Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hmzQJiBleVFtee4twlIfNK7a9QY.roa
File: hmzQJiBleVFtee4twlIfNK7a9QY.roa (raw, json)
Hash identifier: 3CnUxZeqX9evYP/9AMwVdQwKm5mPktiINzs3AS4YLAk=
Subject key identifier: 86:6C:D0:26:20:65:79:51:6D:79:EE:2D:C2:52:1F:34:AE:DA:F5:06
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019EB5FFF99D192703AE56A8FEAA131CC7D6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hmzQJiBleVFtee4twlIfNK7a9QY.roa
Signing time: Thu 11 Jun 2026 09:25:12 +0000
ROA not before: Thu 11 Jun 2026 09:25:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58061
IP address blocks: 45.88.14.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
78.17.19.0/24 maxlen: 24
78.17.22.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.37.192.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
89.125.99.0/24 maxlen: 24
89.125.100.0/24 maxlen: 24
89.125.101.0/24 maxlen: 24
93.115.107.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
185.198.233.0/24 maxlen: 24
188.241.221.0/24 maxlen: 24
193.178.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jun 2026 04:24:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:ff:f9:9d:19:27:03:ae:56:a8:fe:aa:13:1c:c7:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 11 09:25:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=866cd026206579516d79ee2dc2521f34aedaf506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cf:0c:e3:de:52:a8:fc:8f:02:bd:1d:16:58:
aa:6f:5a:90:23:19:d8:72:b5:53:21:1f:3b:45:89:
52:de:9d:0e:37:79:b4:58:4d:e0:a5:be:59:50:d9:
e7:f1:e3:40:60:f4:4f:94:e7:b4:e9:3a:0d:b6:8c:
b0:df:6a:7a:d2:90:50:64:71:ee:a2:8e:a0:f0:2a:
94:8f:fd:00:e8:4e:b5:a7:62:68:f0:f8:3f:bc:75:
a4:87:e1:6a:f9:25:e2:26:f7:63:f9:bd:2c:bc:d1:
0e:93:94:72:be:34:a4:b3:20:35:e9:76:00:5e:c7:
97:af:a8:84:da:e0:b4:bb:65:7f:fb:e7:8e:00:57:
d5:87:00:68:cd:47:5a:2a:a6:17:a5:43:1d:78:ac:
b6:72:69:ee:63:66:8a:a8:4d:05:0d:1b:35:c0:4d:
7c:2a:66:60:6c:aa:ac:a4:80:61:96:7a:57:83:6c:
48:db:81:fe:67:0b:5e:bc:49:06:46:6c:27:dc:7f:
41:46:50:f8:4b:b8:00:3f:26:7f:9a:6b:3f:da:ed:
77:db:10:ab:ed:13:f7:0b:78:a4:c8:6f:c6:f3:e6:
e1:da:5c:17:9b:04:fa:46:15:9c:4a:37:f5:75:b4:
ae:a6:83:49:27:1f:f2:d2:be:b3:2d:98:d4:8a:8d:
2e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:6C:D0:26:20:65:79:51:6D:79:EE:2D:C2:52:1F:34:AE:DA:F5:06
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hmzQJiBleVFtee4twlIfNK7a9QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
62.192.152.0/24
77.81.182.0/24
78.17.19.0/24
78.17.22.0/24
89.34.106.0/24
89.37.192.0/24
89.40.36.0/24
89.40.215.0/24
89.47.36.0/24
89.125.99.0-89.125.101.255
93.115.107.0/24
128.0.41.0/24
185.198.233.0/24
188.241.221.0/24
193.178.134.0/24
Signature Algorithm: sha256WithRSAEncryption
37:ae:4e:66:f2:75:cf:71:1f:e0:84:83:af:4d:b9:e4:05:1b:
f4:8f:f1:3a:6d:ce:bc:53:d5:f6:2d:e4:19:ca:d4:fc:4d:5e:
66:08:9a:b2:62:bb:2d:f1:ac:27:50:52:21:99:8d:13:3f:c2:
2a:84:35:22:75:be:ab:0a:7f:09:98:56:dc:d8:e3:ea:db:3b:
e3:64:70:ea:82:97:dd:05:4e:62:49:2b:5d:c0:0d:91:17:72:
4d:50:4f:f4:34:23:54:c2:cb:54:05:ea:71:37:d8:cb:ee:4f:
f8:e9:60:9e:ed:34:d8:83:98:97:b9:24:47:b9:3f:73:70:a6:
ca:fd:59:84:d3:7b:40:f2:85:b0:1f:83:c1:40:d3:79:2b:8f:
0c:9a:f4:c1:dd:a6:6d:c6:01:ec:aa:a8:d7:f5:62:f1:19:8f:
d5:3b:1a:49:1a:04:f2:34:2a:ba:ea:77:45:fc:34:ed:42:05:
d1:7a:96:b3:e1:13:11:0a:88:19:1a:8f:51:45:94:84:44:08:
83:bb:d7:1f:73:76:6b:cd:92:4f:d6:f8:7e:88:4a:dc:62:c4:
6b:f2:de:5d:c9:c2:2a:0a:d1:f9:26:4b:97:3b:03:db:c9:a1:
b4:41:4f:17:62:86:0b:ee:1c:f7:b6:50:c2:e5:71:ac:eb:ff:
ec:60:27:ec
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAZ61//mdGScDrlao/qoTHMfWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjYwNjExMDkyNTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjZjZDAyNjIwNjU3OTUxNmQ3OWVlMmRjMjUyMWYzNGFlZGFmNTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw88M495SqPyPAr0dFliqb1qQIxnY
crVTIR87RYlS3p0ON3m0WE3gpb5ZUNnn8eNAYPRPlOe06ToNtoyw32p60pBQZHHu
oo6g8CqUj/0A6E61p2Jo8Pg/vHWkh+Fq+SXiJvdj+b0svNEOk5RyvjSksyA16XYA
XseXr6iE2uC0u2V/++eOAFfVhwBozUdaKqYXpUMdeKy2cmnuY2aKqE0FDRs1wE18
KmZgbKqspIBhlnpXg2xI24H+ZwtevEkGRmwn3H9BRlD4S7gAPyZ/mms/2u132xCr
7RP3C3ikyG/G8+bh2lwXmwT6RhWcSjf1dbSupoNJJx/y0r6zLZjUio0uZQIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFIZs0CYgZXlRbXnuLcJSHzSu2vUGMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvaG16UUppQmxlVkZ0ZWU0dHdsSWZOSzdhOVFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAC1YDgME
AD7AmAMEAE1RtgMEAE4REwMEAE4RFgMEAFkiagMEAFklwAMEAFkoJAMEAFko1wME
AFkvJDAMAwQAWX1jAwQBWX1kAwQAXXNrAwQAgAApAwQAucbpAwQAvPHdAwQAwbKG
MA0GCSqGSIb3DQEBCwUAA4IBAQA3rk5m8nXPcR/ghIOvTbnkBRv0j/E6bc68U9X2
LeQZytT8TV5mCJqyYrst8awnUFIhmY0TP8IqhDUidb6rCn8JmFbc2OPq2zvjZHDq
gpfdBU5iSStdwA2RF3JNUE/0NCNUwstUBepxN9jL7k/46WCe7TTYg5iXuSRHuT9z
cKbK/VmE03tA8oWwH4PBQNN5K48MmvTB3aZtxgHsqqjX9WLxGY/VOxpJGgTyNCq6
6ndF/DTtQgXRepaz4RMRCogZGo9RRZSERAiDu9cfc3ZrzZJP1vh+iErcYsRr8t5d
ycIqCtH5JkuXOwPbyaG0QU8XYoYL7hz3tlDC5XGs6//sYCfs
-----END CERTIFICATE-----
Generated at Wed Jun 17 09:14:56 2026 by rpki-client