Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Y1X5Xeks3jVbRJ1K73kG_98DviU.roa
File: Y1X5Xeks3jVbRJ1K73kG_98DviU.roa (raw, json)
Hash identifier: K9EYmqP/93bkmrXQ83PqO3Yko9UC1dlV5uJ4I/S+Xig=
Subject key identifier: 63:55:F9:5D:E9:2C:DE:35:5B:44:9D:4A:EF:79:06:FF:DF:03:BE:25
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019ED1A1B707FA3D837900DFB3F506C8AB30
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Y1X5Xeks3jVbRJ1K73kG_98DviU.roa
Signing time: Tue 16 Jun 2026 18:11:36 +0000
ROA not before: Tue 16 Jun 2026 18:11:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 0
IP address blocks: 185.72.10.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
193.124.5.0/24 maxlen: 24
193.124.7.0/24 maxlen: 24
193.124.254.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
194.87.59.0/24 maxlen: 24
194.87.75.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.122.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.152.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.183.0/24 maxlen: 24
194.87.185.0/24 maxlen: 24
194.87.192.0/24 maxlen: 24
194.87.193.0/24 maxlen: 24
194.87.194.0/24 maxlen: 24
194.87.195.0/24 maxlen: 24
194.87.211.0/24 maxlen: 24
194.87.212.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.24.0/23 maxlen: 23
195.133.29.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.40.0/23 maxlen: 23
195.133.50.0/23 maxlen: 23
195.133.57.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.72.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.95.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
212.192.242.0/24 maxlen: 24
212.192.247.0/24 maxlen: 24
212.192.249.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
212.193.26.0/23 maxlen: 23
212.193.28.0/24 maxlen: 24
212.193.31.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 18 Jun 2026 13:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d1:a1:b7:07:fa:3d:83:79:00:df:b3:f5:06:c8:ab:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 16 18:11:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6355f95de92cde355b449d4aef7906ffdf03be25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bb:20:13:69:ee:a5:7e:e3:4d:aa:91:a4:66:
28:37:bd:36:f7:14:40:d4:01:1f:ee:93:66:e4:1c:
e2:30:fc:8c:b6:fa:27:e5:dd:3d:15:86:13:10:e0:
76:19:49:a8:dc:1f:9f:1a:fa:d2:92:7b:a0:4e:8d:
cf:b4:4a:be:9f:27:bb:e1:49:ee:1c:3e:bd:0a:37:
f5:27:9f:7b:13:cb:92:ff:72:50:1d:ce:57:d6:14:
39:cb:2d:f5:fe:dd:f2:9b:21:f6:c4:f8:c3:61:01:
4c:7f:7a:dc:e9:90:d3:d5:bc:a8:94:3f:da:76:b7:
74:ed:cd:c4:b7:23:b4:bf:d2:e0:c2:d0:09:fc:40:
b9:ca:69:fa:45:6b:2e:f9:73:0a:e2:4d:88:99:c9:
78:46:ed:db:b5:ae:86:46:7e:b8:2a:f0:a3:84:7e:
bf:29:89:da:87:65:ff:3a:03:26:1b:39:82:06:cf:
17:e3:77:e2:22:32:8d:62:50:cf:52:09:db:34:09:
4e:0c:d5:3e:43:04:7c:aa:5c:31:cb:2a:85:57:36:
4d:33:ee:af:30:ca:12:ff:3f:73:6f:b4:5d:7a:3e:
ac:8d:d4:ba:a6:a7:b9:0b:a6:08:32:dd:63:6e:ce:
f1:66:40:e7:3a:17:c4:07:cd:19:c4:03:18:62:6d:
42:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:55:F9:5D:E9:2C:DE:35:5B:44:9D:4A:EF:79:06:FF:DF:03:BE:25
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Y1X5Xeks3jVbRJ1K73kG_98DviU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.10.0/24
192.124.183.0/24
192.124.190.0/24
193.124.5.0/24
193.124.7.0/24
193.124.254.0/24
194.58.58.0/24
194.58.67.0/24
194.58.155.0/24
194.87.52.0/23
194.87.59.0/24
194.87.75.0/24
194.87.119.0-194.87.122.255
194.87.126.0/24
194.87.136.0/24
194.87.152.0/24
194.87.176.0/24
194.87.179.0/24
194.87.183.0/24
194.87.185.0/24
194.87.192.0/22
194.87.211.0-194.87.212.255
194.87.229.0/24
194.87.231.0/24
194.135.23.0-194.135.24.255
195.58.55.0/24
195.133.12.0/24
195.133.19.0/24
195.133.24.0/23
195.133.29.0/24
195.133.35.0/24
195.133.40.0/23
195.133.50.0/23
195.133.57.0-195.133.58.255
195.133.72.0/24
195.133.92.0/23
195.133.95.0/24
212.192.210.0/23
212.192.241.0-212.192.242.255
212.192.247.0/24
212.192.249.0/24
212.193.0.0/24
212.193.15.0/24
212.193.26.0-212.193.28.255
212.193.31.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
3d:a5:df:bf:56:3e:05:7e:2d:5f:eb:65:fb:29:49:4e:b9:2f:
66:5a:99:3f:8f:b6:3a:0b:e6:04:6d:7f:21:55:94:06:92:87:
66:b2:07:05:25:d8:05:3a:b6:56:4c:5f:d7:46:20:5d:f5:3e:
34:2e:ea:c6:0d:f2:a5:d7:13:bb:43:74:5e:d3:89:1c:b5:02:
ed:3a:91:64:1d:4c:e4:2b:cf:fc:84:6b:8b:20:a3:90:8d:23:
d6:ca:fb:ee:c2:f8:6f:3b:0e:2f:0a:ff:3c:87:24:6c:14:44:
d5:a2:4a:0d:7c:96:2b:cc:19:ad:c7:82:10:cc:7a:be:d1:c1:
ec:c6:1e:bf:2a:53:05:a4:d3:bc:32:c4:0c:cd:3e:62:67:9d:
fd:1d:67:50:4f:2d:3d:a2:19:55:8e:8e:f5:eb:c9:cb:46:c4:
7d:bc:6e:bf:b4:ae:14:14:18:d6:d2:3a:6b:18:ab:d4:45:8d:
7e:f4:14:f4:9a:be:3a:26:e0:48:fc:67:b5:c7:24:29:3c:bc:
fa:0b:aa:16:a6:77:03:8c:b5:26:c1:ec:6c:c6:b4:02:a2:f6:
b9:ef:ba:0b:60:8e:86:7e:1b:60:91:3d:9d:81:b9:ea:9d:71:
e1:2b:f6:bd:c5:52:94:e8:d4:10:c5:18:92:55:71:61:69:e6:
a5:c6:23:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 16:00:10 2026 by rpki-client