Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/7DWFAvQ-HTDxBeiAclLst3MDAjY.roa
File: 7DWFAvQ-HTDxBeiAclLst3MDAjY.roa (raw, json)
Hash identifier: oXF/FFoJ6tPpe/o3qHYJYqM1McsiAVbNDQ/VVVHmTf0=
Subject key identifier: EC:35:85:02:F4:3E:1D:30:F1:05:E8:80:72:52:EC:B7:73:03:02:36
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 0196762A105A7697CCABC1D83D69A3DAD4A2
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/7DWFAvQ-HTDxBeiAclLst3MDAjY.roa
Signing time: Sun 27 Apr 2025 07:33:10 +0000
ROA not before: Sun 27 Apr 2025 07:33:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 88.80.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Apr 2025 18:15:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:2a:10:5a:76:97:cc:ab:c1:d8:3d:69:a3:da:d4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Apr 27 07:33:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec358502f43e1d30f105e8807252ecb773030236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c7:ee:fe:0c:b2:81:d3:22:16:42:37:3d:eb:
01:8a:0a:49:00:81:ee:79:91:ea:30:f4:14:10:4b:
5b:1f:2a:28:84:62:73:2d:44:a2:c9:aa:bc:ac:d1:
83:54:8a:28:c4:37:3f:50:74:3d:9b:f4:d6:4f:f0:
c2:1c:c6:22:eb:54:81:a6:80:31:8b:72:4c:cb:3d:
03:8a:32:e6:60:bf:46:91:df:74:b4:8c:03:c8:76:
0f:2c:e6:84:a2:02:5d:1a:17:0a:ac:54:ac:ed:fa:
25:3c:79:8a:9f:a3:c1:41:8e:15:e8:3b:5a:ef:f3:
ef:c5:bb:b2:df:9a:f6:21:a6:de:a4:0a:eb:ae:ce:
3d:ec:1a:0a:39:3b:da:69:f3:d1:ed:d9:b5:ab:cd:
f0:77:cc:f1:46:0f:c9:6d:41:04:2f:1a:7f:13:7a:
73:f4:63:28:db:14:9a:25:b8:d6:8d:6a:c9:38:cc:
d2:00:f7:f2:2c:e3:70:5f:d5:fa:3c:d7:f1:16:9a:
ed:1c:69:a7:cb:dd:80:6c:bd:5d:d1:61:20:f1:de:
99:35:28:62:1d:3c:e6:5e:47:cd:e9:c6:b5:20:de:
c5:b0:6d:46:ee:17:2b:ed:d2:8f:a7:a1:6d:25:26:
1d:2f:77:1b:82:e8:fe:48:cc:1b:21:0a:d2:df:a3:
b5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:35:85:02:F4:3E:1D:30:F1:05:E8:80:72:52:EC:B7:73:03:02:36
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/7DWFAvQ-HTDxBeiAclLst3MDAjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.137.0/24
Signature Algorithm: sha256WithRSAEncryption
89:21:20:b8:88:0f:90:7a:d3:65:f9:e6:77:3d:f0:b2:86:ba:
22:a0:44:50:56:d0:05:f7:09:25:99:5b:37:06:49:9e:b1:46:
92:e2:3e:53:cd:c7:96:e6:01:d6:75:6f:fc:c1:9b:ea:ff:c6:
30:6f:f3:31:06:26:47:08:f0:1e:15:b6:40:7f:3b:1c:69:1c:
21:cd:16:35:37:99:43:eb:b3:f3:ae:91:a7:76:66:e3:c0:25:
6c:3e:73:b7:6e:91:41:fe:4b:0b:06:af:20:f9:c0:08:a7:ab:
85:89:ad:af:b6:4b:8c:70:f1:74:d6:e6:6e:5f:f6:d6:bf:64:
8a:9d:7b:84:58:15:c2:e4:8c:ed:bf:e5:e2:81:c6:5e:ad:48:
38:67:0b:af:9b:3f:6d:6e:ea:46:2e:69:6e:1f:54:7c:19:92:
73:e3:42:ae:01:4d:34:79:11:2f:a7:61:4c:92:58:1b:ca:e6:
81:ef:37:c9:c5:92:3e:54:be:23:0e:dd:f3:b5:27:f7:69:4c:
d3:94:7d:08:be:81:c6:40:ef:11:ad:2b:a8:22:cd:45:cd:f4:
f9:82:a6:65:a6:67:b0:49:50:d3:e7:5d:ee:44:d3:78:d2:aa:
d2:4e:53:f2:db:45:fa:34:e7:8e:fd:86:e3:07:55:eb:46:1f:
df:c9:f4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 05:01:28 2025 by rpki-client