Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/_ncAGNrQN8uV5vKPjPwK-NDUfuM.roa
File: _ncAGNrQN8uV5vKPjPwK-NDUfuM.roa (raw, json)
Hash identifier: LLusjHgx3TimpQwxtT8wiEFLht593JLFN+8pyhyKZCY=
Subject key identifier: FE:77:00:18:DA:D0:37:CB:95:E6:F2:8F:8C:FC:0A:F8:D0:D4:7E:E3
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 019D8E1DF1C677F565ED957801BAC7CFAAD9
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/_ncAGNrQN8uV5vKPjPwK-NDUfuM.roa
Signing time: Tue 14 Apr 2026 22:30:20 +0000
ROA not before: Tue 14 Apr 2026 22:30:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204650
IP address blocks: 5.57.38.0/24 maxlen: 24
37.32.40.0/24 maxlen: 24
37.32.41.0/24 maxlen: 24
37.32.44.0/24 maxlen: 24
37.32.45.0/24 maxlen: 24
37.32.47.0/24 maxlen: 24
178.239.145.0/24 maxlen: 24
178.239.146.0/24 maxlen: 24
178.239.150.0/24 maxlen: 24
178.239.157.0/24 maxlen: 24
185.212.50.0/24 maxlen: 24
185.212.51.0/24 maxlen: 24
185.215.228.0/24 maxlen: 24
185.215.230.0/24 maxlen: 24
185.215.231.0/24 maxlen: 24
185.243.50.0/24 maxlen: 24
2a00:7040::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 17 Apr 2026 08:11:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:8e:1d:f1:c6:77:f5:65:ed:95:78:01:ba:c7:cf:aa:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Apr 14 22:30:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fe770018dad037cb95e6f28f8cfc0af8d0d47ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:bf:90:27:2d:44:22:12:63:47:d1:6a:54:
75:7b:5b:eb:a6:fa:55:1b:0a:f4:ce:a0:62:f7:71:
59:55:e6:51:32:4c:58:cb:4a:0a:01:dc:a3:d2:87:
e0:40:8e:4b:95:e9:a9:39:c0:d3:53:ff:b4:e5:03:
d2:9d:cf:96:8b:ca:2e:99:24:b3:16:11:95:ba:95:
cd:19:45:94:5e:c4:6c:54:41:ea:fb:57:0e:9e:96:
62:6d:78:c2:eb:58:cc:47:08:49:a3:36:14:f4:89:
72:ba:5c:a5:dd:55:9b:0b:62:98:32:13:96:0c:c6:
c0:0c:a8:80:12:98:11:78:23:7f:6e:0e:82:61:b9:
92:cb:dd:3f:08:5c:aa:2a:60:85:50:6c:44:99:2b:
7e:e8:b0:31:a0:8f:39:0b:fb:04:e0:cb:82:62:3a:
51:ea:f1:ac:b4:09:02:11:9b:80:0f:3f:fd:b3:3b:
3f:5d:f4:99:89:01:18:78:4b:2b:c1:24:cf:9a:76:
1f:69:ce:66:7e:4c:71:02:d0:be:63:73:5d:de:65:
4f:af:55:ac:e2:96:d6:3a:0f:25:27:18:e3:3e:6b:
6e:4c:2d:60:d4:95:b7:47:22:83:25:c6:e8:7d:0d:
c1:61:6b:2e:c3:7a:6d:d8:4d:12:33:95:07:f8:3c:
dd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:77:00:18:DA:D0:37:CB:95:E6:F2:8F:8C:FC:0A:F8:D0:D4:7E:E3
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/_ncAGNrQN8uV5vKPjPwK-NDUfuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.38.0/24
37.32.40.0/23
37.32.44.0/23
37.32.47.0/24
178.239.145.0-178.239.146.255
178.239.150.0/24
178.239.157.0/24
185.212.50.0/23
185.215.228.0/24
185.215.230.0/23
185.243.50.0/24
IPv6:
2a00:7040::/32
Signature Algorithm: sha256WithRSAEncryption
66:f5:48:8d:79:d3:0f:02:76:7b:57:ce:01:fc:d9:b1:9c:51:
39:8f:34:fa:b5:3c:54:03:b9:19:a2:29:cf:7c:90:04:e6:be:
b2:75:78:36:0d:d6:14:ca:42:86:ea:89:f7:a0:74:5d:dc:b4:
32:36:4e:f1:c9:79:44:11:2f:c6:d6:52:5e:14:9c:4e:c8:d5:
b6:86:20:b7:23:54:cc:17:b7:9b:de:62:2a:e1:46:e4:ac:33:
5e:be:ee:d1:bd:e2:36:8d:1e:52:41:47:aa:59:3f:57:7a:0a:
c0:b9:2a:46:ea:dd:d4:25:7d:62:c7:7f:e9:3b:08:90:9b:cc:
da:5c:9c:50:92:47:f0:75:9d:36:c8:be:db:62:c7:60:39:86:
a9:bd:b1:31:3f:9d:4d:43:2e:53:0b:00:2f:32:a5:69:8a:63:
79:0b:38:94:51:05:5f:d0:28:62:c7:bf:db:d0:ec:05:aa:f5:
e4:b7:5b:0a:34:ae:f7:b5:c8:11:11:08:a9:35:ad:85:b8:46:
93:84:42:18:ff:48:86:08:12:3b:fd:78:bf:b7:42:35:fc:41:
6a:e5:46:79:92:83:ee:28:8b:9d:c9:da:b8:31:4f:28:91:c4:
de:5f:cd:b8:67:3e:c4:c0:67:40:ff:6c:c6:e2:40:95:19:33:
24:20:f5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:18:19 2026 by rpki-client