Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1ba9a6-f616-4e74-967d-7e7190ffc4c9/1/ZwAZOdGPzjOeHPEWyierxn1hg-0.roa
File: ZwAZOdGPzjOeHPEWyierxn1hg-0.roa (raw, json)
Hash identifier: 9vY5NwKcU2+Gwey2m7C6CTTzF7T+Vv0h3pP4WwvECgA=
Subject key identifier: 67:00:19:39:D1:8F:CE:33:9E:1C:F1:16:CA:27:AB:C6:7D:61:83:ED
Certificate issuer: /CN=3087d2e1cc08a95174bf794e2f2de6e3d03ef82a
Certificate serial: 0196A51220026A80BC6B0BCA4EC2FFDACECD
Authority key identifier: 30:87:D2:E1:CC:08:A9:51:74:BF:79:4E:2F:2D:E6:E3:D0:3E:F8:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MIfS4cwIqVF0v3lOLy3m49A--Co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1ba9a6-f616-4e74-967d-7e7190ffc4c9/1/ZwAZOdGPzjOeHPEWyierxn1hg-0.roa
Signing time: Tue 06 May 2025 10:09:10 +0000
ROA not before: Tue 06 May 2025 10:09:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214790
IP address blocks: 185.223.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 May 2025 08:34:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:12:20:02:6a:80:bc:6b:0b:ca:4e:c2:ff:da:ce:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3087d2e1cc08a95174bf794e2f2de6e3d03ef82a
Validity
Not Before: May 6 10:09:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67001939d18fce339e1cf116ca27abc67d6183ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:94:be:28:47:ad:d4:77:c1:95:59:29:2b:7f:
e1:ee:6a:2e:14:7b:96:54:0c:ae:da:0a:a2:3b:01:
a9:fd:f8:bf:94:22:5a:65:ec:9a:78:16:3a:5e:a4:
da:30:86:24:31:49:7e:46:fc:2e:55:32:e0:fb:ef:
bb:27:50:9d:db:6b:b7:32:e3:c7:9b:de:27:52:ef:
ea:75:a1:22:10:50:d2:3d:54:7a:83:e6:e0:d8:a5:
84:6f:ff:3e:21:d6:b9:e6:b8:94:0a:17:c8:be:02:
1a:ef:5b:d1:a9:3f:28:d1:2d:b8:6a:0c:79:40:87:
64:cc:c1:51:2e:f2:57:fb:21:30:5e:4c:95:83:4c:
c3:53:6c:a4:36:ab:bc:b7:e0:24:60:da:e0:37:6c:
8b:b3:22:ad:16:aa:ee:b8:cc:6c:58:9d:e5:14:d4:
cf:df:9b:f2:24:c2:b9:e5:b0:e1:e6:7d:ae:ea:5d:
56:e6:6f:7c:c5:5d:74:1a:ab:cb:08:5c:3a:90:a2:
ea:22:ef:f1:67:49:25:3c:16:3a:38:5d:3e:98:3d:
87:fb:d6:68:51:39:dd:34:45:7f:2b:1e:36:dd:01:
a0:dc:8d:eb:d5:2b:b0:74:8d:92:40:8b:71:73:57:
db:d7:a3:47:1a:ce:17:c2:f8:8d:f0:0d:a4:51:41:
01:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:00:19:39:D1:8F:CE:33:9E:1C:F1:16:CA:27:AB:C6:7D:61:83:ED
X509v3 Authority Key Identifier:
keyid:30:87:D2:E1:CC:08:A9:51:74:BF:79:4E:2F:2D:E6:E3:D0:3E:F8:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MIfS4cwIqVF0v3lOLy3m49A--Co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1ba9a6-f616-4e74-967d-7e7190ffc4c9/1/ZwAZOdGPzjOeHPEWyierxn1hg-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1ba9a6-f616-4e74-967d-7e7190ffc4c9/1/MIfS4cwIqVF0v3lOLy3m49A--Co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.168.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:51:1f:81:90:3e:71:31:e6:c2:bd:20:37:b0:24:e2:63:f8:
b5:f4:68:52:c7:3c:44:6b:9a:bd:92:1b:c8:3b:a8:54:5e:fe:
04:1f:35:98:74:e7:d7:95:cb:5c:8d:fd:54:29:bf:c6:53:9e:
4a:e4:75:58:00:35:4d:a0:cd:4b:3d:c0:c4:74:ef:72:fe:5d:
ea:e6:3a:14:e8:b5:b6:05:1c:db:19:42:a2:66:36:00:f6:2e:
13:da:e5:f0:af:58:a3:58:6e:fb:1a:18:6e:6d:8a:41:c8:4a:
10:55:90:35:48:ca:d2:71:68:00:a1:29:62:52:20:a1:da:dd:
20:8e:6d:39:04:43:cd:1c:1f:11:ca:b3:43:b5:61:cd:ab:fe:
5c:52:d0:96:12:f5:4d:cb:09:d3:54:0a:eb:ab:9c:7c:95:53:
05:2c:f0:62:37:2d:b7:cc:14:b5:e6:45:70:ad:5d:bb:03:1b:
45:cc:1b:f3:e9:c7:d5:15:ad:ef:4e:9c:11:e6:58:22:b2:3c:
74:25:df:f8:8a:26:30:49:1c:3f:e8:f0:fe:9d:ac:44:02:58:
d2:13:70:7d:b8:9c:c3:84:3b:05:de:82:3e:30:8f:be:b6:c7:
20:94:9e:91:ce:e9:88:cc:3a:d5:8a:00:58:a7:46:27:49:72:
c9:7a:91:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 00:13:30 2025 by rpki-client