Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/7KFpOeO6JJ4qAewKY8P3xH7XGow.roa
File: 7KFpOeO6JJ4qAewKY8P3xH7XGow.roa (raw, json)
Hash identifier: 2CB0GHBLVkMvbxMo2fgb7ucPp7WK0oCwR8QwgfMrTbM=
Subject key identifier: EC:A1:69:39:E3:BA:24:9E:2A:01:EC:0A:63:C3:F7:C4:7E:D7:1A:8C
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 019CA8E37D77877D36A0F6E1582E03DC3390
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/7KFpOeO6JJ4qAewKY8P3xH7XGow.roa
Signing time: Sun 01 Mar 2026 10:13:26 +0000
ROA not before: Sun 01 Mar 2026 10:13:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 79.172.192.0/24 maxlen: 24
79.172.193.0/24 maxlen: 24
79.172.200.0/23 maxlen: 24
79.172.214.0/24 maxlen: 24
79.172.242.0/24 maxlen: 24
79.172.250.0/23 maxlen: 24
87.229.8.0/22 maxlen: 22
87.229.8.0/24 maxlen: 24
87.229.11.0/24 maxlen: 24
87.229.25.0/24 maxlen: 24
87.229.35.0/24 maxlen: 24
87.229.37.0/24 maxlen: 24
87.229.40.0/24 maxlen: 24
87.229.52.0/24 maxlen: 24
87.229.56.0/24 maxlen: 24
87.229.64.0/24 maxlen: 24
87.229.80.0/23 maxlen: 24
87.229.112.0/24 maxlen: 24
87.229.124.0/23 maxlen: 24
87.229.124.0/24 maxlen: 24
87.229.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Mar 2026 18:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:e3:7d:77:87:7d:36:a0:f6:e1:58:2e:03:dc:33:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Mar 1 10:13:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=eca16939e3ba249e2a01ec0a63c3f7c47ed71a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c3:bb:54:f6:ee:5f:9d:64:2c:b0:0d:01:de:
64:b3:e6:cf:eb:2f:16:44:69:69:64:85:29:14:cb:
e4:db:53:b5:49:b8:51:72:f1:e1:cb:6e:ab:1f:dc:
22:8d:a4:62:3a:b3:54:a0:af:a3:0a:84:4a:06:63:
b0:b3:3a:f9:cf:8e:07:8f:f0:3f:e6:3c:dd:d8:cb:
45:97:a9:ac:b8:92:9b:07:b3:3f:02:e9:e1:d0:a2:
d5:d3:f3:b9:3b:9e:71:63:ee:69:46:34:e6:e4:93:
0f:e8:f8:91:62:c4:64:87:55:c0:a6:b4:dd:ca:cb:
ab:1f:ab:e1:96:4e:39:c2:32:a9:c4:92:73:a9:8f:
3b:83:66:a3:68:26:48:c1:97:be:d9:99:8a:87:c7:
f4:c4:e8:ea:27:b3:c5:2f:e5:ca:40:39:ef:14:2f:
41:4d:26:25:98:5f:13:21:9f:32:6d:4c:9f:90:a0:
3c:30:73:3f:05:4f:cf:9e:d6:81:6a:84:42:60:07:
ae:61:9b:06:5b:bb:e3:95:da:92:2e:3e:3c:c9:44:
16:c8:c3:fb:70:86:6f:6b:1e:ab:f4:43:8c:47:17:
92:68:b4:10:2a:2e:40:e7:9a:77:68:0d:58:eb:4d:
cd:97:f7:ec:11:48:9c:d6:74:f2:df:f7:b7:56:3c:
f9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A1:69:39:E3:BA:24:9E:2A:01:EC:0A:63:C3:F7:C4:7E:D7:1A:8C
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/7KFpOeO6JJ4qAewKY8P3xH7XGow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.192.0/23
79.172.200.0/23
79.172.214.0/24
79.172.242.0/24
79.172.250.0/23
87.229.8.0/22
87.229.25.0/24
87.229.35.0/24
87.229.37.0/24
87.229.40.0/24
87.229.52.0/24
87.229.56.0/24
87.229.64.0/24
87.229.80.0/23
87.229.112.0/24
87.229.124.0/23
Signature Algorithm: sha256WithRSAEncryption
09:76:0d:b1:58:53:35:3a:d5:ea:41:8d:2e:d3:1a:30:79:ad:
3b:a3:a4:62:3b:66:cc:9f:e8:1c:0b:8f:3d:00:b9:43:10:d6:
db:73:8b:a4:e1:a3:15:fb:4c:4a:71:06:1c:c4:8b:ab:27:74:
25:d7:82:6a:70:f7:59:0f:38:4f:91:1c:a8:17:40:20:66:6e:
de:53:f6:81:87:e4:d2:c7:1c:fc:99:f6:b6:64:52:ca:95:77:
26:78:47:27:f0:e0:2e:2c:ea:00:b1:de:8a:21:85:1f:33:0b:
4c:0d:58:82:1b:eb:bf:b0:87:21:99:11:57:e0:05:4d:fa:ca:
4c:ee:d6:2e:61:fe:dd:4a:80:85:cb:44:06:65:66:e7:34:a4:
0c:c9:d4:93:04:07:18:a8:07:60:6d:09:49:80:43:66:0e:df:
2f:6a:49:b0:a5:26:30:82:55:56:ba:cd:02:19:79:cb:3e:e5:
33:29:cb:20:e0:11:a5:dd:0c:50:16:c8:e6:ff:39:ed:11:5a:
a5:30:f8:f0:6c:52:7f:e5:ff:97:f6:fb:58:69:c6:c6:62:c4:
46:ce:f2:1f:34:ed:ac:38:ce:b9:fa:49:3d:86:90:a8:3b:d1:
03:55:42:0e:df:43:48:10:03:7c:49:ad:28:7d:de:fd:f1:50:
cf:8e:06:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:06:07 2026 by rpki-client