Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/16d84b-0961-4d1e-85cc-61de21f51434/1/YuMU35PX-gZZsdlzKnWRTxCuCUw.roa
File: YuMU35PX-gZZsdlzKnWRTxCuCUw.roa (raw, json)
Hash identifier: 6FPLv4rWeeCaMr6HXqedpfyTcGm2cO5XIiAXYgAW+Ik=
Subject key identifier: 62:E3:14:DF:93:D7:FA:06:59:B1:D9:73:2A:75:91:4F:10:AE:09:4C
Certificate issuer: /CN=2ab91e3ded820c70b8ace89aeafffabee6bfa553
Certificate serial: 018B18DB6E9372B52B41F90940BB29AE6588
Authority key identifier: 2A:B9:1E:3D:ED:82:0C:70:B8:AC:E8:9A:EA:FF:FA:BE:E6:BF:A5:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrkePe2CDHC4rOia6v_6vua_pVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/16d84b-0961-4d1e-85cc-61de21f51434/1/YuMU35PX-gZZsdlzKnWRTxCuCUw.roa
Signing time: Tue 10 Oct 2023 09:11:55 +0000
ROA not before: Tue 10 Oct 2023 09:11:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199130
IP address blocks: 2a13:de80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:db:6e:93:72:b5:2b:41:f9:09:40:bb:29:ae:65:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ab91e3ded820c70b8ace89aeafffabee6bfa553
Validity
Not Before: Oct 10 09:11:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e314df93d7fa0659b1d9732a75914f10ae094c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ea:06:ae:a4:1d:8d:7c:28:91:4d:07:48:cc:
fe:ca:8d:3f:8b:3d:c7:8e:2f:c0:88:40:50:49:6f:
43:fa:06:8f:bb:62:21:30:60:af:ba:be:0e:84:dd:
a0:fc:03:fd:d7:78:69:86:a9:0e:a9:04:79:4e:d2:
9f:da:a7:6b:4d:eb:3f:12:6b:77:e0:df:ab:c2:59:
b2:d9:2e:01:b3:50:73:04:f1:5c:fc:cd:d4:08:ed:
07:cd:9a:81:95:6f:8b:dc:38:39:57:e4:ba:ca:d6:
cb:e1:6c:8a:69:5d:57:99:2f:b3:39:97:de:7e:d7:
17:42:2c:5b:c4:71:f1:1c:0f:a5:9f:0c:6a:fe:af:
a1:a4:1f:01:93:23:a8:71:e9:04:85:b9:55:12:f8:
15:8a:ad:e9:30:13:aa:62:e4:f1:c1:11:01:80:89:
31:41:12:ec:32:a4:5c:d9:20:7d:d3:bf:d5:21:2f:
ff:12:6a:e2:c3:c9:83:f3:cb:15:fb:fd:4c:20:a0:
13:ec:fd:22:06:62:53:06:d2:1a:21:15:6f:26:55:
60:4e:a3:47:4a:ea:e0:55:bb:d3:39:3a:ae:b5:ae:
58:ed:8e:51:dc:b9:21:54:22:80:55:95:95:4e:1b:
0e:14:cc:b2:91:13:8e:d7:92:a3:c3:ab:36:07:32:
4d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E3:14:DF:93:D7:FA:06:59:B1:D9:73:2A:75:91:4F:10:AE:09:4C
X509v3 Authority Key Identifier:
keyid:2A:B9:1E:3D:ED:82:0C:70:B8:AC:E8:9A:EA:FF:FA:BE:E6:BF:A5:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrkePe2CDHC4rOia6v_6vua_pVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/16d84b-0961-4d1e-85cc-61de21f51434/1/YuMU35PX-gZZsdlzKnWRTxCuCUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/16d84b-0961-4d1e-85cc-61de21f51434/1/KrkePe2CDHC4rOia6v_6vua_pVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:de80::/29
Signature Algorithm: sha256WithRSAEncryption
0b:85:de:95:e3:20:11:75:69:0d:cf:71:8b:d0:43:42:ad:a0:
dd:c6:99:50:01:8c:55:df:72:88:7b:d2:9d:fe:88:62:2d:85:
75:12:d1:48:91:c7:0c:6b:47:a0:4b:4a:7a:5c:c1:00:db:46:
f4:0a:d6:1c:7b:ed:97:40:3a:3e:37:e6:e3:c2:c2:f0:1d:44:
59:55:ee:f3:00:1a:d5:f0:db:a4:75:e5:0d:c4:ac:a0:15:db:
a4:72:f3:93:f7:f3:2d:e7:18:2f:bf:ae:ac:75:69:d9:8d:50:
68:0e:3a:a9:22:5b:f3:a4:4b:ba:e9:d6:87:62:65:64:f6:9c:
bc:b0:e7:d8:a9:19:7d:70:c2:32:fb:03:3a:e7:42:a4:b6:ed:
18:be:0b:8f:d3:a3:4c:93:7b:c4:d9:97:0a:fe:e2:10:2d:c7:
67:1c:7b:e7:47:4e:a4:bc:8d:99:7e:01:25:09:50:88:60:aa:
1f:46:02:95:e2:27:22:39:39:c8:85:a8:cd:9c:d4:81:c8:9d:
9b:71:3b:a9:96:bb:f1:14:60:9b:b1:73:3b:0d:76:ce:e3:e9:
67:fb:58:f2:66:25:82:d2:bd:bd:19:b3:a2:9b:39:c9:90:35:
16:a1:90:38:13:77:56:09:b7:e8:3f:f4:d1:9c:23:d5:eb:91:
a6:b2:f8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:36 2024 by rpki-client on console-fra.rpki-client.org