Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/IpeRvnQX4lMSXfbEbOXjZpTz6yA.roa
File: IpeRvnQX4lMSXfbEbOXjZpTz6yA.roa (raw, json)
Hash identifier: xZUgyELFR0glnf4CnL7jKlF4k2TDT4LM10T29aZ4Prc=
Subject key identifier: 22:97:91:BE:74:17:E2:53:12:5D:F6:C4:6C:E5:E3:66:94:F3:EB:20
Certificate issuer: /CN=eae2653179cafe5ff6651c6058b67ad2d2c8485e
Certificate serial: 019E73F8D2420FD0790308CCE0AD25412696
Authority key identifier: EA:E2:65:31:79:CA:FE:5F:F6:65:1C:60:58:B6:7A:D2:D2:C8:48:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6uJlMXnK_l_2ZRxgWLZ60tLISF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/IpeRvnQX4lMSXfbEbOXjZpTz6yA.roa
Signing time: Fri 29 May 2026 13:42:26 +0000
ROA not before: Fri 29 May 2026 13:42:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 211318
IP address blocks: 81.85.0.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jun 2026 14:06:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:73:f8:d2:42:0f:d0:79:03:08:cc:e0:ad:25:41:26:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eae2653179cafe5ff6651c6058b67ad2d2c8485e
Validity
Not Before: May 29 13:42:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=229791be7417e253125df6c46ce5e36694f3eb20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:37:f7:21:93:ec:4a:1b:9b:eb:b6:66:e2:4a:
90:ea:4d:73:f7:b8:ed:12:40:67:6d:1e:a4:78:e5:
95:db:c4:41:49:2a:0e:71:19:0e:ac:28:99:7b:bd:
5d:ff:91:59:69:57:dc:12:a3:f4:72:94:3e:3c:94:
64:32:75:d5:ad:7d:57:dd:b3:04:9b:20:6d:d6:9c:
db:59:d3:99:0a:00:97:c9:b2:56:11:b8:5e:7b:9d:
dc:76:79:a7:a2:79:96:f8:f3:c8:8c:77:91:11:3d:
bf:02:a0:28:dc:4b:ee:3a:bd:31:2e:d7:43:c8:39:
d5:40:43:3e:d3:e5:97:7a:b5:7b:68:2f:b9:57:fd:
52:7d:a7:57:2a:17:0c:df:e6:5b:84:7e:ba:67:d9:
d8:4e:d3:e2:9c:22:36:cf:90:74:f9:2e:48:e5:24:
04:3a:71:f5:75:20:7a:68:75:73:58:db:36:10:20:
2c:9f:c5:11:25:b5:54:33:96:71:f6:95:5a:f3:86:
e3:69:30:8c:4a:19:9a:16:f5:6a:64:a5:13:67:53:
0c:1b:85:45:76:20:10:c0:5a:67:85:8e:d1:bd:45:
78:2b:a1:7d:6b:f3:f8:e9:34:0f:58:da:02:36:4b:
25:ae:8e:3f:b9:e2:34:5c:57:fa:c6:86:b5:5d:ad:
c7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:97:91:BE:74:17:E2:53:12:5D:F6:C4:6C:E5:E3:66:94:F3:EB:20
X509v3 Authority Key Identifier:
keyid:EA:E2:65:31:79:CA:FE:5F:F6:65:1C:60:58:B6:7A:D2:D2:C8:48:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6uJlMXnK_l_2ZRxgWLZ60tLISF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/IpeRvnQX4lMSXfbEbOXjZpTz6yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/6uJlMXnK_l_2ZRxgWLZ60tLISF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.85.0.0/21
Signature Algorithm: sha256WithRSAEncryption
64:fe:12:1b:d2:7c:10:ed:1a:10:c6:09:21:73:8a:73:c7:93:
14:3d:97:89:b8:e2:be:0b:83:ec:d9:63:75:2d:0e:6b:a0:1f:
f1:31:2c:ad:85:01:ef:dc:9d:49:88:97:65:88:c4:72:3c:61:
52:36:1f:59:06:83:22:69:47:15:fb:a0:74:ec:a6:4e:03:35:
e0:b5:88:91:97:6a:83:32:0b:05:f0:85:f7:17:3d:c8:0f:66:
66:6d:0f:53:b9:5c:6a:06:ec:f7:91:1a:f2:fa:eb:a0:73:1e:
90:5d:60:63:e0:8e:34:c9:8c:8c:d0:6d:41:94:17:6c:eb:86:
44:c8:e6:ef:10:16:1d:57:1d:f8:ce:60:46:9b:b2:1b:46:9f:
88:6a:ca:3a:bf:cd:c0:90:3b:22:d0:df:91:cd:95:5f:c1:0a:
07:ba:2c:66:e9:61:14:af:b3:13:08:40:b4:83:e5:17:66:f2:
e3:59:0a:f9:6e:28:11:f8:50:e1:32:2b:ae:06:45:c0:71:8b:
fe:e2:65:39:59:77:d9:b9:d1:35:5e:bf:8c:f3:f4:da:e9:54:
cd:ac:cc:cf:f0:e3:65:c5:ca:f3:1a:34:96:cf:d6:58:b7:e5:
3a:ca:c8:61:4c:23:3d:2f:4f:77:fa:57:40:a7:d5:e3:af:fc:
4d:57:b3:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:28:17 2026 by rpki-client