Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/7fa2yy0RNQ0sP2scLUcozvWfWwM.roa
File: 7fa2yy0RNQ0sP2scLUcozvWfWwM.roa (raw, json)
Hash identifier: Ri6lO1xy7airQUd4rGB2Y+VGuMR3OvGN6FuPLcPpzC4=
Subject key identifier: ED:F6:B6:CB:2D:11:35:0D:2C:3F:6B:1C:2D:47:28:CE:F5:9F:5B:03
Certificate issuer: /CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Certificate serial: 018CC8DE56FACCC376641806A2C283FF7B5C
Authority key identifier: 7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/7fa2yy0RNQ0sP2scLUcozvWfWwM.roa
Signing time: Tue 02 Jan 2024 06:31:03 +0000
ROA not before: Tue 02 Jan 2024 06:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44789
IP address blocks: 88.132.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:56:fa:cc:c3:76:64:18:06:a2:c2:83:ff:7b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Validity
Not Before: Jan 2 06:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=edf6b6cb2d11350d2c3f6b1c2d4728cef59f5b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7a:cd:0e:3f:bf:e9:88:7b:fb:eb:6d:8e:34:
78:d8:d6:26:c7:fb:9c:ce:7f:be:82:09:38:aa:6d:
c5:55:79:10:86:24:a2:69:d8:6e:61:fc:f9:09:73:
66:67:fc:16:cb:82:95:3a:de:dc:23:49:36:e0:d0:
a8:2c:e2:42:bc:28:0b:2c:b0:e8:11:ed:63:e9:66:
f5:70:58:e5:61:bd:c8:d6:ba:0b:a1:4f:c7:2d:78:
43:68:a5:b9:3c:39:7c:8e:64:06:6c:24:2a:ac:cd:
2f:7e:f6:72:03:5a:0d:2c:15:ae:93:1e:7d:fe:9a:
4c:75:1c:c4:5c:f9:29:ba:15:5a:27:de:60:23:c3:
96:43:bc:d8:28:4d:dd:89:7b:aa:79:c5:1e:71:b9:
09:cc:62:f4:a3:19:dc:61:c2:2d:12:1f:79:2f:2f:
17:c0:9b:b1:ce:73:31:a5:53:54:f2:ba:87:9d:e8:
e3:14:1e:d6:7f:9b:13:7e:6f:3a:d3:b4:0e:8f:65:
c7:37:a3:47:7d:94:16:03:ae:d5:ff:2e:6e:66:45:
08:b4:15:04:ac:4e:7f:bc:75:23:7b:b8:cd:d9:c9:
17:e9:93:49:52:73:f7:14:03:73:b1:5b:f3:cd:6f:
b6:36:d8:76:3c:b7:1d:1b:33:12:e6:8d:2f:4b:86:
8b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F6:B6:CB:2D:11:35:0D:2C:3F:6B:1C:2D:47:28:CE:F5:9F:5B:03
X509v3 Authority Key Identifier:
keyid:7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/7fa2yy0RNQ0sP2scLUcozvWfWwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/fyuobfeHiI9vhZKoBqb_6jBGwHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.132.252.0/22
Signature Algorithm: sha256WithRSAEncryption
60:8f:7e:5d:af:a5:85:01:c2:d5:82:16:51:f2:87:14:be:41:
14:ec:58:e9:b9:89:b4:65:9b:dc:f7:f4:c5:6f:9d:d0:90:ad:
3a:69:fa:fc:22:dc:23:4a:4a:05:f5:17:64:8d:7f:5d:8e:98:
4f:c2:a1:c8:94:8a:bc:c6:07:90:52:f8:0b:4b:95:3c:41:61:
f5:ee:2e:53:80:d9:e5:4e:81:2d:38:a4:81:b7:42:d8:24:f1:
0b:9b:0c:0c:bb:8b:19:a9:46:32:8b:c0:bc:a8:81:52:2d:9a:
b7:ba:f6:c5:81:9d:bb:14:73:69:ff:4a:e1:2b:7e:ed:da:a4:
58:fc:13:f5:c5:55:e9:2c:02:6e:98:21:dd:9e:b8:29:76:44:
9e:21:74:a5:bb:d7:28:ce:dc:4c:e5:4f:51:ce:4e:de:84:9a:
df:36:04:c4:78:29:bd:86:2c:19:5d:39:5f:f1:c3:bd:dd:da:
5d:18:ac:40:7a:2a:f2:94:17:4d:11:08:bb:45:41:8a:d6:dc:
0b:c7:64:d4:dd:9a:c9:05:fd:10:e4:a7:40:17:d8:1f:dc:b3:
dd:61:72:27:61:c1:69:39:c2:50:d7:1f:4c:65:d6:08:5a:ab:
dc:a2:1e:ee:75:a3:cd:93:07:6b:d1:c1:dd:04:67:8a:96:0a:
2e:97:66:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:18:35 2025 by rpki-client