Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/mJglMrIygnl1kdWiMr4tSFZcalE.roa
File: mJglMrIygnl1kdWiMr4tSFZcalE.roa (raw, json)
Hash identifier: yVanrszJt9AmXYbEtiT3g31J3LGETcGTc48L5FOBWCQ=
Subject key identifier: 98:98:25:32:B2:32:82:79:75:91:D5:A2:32:BE:2D:48:56:5C:6A:51
Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial: 019D766BA8CA9063A657FB8F1DC8FD19B0E5
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/mJglMrIygnl1kdWiMr4tSFZcalE.roa
Signing time: Fri 10 Apr 2026 08:04:20 +0000
ROA not before: Fri 10 Apr 2026 08:04:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 37.148.128.0/22 maxlen: 24
93.88.153.0/24 maxlen: 24
93.88.157.0/24 maxlen: 24
93.88.158.0/24 maxlen: 24
95.155.128.0/23 maxlen: 24
95.155.128.0/24 maxlen: 24
95.155.129.0/24 maxlen: 24
95.155.133.0/24 maxlen: 24
95.155.145.0/24 maxlen: 24
95.155.146.0/23 maxlen: 24
95.155.146.0/24 maxlen: 24
95.155.147.0/24 maxlen: 24
95.155.148.0/23 maxlen: 24
95.155.149.0/24 maxlen: 24
95.155.152.0/22 maxlen: 24
95.155.160.0/20 maxlen: 24
95.155.176.0/21 maxlen: 24
152.89.84.0/24 maxlen: 24
152.89.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Apr 2026 07:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:76:6b:a8:ca:90:63:a6:57:fb:8f:1d:c8:fd:19:b0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Validity
Not Before: Apr 10 08:04:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=98982532b23282797591d5a232be2d48565c6a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:df:c2:0d:c8:41:43:64:d2:0f:ee:6b:a9:d8:
60:77:0d:7a:9c:1c:29:2a:73:f1:2b:9b:1e:a6:11:
40:35:c1:c7:05:83:04:9f:0e:3f:b1:52:42:9c:53:
01:53:5a:2c:25:dd:b2:76:0e:f0:22:e0:d0:49:98:
b6:b3:b4:09:a8:a2:6b:ee:93:7b:a5:aa:5a:35:c1:
70:a7:0f:a5:cb:e7:6a:ae:ec:79:b5:5f:6c:f4:c3:
62:17:40:88:22:6e:a4:f6:b5:d3:7c:8b:2e:ee:eb:
0a:a7:56:08:40:0a:d6:f5:e2:b6:a9:b2:f5:e5:47:
e2:96:d1:8c:3e:4e:64:8b:2a:7d:fe:5e:71:a8:f8:
92:76:e0:cf:c7:1a:3c:4f:79:6b:e9:cf:f9:a2:e8:
1e:5d:04:5a:68:a4:12:af:3c:88:3a:e3:fb:b4:09:
a2:b6:41:9a:8f:30:e7:c2:62:4f:0c:a0:34:a7:12:
e9:32:2d:6e:20:e9:f3:f2:83:2c:95:1f:fd:05:4c:
7c:b2:7e:4d:f3:72:53:ff:4b:fa:a3:bb:f5:cd:10:
a5:ce:ea:a2:db:3b:8d:bd:de:bb:8b:98:80:7f:a6:
77:7b:22:57:a9:df:d7:2d:fb:20:20:46:b1:1d:17:
32:82:d2:e4:72:35:50:c6:90:ec:b9:7e:7b:23:61:
8f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:98:25:32:B2:32:82:79:75:91:D5:A2:32:BE:2D:48:56:5C:6A:51
X509v3 Authority Key Identifier:
keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/mJglMrIygnl1kdWiMr4tSFZcalE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.128.0/22
93.88.153.0/24
93.88.157.0-93.88.158.255
95.155.128.0/23
95.155.133.0/24
95.155.145.0-95.155.149.255
95.155.152.0/22
95.155.160.0-95.155.183.255
152.89.84.0/24
152.89.87.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:ae:1d:12:51:8a:f1:28:cf:9d:22:c6:fd:22:c3:2b:c9:a3:
63:08:85:57:00:44:f1:99:44:a7:22:2e:e7:09:70:62:1e:ae:
ae:a4:fe:8d:10:4f:40:fd:92:46:dd:1a:8a:e3:f9:54:40:bc:
60:42:9d:49:e3:57:de:2f:c4:34:48:b7:12:f0:48:a8:91:2a:
f6:0a:21:dd:49:f5:ba:8e:f5:67:ea:1d:5c:80:04:92:cc:a6:
54:76:49:0e:5e:ba:6e:c1:62:ae:39:b6:d6:4b:df:c1:76:64:
10:79:d7:0e:a7:aa:f1:1e:12:fd:79:3e:89:83:5a:33:12:7b:
e4:e6:ca:d4:3a:df:4d:f4:79:33:ce:de:e1:2a:2d:92:56:66:
d0:fb:ee:14:5a:c2:cd:5d:10:9f:a5:17:75:55:71:5c:93:50:
2b:a6:a1:22:8a:87:c0:c5:fc:d8:1e:64:d1:62:9d:e4:6c:60:
ee:79:0d:06:5f:da:85:94:50:75:b7:01:04:f6:7d:0a:70:5d:
48:19:34:2a:dd:bc:70:31:eb:21:d5:56:56:1b:06:e7:3e:4f:
26:70:67:aa:56:b6:bd:8e:53:5a:17:65:da:0e:09:13:f3:65:
d5:6e:36:6e:13:35:44:5b:31:22:a0:5b:01:71:01:b4:23:d5:
1b:a8:65:44
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAZ12a6jKkGOmV/uPHcj9GbDlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2YTI0OWEwZWFjZDhhYmNiZWEwZDgyZWY3MTAxNmQzODZl
OGVmOTQwHhcNMjYwNDEwMDgwNDIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODk4MjUzMmIyMzI4Mjc5NzU5MWQ1YTIzMmJlMmQ0ODU2NWM2YTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA39/CDchBQ2TSD+5rqdhgdw16nBwp
KnPxK5sephFANcHHBYMEnw4/sVJCnFMBU1osJd2ydg7wIuDQSZi2s7QJqKJr7pN7
papaNcFwpw+ly+dqrux5tV9s9MNiF0CIIm6k9rXTfIsu7usKp1YIQArW9eK2qbL1
5UfiltGMPk5kiyp9/l5xqPiSduDPxxo8T3lr6c/5ougeXQRaaKQSrzyIOuP7tAmi
tkGajzDnwmJPDKA0pxLpMi1uIOnz8oMslR/9BUx8sn5N83JT/0v6o7v1zRClzuqi
2zuNvd67i5iAf6Z3eyJXqd/XLfsgIEaxHRcygtLkcjVQxpDsuX57I2GPjwIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFJiYJTKyMoJ5dZHVojK+LUhWXGpRMB8GA1UdIwQY
MBaAFMaiSaDqzYq8vqDYLvcQFtOG6O+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2Ut
MjEwNTdkMjI4ZDA1LzEvbUpnbE1ySXlnbmwxa2RXaU1yNHRTRlpjYWxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2UtMjEwNTdkMjI4ZDA1
LzEveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQCJZSAAwQA
XViZMAwDBABdWJ0DBABdWJ4DBAFfm4ADBABfm4UwDAMEAF+bkQMEAV+blAMEAl+b
mDAMAwQFX5ugAwQDX5uwAwQAmFlUAwQAmFlXMA0GCSqGSIb3DQEBCwUAA4IBAQB/
rh0SUYrxKM+dIsb9IsMryaNjCIVXAETxmUSnIi7nCXBiHq6upP6NEE9A/ZJG3RqK
4/lUQLxgQp1J41feL8Q0SLcS8EiokSr2CiHdSfW6jvVn6h1cgASSzKZUdkkOXrpu
wWKuObbWS9/BdmQQedcOp6rxHhL9eT6Jg1ozEnvk5srUOt9N9Hkzzt7hKi2SVmbQ
++4UWsLNXRCfpRd1VXFck1ArpqEiiofAxfzYHmTRYp3kbGDueQ0GX9qFlFB1twEE
9n0KcF1IGTQq3bxwMesh1VZWGwbnPk8mcGeqVra9jlNaF2XaDgkT82XVbjZuEzVE
WzEioFsBcQG0I9UbqGVE
-----END CERTIFICATE-----
Generated at Sun Apr 19 09:02:59 2026 by rpki-client