Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/ew9cMG3-mbKZSez489PzaqIfNiI.roa
File: ew9cMG3-mbKZSez489PzaqIfNiI.roa (raw, json)
Hash identifier: nwrMtyCjbsxmzti6vhn6zkoNF6kwYPSrBZE0nKOFhOY=
Subject key identifier: 7B:0F:5C:30:6D:FE:99:B2:99:49:EC:F8:F3:D3:F3:6A:A2:1F:36:22
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0195D231BD96E5A548FBBC20EDB7BDE43893
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/ew9cMG3-mbKZSez489PzaqIfNiI.roa
Signing time: Wed 26 Mar 2025 11:23:49 +0000
ROA not before: Wed 26 Mar 2025 11:23:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.210.168.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Apr 2025 17:15:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d2:31:bd:96:e5:a5:48:fb:bc:20:ed:b7:bd:e4:38:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Mar 26 11:23:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b0f5c306dfe99b29949ecf8f3d3f36aa21f3622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:54:e9:a5:06:d6:2f:ac:22:29:8a:51:93:b0:
c1:07:01:5e:8e:4e:db:25:89:5f:1d:ef:f0:f9:da:
25:d1:db:fb:7b:e7:eb:47:e2:97:03:c4:1d:10:77:
4a:34:0c:82:69:f9:0a:7b:87:af:63:9f:f3:ad:a7:
57:8b:41:b0:c9:d7:b9:a7:34:c8:a8:4e:ea:87:8b:
31:49:59:7b:58:52:ba:66:23:dc:f4:03:6f:42:74:
aa:12:ef:cc:0e:94:4e:81:af:1f:a3:b5:04:64:47:
bf:da:ad:38:de:01:32:f7:b7:0b:b0:fe:19:c1:17:
68:50:5a:cc:52:7c:62:4a:ed:58:ec:b7:a5:8c:17:
7c:b0:08:b6:d3:6b:36:8b:90:ee:f1:43:61:1f:e2:
98:d4:3f:db:a2:d9:f4:02:73:e5:35:c7:d5:4f:0c:
c8:42:cd:90:7a:69:70:c4:1b:14:ba:a3:91:08:9b:
db:35:79:12:61:a9:75:22:b2:fd:9f:90:58:30:a6:
4a:4d:cf:3b:a0:1a:f9:54:31:49:e8:eb:6f:6c:4e:
8c:a6:e2:5a:6b:c1:5b:ae:ec:c4:a5:83:1a:ce:3d:
4b:76:eb:50:20:10:4d:5c:f0:3e:e2:c2:0e:93:c3:
6a:f7:5d:f5:bd:1f:bb:69:51:46:27:8b:96:bf:72:
36:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0F:5C:30:6D:FE:99:B2:99:49:EC:F8:F3:D3:F3:6A:A2:1F:36:22
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/ew9cMG3-mbKZSez489PzaqIfNiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.168.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:87:2b:c1:26:4c:14:78:39:be:43:fd:1f:2d:2a:b8:25:06:
86:2f:79:3f:e3:db:aa:a4:3e:72:4d:55:1d:d8:1a:51:03:e9:
7f:14:f3:ed:01:59:92:a0:91:ea:b0:8d:70:8f:10:fa:43:a5:
e3:93:82:d9:6a:62:bd:be:77:38:f5:6e:4d:e3:22:04:b4:14:
b0:63:06:fa:68:92:0d:04:93:51:0a:93:10:75:79:d1:e9:f8:
59:ef:0f:25:6b:34:78:2d:2e:62:f1:ce:c1:b5:68:ff:30:60:
48:2e:5a:c9:58:72:cd:63:60:77:da:ff:0a:06:4e:e1:0b:69:
ac:b0:e8:3f:c8:8b:06:e8:fe:e3:16:68:cb:11:1c:65:7f:bc:
9a:a0:f3:b8:4e:7b:ab:20:dd:d1:1c:6a:97:9e:10:a5:bd:5e:
f9:34:7c:ae:73:39:4d:f8:52:fc:bc:dc:24:62:74:b9:f8:9e:
83:b3:ee:50:2e:9f:65:f2:37:c7:89:31:ff:3b:54:a2:64:54:
09:11:7b:28:e7:27:e9:02:8f:92:46:e4:42:26:d0:ac:73:fa:
5f:fb:d5:b3:dd:23:19:82:c3:32:c4:19:06:c6:a3:9b:c8:ce:
fd:9d:81:47:41:81:56:d9:26:75:f7:bf:09:1d:22:f0:b3:34:
2d:03:a7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:42:49 2025 by rpki-client