Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/UgApTiVuNejygq4CbOPpI_WSbYQ.roa
File: UgApTiVuNejygq4CbOPpI_WSbYQ.roa (raw, json)
Hash identifier: LLzKIo4QD6v8C8eQgwYZIGFChcOwryhDKSHOr5bIGRE=
Subject key identifier: 52:00:29:4E:25:6E:35:E8:F2:82:AE:02:6C:E3:E9:23:F5:92:6D:84
Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce
Certificate serial: 019B797F3B76B6A7994E56F8BF974AD537B3
Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/UgApTiVuNejygq4CbOPpI_WSbYQ.roa
Signing time: Thu 01 Jan 2026 12:19:00 +0000
ROA not before: Thu 01 Jan 2026 12:19:00 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209309
IP address blocks: 88.218.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jan 2026 09:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:79:7f:3b:76:b6:a7:99:4e:56:f8:bf:97:4a:d5:37:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce
Validity
Not Before: Jan 1 12:19:00 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5200294e256e35e8f282ae026ce3e923f5926d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3d:d9:cf:eb:e6:08:a7:c9:65:8d:e6:79:12:
b8:14:35:d3:9d:e3:14:7a:f8:16:ea:65:cd:32:10:
5c:a6:b9:b1:91:e7:37:d7:05:de:a9:9c:f6:62:89:
0f:f4:6b:d6:8f:f2:7d:37:a2:75:f1:04:46:f5:9a:
45:0a:99:93:60:46:6a:15:f9:1a:54:8a:f3:a6:7e:
03:77:ee:46:91:0f:e0:84:73:7b:01:09:cd:2d:88:
cf:50:23:bf:97:2c:1b:05:82:16:ba:82:de:a5:f9:
dd:b9:10:8c:47:49:ca:8c:2e:d0:5b:02:5a:20:e5:
84:7e:c8:cb:7f:d0:93:1d:f8:e8:df:5f:54:c4:43:
c4:6c:c3:91:07:51:d4:62:d2:2b:49:1c:26:ef:27:
fb:a4:33:2e:1c:98:cc:a0:b2:a9:6d:be:16:c2:e4:
0c:cd:2d:80:3f:fa:23:69:7c:6d:28:e8:28:2e:19:
e6:5b:cb:76:93:0a:40:ad:86:8d:40:4d:ba:34:eb:
c9:e4:e5:4f:5b:62:97:59:dc:f9:01:54:f9:18:87:
58:d0:b3:cf:5d:86:7a:6e:ed:0a:37:9e:3d:24:98:
4e:03:2a:18:12:ec:2b:45:19:5b:3d:d8:13:a9:86:
6e:b0:90:bc:cf:ee:d5:5d:86:03:b1:56:f5:26:d2:
27:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:00:29:4E:25:6E:35:E8:F2:82:AE:02:6C:E3:E9:23:F5:92:6D:84
X509v3 Authority Key Identifier:
keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/UgApTiVuNejygq4CbOPpI_WSbYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.64.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:0e:63:6e:ec:ef:ca:b0:83:ef:f6:37:18:21:ca:be:70:1c:
b1:2d:71:5c:da:77:bf:99:5d:58:69:d6:2e:c0:1b:9b:be:69:
93:f7:49:da:68:9a:47:18:b4:87:da:c0:f5:1f:46:26:38:c3:
61:4f:b5:d8:b1:2d:58:77:eb:5a:80:8a:22:3e:94:63:25:e7:
31:cf:ad:0f:f0:32:93:ff:3c:90:eb:ee:32:92:ff:45:7b:48:
f6:f4:ed:11:e4:a1:87:19:f8:4a:90:c3:66:c2:14:a1:ed:d6:
30:b9:5a:1e:b1:2d:f1:99:a7:7c:0c:7a:02:68:0f:89:5c:fc:
fd:9b:79:cf:2b:e1:c1:12:1c:21:04:50:f9:72:f8:cd:87:a0:
64:0b:13:73:40:3c:32:31:6c:cb:9d:91:cf:aa:f1:2e:b4:10:
5b:93:b6:10:85:46:7f:55:c3:81:0f:31:da:ca:31:53:10:8e:
6b:71:aa:1b:69:4f:b7:35:3c:d8:62:04:4f:3a:b0:eb:06:61:
fe:91:f3:57:20:91:2a:94:ec:f2:55:76:b7:2e:ee:5f:2c:66:
60:07:83:4d:93:f4:c3:e5:80:4b:29:20:f2:26:a8:bd:b0:c3:
20:85:29:5b:b9:ff:c4:11:0f:b8:73:db:2d:aa:65:e1:11:c8:
98:70:24:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:19:10 2026 by rpki-client