Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/RsrQLttakCq0LcNJX1mD-t1KqWc.roa
File: RsrQLttakCq0LcNJX1mD-t1KqWc.roa (raw, json)
Hash identifier: jpeiByKg+DdEl9QhgIfWW0RS57v6nJm011Tr8R+drWw=
Subject key identifier: 46:CA:D0:2E:DB:5A:90:2A:B4:2D:C3:49:5F:59:83:FA:DD:4A:A9:67
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 019E965C471264C6F6C215E29CB9123B4BF6
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/RsrQLttakCq0LcNJX1mD-t1KqWc.roa
Signing time: Fri 05 Jun 2026 05:58:10 +0000
ROA not before: Fri 05 Jun 2026 05:58:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 79.172.250.0/23 maxlen: 24
79.172.250.0/24 maxlen: 24
87.229.8.0/22 maxlen: 22
87.229.8.0/24 maxlen: 24
87.229.11.0/24 maxlen: 24
87.229.35.0/24 maxlen: 24
87.229.37.0/24 maxlen: 24
87.229.80.0/23 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.108.0/24 maxlen: 24
87.229.112.0/24 maxlen: 24
87.229.124.0/23 maxlen: 24
87.229.124.0/24 maxlen: 24
87.229.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jun 2026 07:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:96:5c:47:12:64:c6:f6:c2:15:e2:9c:b9:12:3b:4b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jun 5 05:58:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=46cad02edb5a902ab42dc3495f5983fadd4aa967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3c:c9:25:55:5f:14:cb:aa:00:b3:86:98:66:
05:52:c0:98:bd:38:46:ad:98:3d:22:a8:22:16:fa:
18:20:89:e8:30:10:7d:98:a3:ce:52:bd:bf:99:31:
f1:09:7f:00:b2:27:8b:3c:31:f6:6e:41:5a:9c:1b:
7d:94:22:af:2b:05:cd:ee:0a:7a:8c:31:b2:07:80:
7a:dc:e0:d6:fe:58:43:be:32:65:d6:13:cd:bb:74:
c2:8f:66:85:a3:37:d2:e5:80:5d:80:f2:9a:76:59:
25:d9:42:4a:d2:7a:0a:75:50:74:3e:1f:a0:90:58:
fe:ad:30:81:6b:7f:49:e1:08:d3:24:9c:e8:53:29:
5c:2e:b4:c7:f3:9b:1d:2a:41:3b:d3:e5:b8:74:94:
07:19:1a:5f:c5:c5:45:fc:ce:c0:f9:7e:04:9b:c5:
4e:cf:0c:8b:2c:b0:8e:bf:c7:2c:06:e9:f5:19:bb:
9e:db:15:85:91:da:35:c9:bb:08:fc:6c:dc:4f:97:
33:57:cc:0d:ff:37:c3:a3:5a:d1:3b:8e:98:d7:49:
cb:58:28:73:96:34:a4:23:d1:73:32:ab:bb:88:bc:
2e:bb:3e:d9:3a:cc:ca:8a:51:5c:8a:77:21:d9:fa:
71:5e:3e:1d:f8:95:5f:30:10:7e:3b:49:d1:e0:ea:
16:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CA:D0:2E:DB:5A:90:2A:B4:2D:C3:49:5F:59:83:FA:DD:4A:A9:67
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/RsrQLttakCq0LcNJX1mD-t1KqWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.250.0/23
87.229.8.0/22
87.229.35.0/24
87.229.37.0/24
87.229.80.0/23
87.229.108.0/24
87.229.112.0/24
87.229.124.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:04:aa:8a:53:52:0c:4d:b0:1f:51:9c:5d:d7:85:cd:78:97:
7c:36:8f:aa:16:5d:04:e3:2e:d9:6e:1f:75:6d:ec:94:f2:c0:
7e:c7:84:9b:aa:d7:61:5b:5f:7d:84:b2:11:93:37:09:4b:22:
79:1b:23:69:ae:be:5a:f0:b8:e4:54:43:a0:03:dd:6f:c7:57:
e2:ba:23:5b:53:9e:3a:7e:d2:73:23:35:e5:a8:c8:97:83:0f:
2a:e7:bc:d2:16:4b:d0:9f:b7:29:43:5c:d9:c4:16:d3:1b:9c:
a1:d5:11:43:aa:38:03:99:1b:1a:8e:69:1f:4e:d4:1c:48:ca:
c4:e8:5f:33:7a:3b:c2:fb:e6:08:01:a1:68:c5:df:02:19:3e:
5c:b1:95:a5:34:6c:de:82:3e:d7:05:0e:45:cf:c8:ec:a2:fe:
6b:57:aa:a4:45:0e:31:04:19:62:df:8c:42:87:c1:5a:ba:0e:
7c:18:33:45:80:d5:7e:61:4f:9d:76:de:69:f6:30:ee:fc:ef:
c0:1e:ba:23:0e:f1:bd:64:af:c5:67:b8:fa:0f:96:a7:f0:74:
d7:c4:42:e7:18:82:fc:5a:38:78:6c:c7:65:6b:bc:01:66:cd:
67:53:45:70:aa:da:44:39:60:7b:25:74:6b:f0:0d:70:f5:37:
a1:68:73:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 21:04:57 2026 by rpki-client