Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/7215e0-9ab8-4a13-a605-31ab32ff7c68/1/DxeXUSUuY2365yBKI2QV9RcjLvI.roa
File: DxeXUSUuY2365yBKI2QV9RcjLvI.roa (raw, json)
Hash identifier: aFN0P18/pkcARUqwELIskofxjvaCGTh6pwaq+6UDd88=
Subject key identifier: 0F:17:97:51:25:2E:63:6D:FA:E7:20:4A:23:64:15:F5:17:23:2E:F2
Certificate issuer: /CN=e1584910124af776e30e5acf055d6bae1761a536
Certificate serial: 01988613DAA7B6E1638D68F1118F4D89E3C4
Authority key identifier: E1:58:49:10:12:4A:F7:76:E3:0E:5A:CF:05:5D:6B:AE:17:61:A5:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VhJEBJK93bjDlrPBV1rrhdhpTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/7215e0-9ab8-4a13-a605-31ab32ff7c68/1/DxeXUSUuY2365yBKI2QV9RcjLvI.roa
Signing time: Thu 07 Aug 2025 19:48:24 +0000
ROA not before: Thu 07 Aug 2025 19:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 95.128.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Aug 2025 20:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:86:13:da:a7:b6:e1:63:8d:68:f1:11:8f:4d:89:e3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1584910124af776e30e5acf055d6bae1761a536
Validity
Not Before: Aug 7 19:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f179751252e636dfae7204a236415f517232ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:18:84:d5:3f:bf:79:82:77:70:f5:3a:c4:c7:
6d:05:a3:f7:84:4b:7b:91:61:1b:8e:73:58:41:33:
b0:9b:6e:9b:43:d4:25:1f:55:e3:7a:10:2d:08:4e:
31:f8:95:e1:dd:9b:eb:6a:ac:6d:d7:e2:c7:95:c8:
5f:54:3a:6b:19:b9:e3:9f:7f:97:c3:01:9d:fb:10:
a8:df:fb:c0:2f:c1:64:63:af:95:af:95:78:05:28:
16:f1:8d:54:ef:50:59:d5:ae:f3:ea:1c:8e:39:b8:
0b:53:e2:63:10:14:be:fb:1f:a6:fc:f8:1d:89:5f:
c2:c7:27:62:9c:58:2a:12:b1:fb:1b:e0:80:57:9a:
01:76:43:d3:97:9b:92:d9:ad:ff:f8:a5:ae:35:21:
9a:78:08:ec:9f:02:51:9a:71:2b:66:18:4f:8a:0b:
61:4c:b1:88:91:30:53:43:3c:8a:5f:82:42:ef:9c:
ba:84:5f:8c:84:79:c1:e9:9e:ad:6d:8d:d4:5a:70:
00:b5:63:5e:84:30:eb:cc:88:04:93:27:c3:83:81:
0c:45:b6:aa:e2:5f:f3:8a:56:cd:48:49:b2:03:c4:
56:a4:fd:1b:f5:68:5a:1f:e3:00:60:22:ab:d5:46:
35:ff:42:f6:7f:5c:64:15:cf:df:1e:9a:b6:c3:61:
3e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:17:97:51:25:2E:63:6D:FA:E7:20:4A:23:64:15:F5:17:23:2E:F2
X509v3 Authority Key Identifier:
keyid:E1:58:49:10:12:4A:F7:76:E3:0E:5A:CF:05:5D:6B:AE:17:61:A5:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VhJEBJK93bjDlrPBV1rrhdhpTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/7215e0-9ab8-4a13-a605-31ab32ff7c68/1/DxeXUSUuY2365yBKI2QV9RcjLvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/7215e0-9ab8-4a13-a605-31ab32ff7c68/1/4VhJEBJK93bjDlrPBV1rrhdhpTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.158.0/24
Signature Algorithm: sha256WithRSAEncryption
35:70:02:73:97:33:9a:92:cb:93:6f:50:b4:76:ec:ab:01:f6:
34:ef:fd:18:a8:4c:05:15:90:6d:6d:e6:c4:c9:bc:50:e8:ce:
fd:2d:cd:7b:b2:1a:1c:13:ce:dc:e1:61:08:6e:8c:ef:fd:5f:
74:80:52:94:c1:3e:14:7d:d4:e0:2b:d9:d1:67:3f:ea:b4:2b:
87:56:78:88:ef:72:62:5d:2f:c2:83:17:d5:3a:23:6f:ea:92:
6b:57:43:97:e1:6a:7b:9f:37:ac:17:6a:5a:b1:f2:30:20:f3:
f5:67:fc:4c:8f:85:1e:4e:66:a9:53:cb:7b:e9:44:29:83:b6:
3a:26:a6:f1:2b:05:eb:b8:5f:92:69:db:b9:ba:9b:4a:a1:bc:
fb:0e:db:2f:3c:09:0d:9e:7a:09:c4:03:4c:48:8d:d6:33:2e:
94:f8:73:22:a8:b2:cb:bf:6b:94:23:d2:ba:2d:53:ea:3f:55:
ae:99:b3:a8:fb:8a:f4:3c:56:7b:82:59:9a:f9:75:b7:6f:6a:
0a:31:82:65:6c:7c:ff:92:62:58:c4:56:1a:77:81:c1:b5:e8:
b6:1d:e5:13:65:bd:b3:4f:4c:a1:23:f4:ed:30:1c:a7:38:99:
7e:07:5a:f5:e3:0a:3c:d8:49:52:26:74:95:0a:c0:eb:a4:22:
6c:11:96:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 31 22:11:15 2025 by rpki-client