Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/5YCEz7wQlyW7N8bxB7YO3bMjCgU.roa
File: 5YCEz7wQlyW7N8bxB7YO3bMjCgU.roa (raw, json)
Hash identifier: Czp7MyApymf9pTsgW5mMnsq4PU7x32iguiFCSCsn3Cs=
Subject key identifier: E5:80:84:CF:BC:10:97:25:BB:37:C6:F1:07:B6:0E:DD:B3:23:0A:05
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 019EC26E572CDC52DB7AE033D34841AC560F
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/5YCEz7wQlyW7N8bxB7YO3bMjCgU.roa
Signing time: Sat 13 Jun 2026 19:21:11 +0000
ROA not before: Sat 13 Jun 2026 19:21:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 0
IP address blocks: 185.115.163.0/24 maxlen: 24
2001:3280::/29 maxlen: 32
2001:3380::/29 maxlen: 29
2a0e:a780::/29 maxlen: 32
2a13:8000::/29 maxlen: 32
2a13:b840::/29 maxlen: 32
2a13:bfc0::/29 maxlen: 29
2a13:c040::/29 maxlen: 29
2a13:d2c7::/32 maxlen: 32
2a13:ddc0::/29 maxlen: 29
2a13:de40::/29 maxlen: 29
2a14:6b40::/29 maxlen: 29
2a14:6bc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Jun 2026 16:53:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:6e:57:2c:dc:52:db:7a:e0:33:d3:48:41:ac:56:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Jun 13 19:21:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e58084cfbc109725bb37c6f107b60eddb3230a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:67:c9:a9:79:ed:7e:e4:b5:8c:c2:f3:23:5e:
f0:4d:6f:33:b5:36:f7:22:b6:85:dc:91:04:5f:c1:
e4:0b:63:da:cb:a8:96:8f:f4:02:bb:56:5d:68:b8:
64:60:21:74:71:aa:32:6d:e4:58:a8:19:14:d6:11:
a7:8f:40:b1:40:26:df:94:90:bd:9f:d2:e2:01:1f:
90:88:20:b7:72:85:e8:c8:c7:86:ab:28:42:49:72:
91:dc:c7:6d:f3:f3:5d:74:c9:bf:16:29:f5:bf:11:
07:c3:ab:d4:79:b3:21:b1:b3:7a:a1:d8:1b:97:4f:
4a:7e:9f:af:81:3c:ca:f7:2d:97:ea:f6:be:02:7d:
c2:be:e8:de:bb:10:1b:4c:fc:9e:a0:d5:58:1a:e0:
ba:05:d2:38:94:84:3a:15:24:58:2f:14:85:81:54:
eb:5d:67:eb:ee:cb:0b:3e:65:57:cf:49:01:6e:23:
9d:00:d3:78:45:90:74:f2:79:bc:ea:00:c5:ca:68:
da:e6:a4:fe:26:fc:b0:8c:64:62:1a:56:28:c0:97:
fc:11:d7:2a:ad:25:8d:25:55:3f:29:56:7e:7a:35:
39:05:26:6a:18:ca:24:3b:e0:62:07:5d:43:f2:50:
59:c6:bc:4c:11:67:d1:15:aa:93:34:a9:d2:2f:40:
c2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:80:84:CF:BC:10:97:25:BB:37:C6:F1:07:B6:0E:DD:B3:23:0A:05
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/5YCEz7wQlyW7N8bxB7YO3bMjCgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.163.0/24
IPv6:
2001:3280::/29
2001:3380::/29
2a0e:a780::/29
2a13:8000::/29
2a13:b840::/29
2a13:bfc0::/29
2a13:c040::/29
2a13:d2c7::/32
2a13:ddc0::/29
2a13:de40::/29
2a14:6b40::/29
2a14:6bc0::/32
Signature Algorithm: sha256WithRSAEncryption
a6:58:f7:39:2e:46:5f:0e:6e:29:8a:64:61:9e:31:9e:6c:32:
93:54:82:a8:04:54:8b:3a:11:0c:c5:b6:72:27:05:cf:4d:a5:
5f:53:b1:70:c7:b8:37:f6:c0:22:db:0c:cd:41:c4:53:53:81:
83:6f:c8:45:37:f3:35:1f:f9:a8:eb:e7:9a:b7:58:7d:d0:26:
89:b6:09:81:8f:67:ce:0f:e6:3e:70:25:9f:df:21:a0:47:8a:
1e:1c:c5:1c:d8:35:73:f6:77:9b:fe:4a:63:70:8d:52:af:0b:
3d:9b:60:c9:4b:0b:c8:70:4e:f5:86:d6:60:83:6b:9e:e7:0e:
6e:4c:0d:a9:16:ef:c9:d5:0d:67:88:45:e8:db:f5:1d:09:0e:
b1:53:c2:6d:f9:a9:b3:a0:37:84:69:6e:1c:65:0b:71:73:ec:
25:9e:4e:0a:b6:70:41:5e:64:07:f2:8c:bc:b0:8a:9c:b8:a5:
d8:4f:0d:18:fe:c4:17:88:ba:e9:59:d8:1e:1a:fc:bf:a5:66:
52:78:94:c9:49:91:15:1a:cf:52:11:30:57:5d:aa:3b:53:9f:
0c:a0:05:f4:7e:a8:79:37:70:7b:ec:c6:30:7b:53:ee:58:3d:
30:45:56:48:de:42:15:34:0b:38:dc:52:33:43:9e:ac:37:9b:
42:36:7a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 16:00:12 2026 by rpki-client