Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Gjd5N_Qx6ofcgXA4llaB94qNpic.roa
File: Gjd5N_Qx6ofcgXA4llaB94qNpic.roa (raw, json)
Hash identifier: marNjXL+qF+8IGH2vnRcd5MU66Ny/xqSFDWAIPckPw0=
Subject key identifier: 1A:37:79:37:F4:31:EA:87:DC:81:70:38:96:56:81:F7:8A:8D:A6:27
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019CD49DA45CD28C43DEFB3ADFABA569DB7D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Gjd5N_Qx6ofcgXA4llaB94qNpic.roa
Signing time: Mon 09 Mar 2026 22:00:26 +0000
ROA not before: Mon 09 Mar 2026 22:00:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215026
IP address blocks: 5.180.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Mar 2026 09:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d4:9d:a4:5c:d2:8c:43:de:fb:3a:df:ab:a5:69:db:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Mar 9 22:00:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1a377937f431ea87dc817038965681f78a8da627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e7:fe:b5:c1:89:70:55:10:70:d1:06:d5:fc:
6d:f4:c1:d5:99:c0:86:21:ed:04:39:e2:4d:38:ed:
91:60:bd:39:af:f2:73:d2:6a:98:dd:ed:0e:09:ff:
9b:22:ba:ec:27:62:58:49:ca:b7:71:c5:3d:b0:ab:
98:53:41:e0:a0:9f:cd:cb:3f:d8:bf:cf:51:95:86:
aa:73:2b:3e:c5:3a:d2:c5:f2:11:de:9d:19:25:f8:
48:ef:0c:25:ff:c9:3a:03:17:e7:aa:d3:9e:86:55:
36:99:83:8c:63:19:17:8b:9c:33:e1:0b:98:20:7f:
f7:6f:ab:3a:55:e1:d2:e5:a4:5c:c5:51:9a:b7:cc:
97:d7:8e:96:7f:8b:75:58:d5:99:c6:ff:ab:63:54:
b8:34:c7:fc:db:bf:ea:63:33:28:57:05:e9:38:eb:
c6:31:25:4c:ac:47:c4:d0:a6:00:df:be:d2:43:d1:
54:83:b9:84:cc:cd:d7:79:59:27:d2:ac:95:29:da:
30:31:10:2c:e6:82:d9:18:a7:3e:d5:d0:ee:14:80:
73:77:47:28:54:99:57:70:ae:58:26:13:49:68:c8:
6c:d6:26:91:04:b0:43:e0:69:06:74:3b:14:ae:08:
15:d4:5f:38:dd:7f:29:8f:96:6c:64:01:69:be:e1:
ce:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:37:79:37:F4:31:EA:87:DC:81:70:38:96:56:81:F7:8A:8D:A6:27
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Gjd5N_Qx6ofcgXA4llaB94qNpic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.34.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:db:ef:02:08:5e:db:d7:23:51:e1:61:8c:31:39:0e:44:ca:
29:f4:60:af:7f:a3:4e:66:be:2c:2f:09:1d:ac:d6:2e:78:6e:
1a:1f:3d:ee:dc:49:73:87:a4:af:74:af:ab:4e:58:31:a6:30:
77:ac:e0:91:39:1e:98:73:8f:75:d9:7c:f9:0c:ed:83:d2:5e:
2a:bc:91:cd:89:f8:6e:a4:2d:b2:64:ae:f4:50:a0:62:c2:23:
6a:42:3a:e7:5f:96:47:04:db:c7:54:c1:d9:f9:ff:13:6e:1e:
ff:8d:38:f2:05:04:c1:4f:ae:26:80:14:a3:69:34:07:0f:85:
5a:84:c9:59:db:d2:79:2d:4b:be:58:cb:76:09:50:16:1a:ee:
77:85:c3:d3:f3:9d:1e:8f:c4:02:9e:8e:64:33:56:f3:0c:f9:
4b:11:78:41:43:21:c2:89:1c:0b:2e:6f:34:c6:ff:4e:8e:56:
fb:6b:51:11:90:8a:2c:6f:1b:88:62:8d:25:1c:49:ca:e6:09:
2a:05:b8:be:dd:60:af:6a:fa:bf:21:d9:fc:9f:9b:db:e1:e9:
ec:b7:9f:79:2d:93:74:af:8b:18:2a:90:35:63:f2:65:28:0e:
b2:f4:60:e4:e7:20:bf:09:54:97:96:fd:f3:73:ed:ce:1d:da:
39:de:be:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZzUnaRc0oxD3vs636uladt9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjYwMzA5MjIwMDI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTM3NzkzN2Y0MzFlYTg3ZGM4MTcwMzg5NjU2ODFmNzhhOGRhNjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzef+tcGJcFUQcNEG1fxt9MHVmcCG
Ie0EOeJNOO2RYL05r/Jz0mqY3e0OCf+bIrrsJ2JYScq3ccU9sKuYU0HgoJ/Nyz/Y
v89RlYaqcys+xTrSxfIR3p0ZJfhI7wwl/8k6AxfnqtOehlU2mYOMYxkXi5wz4QuY
IH/3b6s6VeHS5aRcxVGat8yX146Wf4t1WNWZxv+rY1S4NMf827/qYzMoVwXpOOvG
MSVMrEfE0KYA377SQ9FUg7mEzM3XeVkn0qyVKdowMRAs5oLZGKc+1dDuFIBzd0co
VJlXcK5YJhNJaMhs1iaRBLBD4GkGdDsUrggV1F843X8pj5ZsZAFpvuHO+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBo3eTf0MeqH3IFwOJZWgfeKjaYnMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvR2pkNU5fUXg2b2ZjZ1hBNGxsYUI5NHFOcGljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbQiMA0G
CSqGSIb3DQEBCwUAA4IBAQCp2+8CCF7b1yNR4WGMMTkORMop9GCvf6NOZr4sLwkd
rNYueG4aHz3u3Elzh6SvdK+rTlgxpjB3rOCROR6Yc4912Xz5DO2D0l4qvJHNifhu
pC2yZK70UKBiwiNqQjrnX5ZHBNvHVMHZ+f8Tbh7/jTjyBQTBT64mgBSjaTQHD4Va
hMlZ29J5LUu+WMt2CVAWGu53hcPT850ej8QCno5kM1bzDPlLEXhBQyHCiRwLLm80
xv9Ojlb7a1ERkIosbxuIYo0lHEnK5gkqBbi+3WCvavq/Idn8n5vb4enst595LZN0
r4sYKpA1Y/JlKA6y9GDk5yC/CVSXlv3zc+3OHdo53r7F
-----END CERTIFICATE-----
Generated at Fri Apr 17 03:06:48 2026 by rpki-client