Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/9b625d-0b62-45d9-99ef-60fb0f91997e/1/Wr9N4yt8f6aw_aq9HKX-5-Y0JcE.roa
File: Wr9N4yt8f6aw_aq9HKX-5-Y0JcE.roa (raw, json)
Hash identifier: I/Idn81I0A6R3tryIO8C9S7XW2FmGAlP6FbvPneuf50=
Subject key identifier: 5A:BF:4D:E3:2B:7C:7F:A6:B0:FD:AA:BD:1C:A5:FE:E7:E6:34:25:C1
Certificate issuer: /CN=e5e03354666c4cb2abfd51411eca5d524b0d5be5
Certificate serial: 019D91E113987A3E2406A8E59E6633C85FF4
Authority key identifier: E5:E0:33:54:66:6C:4C:B2:AB:FD:51:41:1E:CA:5D:52:4B:0D:5B:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5eAzVGZsTLKr_VFBHspdUksNW-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/9b625d-0b62-45d9-99ef-60fb0f91997e/1/Wr9N4yt8f6aw_aq9HKX-5-Y0JcE.roa
Signing time: Wed 15 Apr 2026 16:02:20 +0000
ROA not before: Wed 15 Apr 2026 16:02:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 87.232.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Apr 2026 16:45:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:91:e1:13:98:7a:3e:24:06:a8:e5:9e:66:33:c8:5f:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5e03354666c4cb2abfd51411eca5d524b0d5be5
Validity
Not Before: Apr 15 16:02:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5abf4de32b7c7fa6b0fdaabd1ca5fee7e63425c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7c:3e:1b:10:0d:b1:5d:40:af:d8:a7:c3:65:
a5:15:1b:9d:c1:cd:19:0d:7c:74:bf:e5:61:01:f3:
ca:58:13:4c:31:bf:28:19:5a:4a:e5:24:d0:0d:c8:
7d:13:7e:94:80:c9:20:30:14:30:04:42:76:7f:f1:
7e:26:df:86:3b:99:70:f9:3b:5a:31:b4:b4:25:e1:
19:d6:62:eb:ca:aa:c6:59:39:3a:3a:58:b2:7d:91:
eb:4b:6a:db:4e:59:d5:ba:a0:03:6d:ed:df:ec:23:
34:86:f1:4c:c5:d8:00:44:37:90:41:20:62:ba:5e:
c8:68:43:e9:97:29:d4:b6:fa:d7:b4:4d:c4:4d:ea:
6b:21:32:3f:a2:87:f5:42:fb:f8:32:3c:64:bb:56:
e1:2a:67:e4:2b:fa:a5:5d:71:bd:45:8c:3e:c8:9a:
99:2d:f2:c1:6d:f2:b2:89:f3:8b:cb:4a:31:08:5f:
b7:08:da:13:5b:59:19:7f:cf:55:7a:42:b0:85:3f:
a3:e9:56:f2:49:fe:4a:b6:89:c8:64:cc:a9:d7:0c:
af:de:c1:50:46:dd:c4:88:2b:2e:37:a5:89:b2:0c:
82:c3:57:01:68:d4:d1:cd:4a:2e:ad:e6:d7:3c:d9:
9b:30:39:a0:8c:6d:e9:ea:e0:7e:42:fb:01:72:d8:
12:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BF:4D:E3:2B:7C:7F:A6:B0:FD:AA:BD:1C:A5:FE:E7:E6:34:25:C1
X509v3 Authority Key Identifier:
keyid:E5:E0:33:54:66:6C:4C:B2:AB:FD:51:41:1E:CA:5D:52:4B:0D:5B:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5eAzVGZsTLKr_VFBHspdUksNW-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9b625d-0b62-45d9-99ef-60fb0f91997e/1/Wr9N4yt8f6aw_aq9HKX-5-Y0JcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9b625d-0b62-45d9-99ef-60fb0f91997e/1/5eAzVGZsTLKr_VFBHspdUksNW-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.232.78.0/24
Signature Algorithm: sha256WithRSAEncryption
50:08:56:23:41:ad:f1:f0:76:27:53:d4:56:04:7f:1c:9c:5e:
ca:67:b1:b0:5c:63:70:b5:50:ec:5c:ff:39:0c:ee:17:a6:49:
c8:7b:3a:70:7a:6d:bb:08:d0:1d:db:80:8a:dc:e6:49:a8:1b:
56:d6:b5:f8:12:41:9a:be:1f:8c:00:7e:e9:eb:bb:77:1b:bb:
44:9f:a9:ad:d8:11:c1:23:d9:dc:a1:67:77:40:03:cc:88:58:
91:20:0e:23:68:6b:ff:51:3d:ed:1a:58:e2:a6:e4:0c:15:ce:
bd:2f:4d:9f:46:d5:4a:2e:a2:82:31:04:a8:c1:b1:45:1d:93:
a4:55:a1:c9:69:32:a4:fb:82:89:02:0b:5a:44:b4:bc:54:ec:
90:24:b3:f8:79:b4:3e:cf:b8:62:82:21:1e:b0:d5:a8:0a:42:
0b:6a:51:06:2d:6c:61:78:e3:8a:7c:02:0c:c7:3c:cf:cc:68:
4d:30:c5:c1:f0:82:a6:db:8e:d2:84:f0:9a:e8:63:a3:95:95:
39:20:4a:a1:f4:e1:26:c2:51:cb:23:5a:f7:d6:a3:eb:a7:49:
19:70:27:e7:51:e9:67:1d:df:2e:7d:0e:cb:47:76:4c:68:29:
8f:c3:b2:3d:83:c8:35:24:15:63:43:4c:dc:90:94:5c:b6:77:
07:f7:f3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:12:36 2026 by rpki-client