Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/_dLVBVvv3uJ_YR0OT5JMUsywSsg.roa
File: _dLVBVvv3uJ_YR0OT5JMUsywSsg.roa (raw, json)
Hash identifier: 1IbSvsCEUBJNZsf4Z/i/0iHZbcuQtf4P8YzLMmBaJYA=
Subject key identifier: FD:D2:D5:05:5B:EF:DE:E2:7F:61:1D:0E:4F:92:4C:52:CC:B0:4A:C8
Certificate issuer: /CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Certificate serial: 01857246AC0565C13260DFAB3F54C203261D
Authority key identifier: 7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/_dLVBVvv3uJ_YR0OT5JMUsywSsg.roa
Signing time: Mon 02 Jan 2023 11:38:32 +0000
ROA not before: Mon 02 Jan 2023 11:38:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44789
IP address blocks: 88.132.252.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ac:05:65:c1:32:60:df:ab:3f:54:c2:03:26:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Validity
Not Before: Jan 2 11:38:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdd2d5055befdee27f611d0e4f924c52ccb04ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9c:90:92:1d:fa:51:3f:3a:10:1a:10:c1:b6:
31:4d:83:40:56:c7:e4:dc:7a:50:31:57:d3:e8:c8:
fd:49:5f:09:4e:30:66:f0:11:d9:a0:cf:82:cf:a9:
63:08:e2:38:66:c7:0a:45:9b:2c:ea:35:a9:a2:10:
ff:38:54:18:f9:10:85:8d:47:14:a7:91:86:4a:b4:
63:aa:26:5e:e7:13:ee:b6:bc:65:a4:0e:f3:33:ad:
19:da:54:92:21:00:03:28:22:9e:52:e0:c8:ae:69:
3a:04:10:2c:f2:7e:58:8a:6d:c7:1c:1a:74:47:f7:
cf:fc:60:86:42:64:b3:68:99:23:0b:b2:15:ad:84:
e0:1c:4e:00:67:fc:55:7a:8c:ff:c2:45:53:9a:87:
5e:5c:9b:45:8c:7b:4c:17:46:33:81:b4:a3:73:cd:
e1:1c:8c:78:01:19:eb:07:61:72:49:37:db:a7:fe:
ca:84:d4:04:50:d0:d7:9e:18:5c:dd:74:01:24:6b:
f2:94:64:ba:90:1b:7c:b2:03:38:c6:fe:05:90:e1:
4d:6f:8c:a6:6f:77:dc:6c:f4:2b:df:20:2f:37:4c:
8e:21:91:0e:e5:9b:ee:2b:10:ee:b7:f4:6c:21:99:
18:a6:6a:ca:58:8b:53:b3:33:55:bc:20:29:a4:3d:
2d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D2:D5:05:5B:EF:DE:E2:7F:61:1D:0E:4F:92:4C:52:CC:B0:4A:C8
X509v3 Authority Key Identifier:
keyid:7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/_dLVBVvv3uJ_YR0OT5JMUsywSsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/fyuobfeHiI9vhZKoBqb_6jBGwHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.132.252.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:43:3a:0e:a0:a0:b8:59:19:17:3b:db:3b:a3:bf:39:30:c5:
86:2f:de:5f:ce:b9:22:8f:84:5c:7a:7c:c1:18:72:83:61:48:
82:67:0a:89:f7:cc:f2:62:87:db:6a:ef:bd:03:22:af:3d:1d:
99:af:29:8b:e6:06:e2:75:3b:c7:a9:f4:b9:c8:ce:6e:b1:aa:
86:e3:59:37:da:72:b5:01:ad:89:d3:21:f1:f4:97:ff:84:a6:
3e:03:4f:ed:00:56:92:c3:93:87:2e:19:d4:8d:42:db:b8:e3:
fd:0e:ca:30:97:5e:1e:88:36:5e:47:6b:ea:d0:2b:fe:82:3a:
4b:39:58:b0:c4:a2:60:4e:67:74:a2:70:1c:4f:87:7d:59:11:
48:d2:0c:d7:7b:a8:54:09:59:ff:53:3b:4a:2a:06:a3:9c:ed:
5c:d3:be:7b:ab:dc:21:82:17:30:80:33:0b:f5:af:e7:db:8a:
40:c7:65:a8:63:95:2d:93:86:60:c5:48:cb:41:60:24:22:7d:
c4:f0:6f:34:9b:af:5c:ac:5a:59:56:5d:1a:a0:a9:47:fa:b0:
21:bf:87:0f:d2:2f:ee:5d:6d:82:e9:d9:f2:dd:96:c2:1f:4a:
9d:d8:6f:c9:e9:33:f7:7e:31:b2:51:19:39:c8:40:27:1c:fe:
e1:d5:92:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:44 2024 by rpki-client on console-ams.rpki-client.org