Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/byd296vyTRgCwvYYqVe6LbV5Cjg.roa
File: byd296vyTRgCwvYYqVe6LbV5Cjg.roa (raw, json)
Hash identifier: MrC6APZfgG5jfmlL+u0dvqdqanfj1apY4maU2PVHIwQ=
Subject key identifier: 6F:27:76:F7:AB:F2:4D:18:02:C2:F6:18:A9:57:BA:2D:B5:79:0A:38
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 019DF1EDD6E4DA2CBB5A19E03B56BF1A5EA3
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/byd296vyTRgCwvYYqVe6LbV5Cjg.roa
Signing time: Mon 04 May 2026 07:39:49 +0000
ROA not before: Mon 04 May 2026 07:39:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213529
IP address blocks: 77.90.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 May 2026 21:39:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f1:ed:d6:e4:da:2c:bb:5a:19:e0:3b:56:bf:1a:5e:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 4 07:39:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6f2776f7abf24d1802c2f618a957ba2db5790a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:18:0f:13:f6:b8:a0:8b:53:ac:aa:fb:55:c0:
18:a2:11:7c:4b:58:4a:75:f3:5b:c1:74:26:c0:97:
4c:19:ea:90:ec:3f:74:2b:35:f6:4f:72:11:96:28:
fa:07:07:3d:61:49:b6:28:0c:5d:33:f5:dd:2b:ce:
5e:eb:9f:01:4c:86:92:9e:4d:0f:f0:f0:42:de:4f:
d5:06:6c:88:e0:81:d5:02:a6:8a:26:03:9d:4d:0d:
9e:a0:8b:84:ee:eb:20:72:55:9b:29:5d:98:81:5d:
d0:f9:28:eb:40:38:c8:b7:ec:b3:d2:7c:f3:4b:f6:
c7:83:1c:d6:b3:6b:18:80:32:55:59:14:d1:b6:05:
a6:1f:0f:9d:20:f3:02:2e:f6:9c:59:45:85:c7:6d:
b2:1a:e2:a1:d9:d6:d3:68:63:57:2f:aa:40:76:f5:
5f:43:9b:6f:b6:ba:25:a0:83:49:00:5e:cc:28:15:
99:9e:63:0a:1b:3a:ab:52:2b:5d:d6:0d:65:84:a8:
db:77:ab:b7:48:35:b9:09:9e:30:40:71:fc:8c:c9:
94:7b:8e:76:6d:95:30:41:b5:1f:82:86:68:3f:52:
90:3d:88:2b:1c:d5:57:b9:8a:08:92:f3:c0:03:d3:
93:78:18:16:20:7e:20:33:fb:1c:21:59:e4:86:49:
aa:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:27:76:F7:AB:F2:4D:18:02:C2:F6:18:A9:57:BA:2D:B5:79:0A:38
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/byd296vyTRgCwvYYqVe6LbV5Cjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.183.0/24
Signature Algorithm: sha256WithRSAEncryption
92:68:59:aa:c5:7c:f2:51:cc:2d:dc:ce:19:6e:21:dc:43:4b:
00:cd:3b:e4:d6:a4:4a:b6:af:08:13:1f:27:c2:ae:81:37:56:
34:6d:68:63:e6:67:b4:46:2b:17:db:97:a1:55:b2:fe:23:8d:
36:4f:89:4d:ec:5c:12:c1:05:fc:cb:22:01:88:8f:a0:18:1d:
23:64:be:8d:2c:11:be:27:51:c7:82:5d:d8:3c:20:44:b0:af:
b5:3d:20:6e:34:cb:48:ee:d4:18:0f:cf:a5:8d:57:18:97:a2:
e4:8b:62:f7:72:d0:30:5b:2f:de:aa:e4:72:e1:c9:60:6b:87:
bc:4a:de:6f:8b:00:0a:e3:dd:10:74:a0:e5:28:0f:2e:58:fc:
37:18:92:04:01:46:25:5a:63:9f:31:d8:63:e9:50:67:a6:01:
73:1d:bc:85:6f:5a:4f:60:2e:d3:44:3b:2a:e9:d8:1c:0f:ea:
c3:44:62:04:29:00:cb:de:f5:bf:86:68:a2:7c:ad:66:83:18:
d5:4e:4c:4d:30:ae:ee:28:82:d0:dc:b5:26:80:f1:9b:21:01:
30:ad:10:7b:f7:19:2e:97:40:08:90:37:c2:d0:65:1b:92:87:
81:80:43:f3:56:99:8b:6a:d1:aa:0b:92:c3:ca:e4:9f:35:5c:
38:c8:ea:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 25 01:52:08 2026 by rpki-client