Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/5i8A75WbRqggc_pbj5cu9MmOnds.roa
File: 5i8A75WbRqggc_pbj5cu9MmOnds.roa (raw, json)
Hash identifier: iiwIoBBDA/m5a5jVvcAcLmZWpXByluRBQr/rdXmZv7Q=
Subject key identifier: E6:2F:00:EF:95:9B:46:A8:20:73:FA:5B:8F:97:2E:F4:C9:8E:9D:DB
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 019E419188C1E607CDBDA7224E2CDC625C6A
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/5i8A75WbRqggc_pbj5cu9MmOnds.roa
Signing time: Tue 19 May 2026 18:48:37 +0000
ROA not before: Tue 19 May 2026 18:48:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 207957
IP address blocks: 2.26.8.0/24 maxlen: 24
2.26.9.0/24 maxlen: 24
2.26.10.0/24 maxlen: 24
2.26.11.0/24 maxlen: 24
2.26.88.0/24 maxlen: 24
2.26.89.0/24 maxlen: 24
2.26.90.0/24 maxlen: 24
2.26.91.0/24 maxlen: 24
2.26.92.0/24 maxlen: 24
2.26.93.0/24 maxlen: 24
31.76.114.0/24 maxlen: 24
64.188.89.0/24 maxlen: 24
64.188.90.0/24 maxlen: 24
64.188.98.0/24 maxlen: 24
64.188.127.0/24 maxlen: 24
77.239.107.0/24 maxlen: 24
144.31.15.0/24 maxlen: 24
144.31.49.0/24 maxlen: 24
144.31.50.0/24 maxlen: 24
144.31.51.0/24 maxlen: 24
144.31.57.0/24 maxlen: 24
144.31.82.0/24 maxlen: 24
144.31.83.0/24 maxlen: 24
144.31.93.0/24 maxlen: 24
144.31.103.0/24 maxlen: 24
144.31.107.0/24 maxlen: 24
144.31.108.0/24 maxlen: 24
144.31.109.0/24 maxlen: 24
144.31.213.0/24 maxlen: 24
144.31.214.0/24 maxlen: 24
144.31.216.0/24 maxlen: 24
144.31.217.0/24 maxlen: 24
144.31.218.0/24 maxlen: 24
144.31.219.0/24 maxlen: 24
144.31.239.0/24 maxlen: 24
144.31.240.0/24 maxlen: 24
144.31.241.0/24 maxlen: 24
144.31.242.0/24 maxlen: 24
144.31.243.0/24 maxlen: 24
144.31.249.0/24 maxlen: 24
150.241.72.0/24 maxlen: 24
150.241.73.0/24 maxlen: 24
150.241.74.0/24 maxlen: 24
150.241.75.0/24 maxlen: 24
150.241.82.0/24 maxlen: 24
150.241.83.0/24 maxlen: 24
150.241.100.0/24 maxlen: 24
150.241.101.0/24 maxlen: 24
150.241.102.0/24 maxlen: 24
150.241.103.0/24 maxlen: 24
185.170.153.0/24 maxlen: 24
185.170.154.0/24 maxlen: 24
193.23.195.0/24 maxlen: 24
193.23.200.0/24 maxlen: 24
193.23.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 May 2026 21:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:41:91:88:c1:e6:07:cd:bd:a7:22:4e:2c:dc:62:5c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: May 19 18:48:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e62f00ef959b46a82073fa5b8f972ef4c98e9ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c7:64:cd:5c:a4:44:af:a3:87:27:d2:54:db:
7e:d2:a4:73:ee:30:dd:3d:35:8e:83:45:98:16:1c:
13:b1:73:d3:46:7c:d0:82:eb:28:69:70:9b:99:d8:
a5:e9:33:cd:28:e5:51:27:87:d7:e9:b2:bf:bd:ca:
6d:e3:5e:f7:b3:81:70:a9:58:d7:cd:ea:d9:d4:6f:
ac:49:1a:1b:cd:c5:e3:9c:33:80:bc:71:b2:04:bd:
d9:0d:a2:4f:75:42:02:ac:fb:42:62:eb:44:8d:f0:
1f:7a:2d:cc:f2:20:fd:3b:04:dd:39:b0:b2:59:ca:
fa:df:70:ef:5d:b5:d1:c1:f8:65:26:6f:e8:1d:e5:
b8:ce:55:f4:38:18:e6:0e:37:55:2c:1a:0c:62:b3:
82:23:3f:77:95:6c:64:25:6a:5d:81:e8:0b:ea:e0:
01:da:28:d8:ff:d6:02:7f:c8:f5:ee:50:1b:9f:c6:
f2:b1:75:ec:7b:da:a9:2d:37:9a:69:22:59:65:74:
82:70:50:af:ef:6f:a6:44:02:25:37:45:03:5c:70:
0b:ee:e5:9c:59:c7:46:77:be:1f:01:65:c1:63:e6:
75:d5:40:ee:34:b2:25:48:fe:b8:8a:3c:6f:26:0f:
86:e6:c3:b7:9f:83:25:d9:37:27:df:15:c1:d8:c2:
5d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2F:00:EF:95:9B:46:A8:20:73:FA:5B:8F:97:2E:F4:C9:8E:9D:DB
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/5i8A75WbRqggc_pbj5cu9MmOnds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.26.8.0/22
2.26.88.0-2.26.93.255
31.76.114.0/24
64.188.89.0-64.188.90.255
64.188.98.0/24
64.188.127.0/24
77.239.107.0/24
144.31.15.0/24
144.31.49.0-144.31.51.255
144.31.57.0/24
144.31.82.0/23
144.31.93.0/24
144.31.103.0/24
144.31.107.0-144.31.109.255
144.31.213.0-144.31.214.255
144.31.216.0/22
144.31.239.0-144.31.243.255
144.31.249.0/24
150.241.72.0/22
150.241.82.0/23
150.241.100.0/22
185.170.153.0-185.170.154.255
193.23.195.0/24
193.23.200.0/24
193.23.202.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:ea:13:c7:a0:08:4a:5b:a8:12:34:a1:bf:d1:9b:61:60:2e:
4d:1f:b0:e1:88:98:31:ea:01:26:b9:97:ef:27:eb:b9:e4:52:
06:0b:a9:af:9b:5e:8a:16:25:f2:21:09:2b:59:e2:07:47:48:
8a:85:5a:be:24:20:c9:a9:6b:71:c5:14:e8:3a:a9:3f:f4:8e:
07:0f:b2:0b:8f:02:75:fd:11:7a:91:fd:e7:12:ef:ce:33:ec:
6c:03:09:d9:c7:a2:84:65:8b:72:3e:cf:12:b0:c5:59:10:dc:
ac:64:80:b9:52:a4:b5:e7:47:64:18:42:6e:d0:c4:a0:47:5d:
3d:fc:e8:d8:f8:c4:36:a7:43:99:40:b2:44:28:2f:ec:c3:66:
fe:94:fe:26:e5:25:25:3c:8a:97:bc:58:96:e0:20:90:da:6f:
d4:2f:6f:a1:b1:95:36:17:6c:c3:bb:3b:d8:0f:aa:1d:92:79:
b5:f1:1d:78:cc:f3:76:82:17:1e:6d:44:a9:02:39:c6:6c:37:
ef:62:38:b0:55:de:ea:73:87:45:6d:2b:29:df:11:7e:bc:13:
60:59:d3:ae:5f:62:8d:15:1f:2d:88:06:da:5d:ff:0d:a9:35:
e1:6b:e0:e7:3e:e0:83:b9:46:4e:92:ec:f9:e7:bb:59:f4:a9:
de:1a:43:31
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat May 30 17:52:49 2026 by rpki-client