Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/e69RwnFB70Y4UxnX9a7BQaejg7U.roa
File: e69RwnFB70Y4UxnX9a7BQaejg7U.roa (raw, json)
Hash identifier: b+rlUtnH/tr9WcH2Z/yYrA2nEPIWFoX3jNsLsPHLD0c=
Subject key identifier: 7B:AF:51:C2:71:41:EF:46:38:53:19:D7:F5:AE:C1:41:A7:A3:83:B5
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 019DF1F90BC202FE5084B8249143CD00290D
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/e69RwnFB70Y4UxnX9a7BQaejg7U.roa
Signing time: Mon 04 May 2026 07:52:03 +0000
ROA not before: Mon 04 May 2026 07:52:03 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213541
IP address blocks: 77.90.149.0/24 maxlen: 24
77.90.150.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.155.0/24 maxlen: 24
77.90.167.0/24 maxlen: 24
77.90.168.0/24 maxlen: 24
77.90.174.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.134.0/24 maxlen: 24
213.209.135.0/24 maxlen: 24
213.209.137.0/24 maxlen: 24
213.209.153.0/24 maxlen: 24
213.209.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 May 2026 21:39:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f1:f9:0b:c2:02:fe:50:84:b8:24:91:43:cd:00:29:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 4 07:52:03 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7baf51c27141ef46385319d7f5aec141a7a383b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:47:1d:0e:ad:de:bb:b2:2f:6b:68:c1:d0:a7:
26:9e:06:1d:38:4c:c1:a7:53:97:75:f8:ed:c2:5a:
08:91:05:8b:28:92:85:25:ad:b2:48:07:96:bb:93:
5a:b8:22:87:7c:42:f3:51:96:00:2b:e1:7e:37:25:
fd:6f:dc:75:b4:3d:ca:3a:89:64:2e:f7:70:cf:b4:
0d:21:67:90:2a:fb:28:ba:d2:45:e5:2a:1d:ab:e1:
7a:e3:71:d4:40:ee:bd:f6:b0:e1:0e:a1:a3:0b:f4:
88:25:9d:fd:c1:ef:cf:88:a3:54:1f:c3:23:43:41:
eb:8b:37:8e:3f:90:30:c1:07:bd:ef:14:4e:ff:fb:
b5:41:95:0b:a9:8a:a4:47:37:71:77:eb:3d:7a:df:
fe:b0:e6:ef:46:2a:4f:3b:41:03:27:c2:aa:5e:f6:
53:64:d3:c2:2b:9f:43:a5:2b:f7:30:94:47:3d:a0:
42:ad:ba:94:7e:52:77:f4:80:7e:1b:5c:b4:0b:61:
75:67:54:cc:66:80:3f:6e:22:77:c4:f2:17:50:7a:
2a:7f:05:d0:aa:42:b4:1b:c7:da:b3:01:06:12:81:
7d:92:41:a8:04:f5:07:e8:2e:84:99:c4:44:6b:ae:
97:a3:8f:bb:c1:f5:d5:1f:80:f2:e6:68:6b:74:bf:
6b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AF:51:C2:71:41:EF:46:38:53:19:D7:F5:AE:C1:41:A7:A3:83:B5
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/e69RwnFB70Y4UxnX9a7BQaejg7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.149.0-77.90.150.255
77.90.152.0/24
77.90.155.0/24
77.90.167.0-77.90.168.255
77.90.174.0/24
77.90.179.0-77.90.181.255
185.230.12.0/24
213.209.133.0-213.209.135.255
213.209.137.0/24
213.209.153.0-213.209.154.255
Signature Algorithm: sha256WithRSAEncryption
26:af:c5:16:a3:98:38:3e:ef:ec:57:20:dc:94:2c:bf:6b:87:
86:44:35:24:10:ff:c5:80:f0:28:47:02:94:e1:76:9d:90:1a:
f6:de:f0:a3:2c:3a:d6:6b:6c:d3:29:69:dc:35:bd:2e:fc:55:
f1:8d:d8:1e:1c:91:62:f0:cb:6d:53:ea:e6:6b:44:bc:7d:a5:
6b:6a:ba:b1:eb:4f:d9:3e:1f:28:01:5e:5f:bc:e4:bd:38:11:
b5:3b:9b:44:94:2f:8e:11:c6:cd:a2:4e:ed:38:90:26:71:9d:
94:a9:be:e3:31:be:f5:33:2d:5d:c5:bb:41:2c:8c:ca:30:c0:
a9:4c:4f:b4:91:27:7b:cd:fe:2a:27:58:25:e2:a0:2c:8c:bb:
c1:0e:4a:3d:af:50:a5:d5:b9:b6:2f:8c:32:8e:66:23:93:e4:
87:df:a6:c1:4c:54:19:ac:c7:9c:17:6d:9b:12:c7:38:10:ca:
c4:66:1d:89:c8:3f:07:27:a0:89:b8:c1:be:12:ce:d8:b2:a2:
90:ab:cd:96:81:14:e0:32:8e:c7:a6:0d:1d:f9:67:59:13:d5:
a6:91:f4:28:06:ad:81:31:cb:75:1d:f7:bb:05:af:14:e2:f4:
32:ba:24:13:d0:77:0c:74:2c:c1:33:f1:86:6b:44:07:b2:2c:
d8:65:08:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:50:25 2026 by rpki-client