Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/WtD7LkqSKjGJGi9OPIRfYghF1Wo.roa
File: WtD7LkqSKjGJGi9OPIRfYghF1Wo.roa (raw, json)
Hash identifier: HEkAQZlO6ihvKD4u1q3OE5WFx7Me3sLLhk0a6/hEJn8=
Subject key identifier: 5A:D0:FB:2E:4A:92:2A:31:89:1A:2F:4E:3C:84:5F:62:08:45:D5:6A
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 019D86CBDDC047F3D754698510BDE3944DEF
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/WtD7LkqSKjGJGi9OPIRfYghF1Wo.roa
Signing time: Mon 13 Apr 2026 12:23:20 +0000
ROA not before: Mon 13 Apr 2026 12:23:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 395470
IP address blocks: 87.229.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Apr 2026 09:38:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:86:cb:dd:c0:47:f3:d7:54:69:85:10:bd:e3:94:4d:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Apr 13 12:23:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5ad0fb2e4a922a31891a2f4e3c845f620845d56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c1:64:fb:bd:26:fa:ec:78:f8:0a:33:5f:26:
3d:48:1f:ed:cc:95:09:50:79:9d:17:84:98:ca:73:
92:42:d4:f9:a9:01:58:28:c1:f7:93:52:71:94:a7:
08:e0:0f:17:99:b4:df:e1:e1:be:6a:52:d7:0f:0c:
86:82:8e:7d:5d:d4:c9:a4:66:ab:d7:f0:65:0f:3a:
2f:c1:c2:6b:af:b8:1c:4b:d3:88:bf:89:f0:dc:97:
1a:02:d5:9a:aa:8f:b4:23:44:68:93:29:70:3f:79:
d2:83:f8:99:54:f7:d9:3a:6a:e4:c4:ef:e8:e6:4c:
4e:25:88:cf:17:22:e8:86:79:69:e1:5a:49:be:b2:
65:45:af:ec:15:6b:9c:13:e1:62:2d:6c:61:d9:2d:
12:89:5c:95:a0:da:39:17:85:55:83:28:ae:02:77:
de:7b:c1:17:d6:d2:89:1f:76:44:f8:ee:a9:83:d7:
88:75:e3:7d:11:b3:e5:98:d6:d7:66:a6:e8:3b:3a:
0c:f2:d7:c2:92:c5:5d:15:83:09:fb:1d:22:dc:42:
a1:fa:80:aa:d7:aa:91:c0:bb:b4:51:63:58:04:8f:
1a:f9:36:8f:b9:b8:59:17:fb:7e:2d:7e:f9:f8:65:
c1:62:f7:01:59:e3:a4:13:fe:0c:42:e9:b9:9c:05:
87:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D0:FB:2E:4A:92:2A:31:89:1A:2F:4E:3C:84:5F:62:08:45:D5:6A
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/WtD7LkqSKjGJGi9OPIRfYghF1Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.108.0/24
Signature Algorithm: sha256WithRSAEncryption
49:16:73:bd:41:5d:fd:93:2e:10:80:87:b8:7c:bc:6a:23:5e:
a4:ee:91:d8:04:9a:82:ae:0d:56:a7:76:30:f6:da:12:40:28:
07:b3:9e:b5:dc:58:79:40:2b:fd:64:7e:9e:61:fb:23:99:b9:
21:79:83:80:0c:73:a4:97:a6:70:be:1a:94:59:a9:95:55:c8:
2a:cb:ef:a2:6c:db:58:76:71:6f:18:7b:06:4c:ff:ff:45:71:
37:0d:0c:70:0c:dc:57:51:3d:2c:86:97:3d:1f:d6:78:c9:5a:
16:6d:95:bc:7e:4c:19:89:3c:cd:ac:13:1b:bc:c6:66:47:6f:
cb:67:d9:61:a7:61:7a:15:c5:c6:7e:21:3a:3c:17:07:ba:cf:
cb:c1:7c:cc:1d:d6:77:1f:08:55:9a:c4:c8:55:ac:53:bb:0c:
71:cb:af:45:76:69:16:95:05:99:11:0b:96:fa:cd:d7:cd:fe:
89:1d:bb:9e:17:01:08:6e:ad:ba:a1:f7:38:7c:99:34:b3:ce:
f8:eb:86:ef:36:ea:2b:c4:49:c2:99:26:24:4b:93:11:1c:a1:
03:2e:01:29:0f:39:80:48:a4:bb:dd:73:49:cf:5b:79:9b:3e:
8c:cf:f9:6c:89:93:b6:6c:ca:b1:34:bb:ed:31:29:0c:99:fa:
4a:b2:e8:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:23:34 2026 by rpki-client