58:74:94:1a:
0a:fd:6c:db:ab:1c:fa:b0:ba:1e:2b:3e:94:a8:ed:
cc:b3:ea:d4:14:39:b3:e3:9a:03:46:b1:d8:58:f4:
70:90:40:4a:16:7e:5c:ae:18:73:7b:8b:b6:43:c9:
a6:3e:13:2d:95:f3:47:c8:ce:29:3f:29:64:91:85:
e6:da:6a:5e:30:3e:33:47:ba:fd:8c:75:47:0a:2d:
75:bf:8a:3f:23:12:40:cf:8e:21:59:4a:c2:80:18:
2e:de:40:1d:29:61:ae:c4:8b:de:6e:34:1b:5f:e7:
55:06:21:0c:2a:95:2c:aa:a6:8a:42:a3:c6:cf:6d:
fc:77:25:39:c6:2b:69:f2:68:bc:1f:f4:7f:34:47:
6c:2b:d3:f8:70:b7:58:51:0e:fe:52:6e:80:98:36:
1d:51:fb:e0:e1:1c:5f:86:8a:7f:1c:b3:d0:cf:ad:
b0:79:a5:53:93:9e:8c:3e:bb:22:26:93:23:f2:70:
e2:88:45:f0:ce:ed:74:e0:51:e6:c4:1a:cd:ae:db:
5a:fe:0f:86:04:76:b7:d7:ef:97:8b:de:2b:4b:95:
28:36:4b:30:d3:1b:81:37:a0:de:c2:cc:07:6f:da:
5c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C0:8B:9A:9F:E8:BD:67:7F:47:8B:37:37:52:C9:72:14:A7:AF:60
X509v3 Authority Key Identifier:
keyid:88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/UMCLmp_ovWd_R4s3N1LJchSnr2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/iLITvxYnVI79-xsuJkW6rx2YOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:f300::/29
2a12:4b40::/29
2a13:c800::/29
Signature Algorithm: sha256WithRSAEncryption
ca:1c:9b:5b:4b:fa:e1:6e:cb:3e:20:60:ed:9b:91:10:a8:a1:
18:8d:18:87:52:8a:e4:c3:ba:a0:4c:4b:5b:42:9c:99:24:d1:
b7:15:82:86:56:90:81:ff:0c:e6:98:bb:4f:b8:03:8f:f3:9b:
cb:1a:9c:a0:6b:04:d4:9d:af:39:95:a8:c3:4b:52:24:77:0e:
60:31:f7:21:57:5a:9c:17:59:11:bc:41:4d:39:25:e8:6a:19:
58:ce:08:c4:06:51:fe:0e:15:b6:df:38:3d:14:45:9b:54:ad:
50:ed:a7:15:f4:ff:ec:23:3b:0e:71:bd:10:86:00:20:8d:4f:
d9:f3:c9:ed:05:11:17:d4:9c:2f:de:f9:62:88:fe:05:59:49:
0e:1a:7a:24:6a:f2:bd:d0:6c:f9:6b:a9:8c:d6:b5:8e:4d:d3:
81:1c:4d:7d:15:7e:16:37:ca:22:ef:99:24:a9:22:a4:f8:9f:
e6:4a:28:37:08:86:18:c7:b7:a1:c9:48:ab:72:7f:be:2a:9b:
52:1b:b7:3f:a0:1d:60:64:6b:94:c8:8d:58:f4:f2:28:9a:85:
9a:0c:dd:2a:44:12:9e:c1:d3:ad:af:e0:c2:98:e2:0c:09:d3:
5f:61:e8:bf:8d:75:ed:fc:a2:7b:18:3e:d5:e9:1b:13:c5:e2:
00:67:52:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:01 2024 by rpki-client on console-fra.rpki-client.org