Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/4TZ6PKE49BjRufzX4e4rx3NCgeo.roa
File: 4TZ6PKE49BjRufzX4e4rx3NCgeo.roa (raw, json)
Hash identifier: gOvm2UP4zANbmRBkZDsb9g1AbyfmVetN/mJD83d9A/c=
Subject key identifier: E1:36:7A:3C:A1:38:F4:18:D1:B9:FC:D7:E1:EE:2B:C7:73:42:81:EA
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019D0B45B0E48AF2B7BB627E7630C0D54FA7
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/4TZ6PKE49BjRufzX4e4rx3NCgeo.roa
Signing time: Fri 20 Mar 2026 12:43:29 +0000
ROA not before: Fri 20 Mar 2026 12:43:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203048
IP address blocks: 212.134.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Mar 2026 05:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0b:45:b0:e4:8a:f2:b7:bb:62:7e:76:30:c0:d5:4f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Mar 20 12:43:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e1367a3ca138f418d1b9fcd7e1ee2bc7734281ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:84:7a:f9:08:08:3b:de:dd:84:77:26:8f:2e:
68:a6:0e:78:cc:6a:08:bf:23:da:a6:59:7e:4b:48:
f2:48:35:3b:5d:73:73:10:e9:84:9a:02:ce:16:f0:
7c:82:19:76:9b:b0:7b:70:56:7d:dd:b0:57:41:f1:
e6:fa:aa:90:02:56:a3:f0:26:04:17:54:e2:b3:dd:
15:75:fe:bc:39:4c:62:90:7c:bc:f6:d9:23:c9:2a:
c7:83:1e:28:58:02:80:1e:77:ea:ac:84:66:50:bd:
d7:b8:c8:fd:2a:bc:83:09:0e:c1:20:24:fe:3c:ed:
c2:e1:29:fc:21:6f:08:2b:24:fb:bf:9a:31:6b:ee:
54:45:7d:d6:dc:55:3b:49:7c:76:ea:b0:20:39:33:
f7:c3:c0:62:9e:98:4a:06:3b:24:d1:f5:ec:11:f9:
7c:52:9f:7a:3a:4d:e4:6f:13:df:9f:4e:2b:4f:8c:
1f:76:23:cb:41:39:07:7f:80:6a:c8:4d:1b:19:b2:
aa:9c:32:f3:77:3b:84:53:da:00:8a:c5:4d:8a:fb:
68:93:29:8d:cd:8a:38:bf:2a:ea:5f:5f:eb:79:02:
d6:a2:40:4f:08:a5:82:04:d1:67:13:9c:0e:65:88:
89:c5:62:13:b9:33:c5:55:b1:23:25:d7:2c:f7:85:
80:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:36:7A:3C:A1:38:F4:18:D1:B9:FC:D7:E1:EE:2B:C7:73:42:81:EA
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/4TZ6PKE49BjRufzX4e4rx3NCgeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.134.250.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:72:f5:f4:d4:78:f5:68:8a:ff:9b:1c:e0:d6:cc:65:a8:b2:
6f:d0:cb:f1:77:60:2d:13:47:09:1b:4a:a8:5e:7d:75:89:a6:
f8:be:67:e1:29:17:1e:55:c4:79:b8:a0:f7:5a:af:76:62:5b:
65:f8:44:bd:1c:ac:e7:c7:d1:83:df:36:63:9d:9f:92:da:d3:
75:c4:8d:c2:cb:dd:a3:7a:46:6a:3a:d2:20:28:84:b0:50:a5:
d8:1a:dd:50:35:7e:62:c4:e4:a1:4c:75:0d:83:cb:c0:59:83:
b7:58:ac:90:6a:36:90:0d:55:26:bc:d1:ae:26:1f:1d:24:00:
b0:d6:33:b4:9d:48:fd:7c:f7:23:a5:9b:65:5d:01:99:e4:b4:
bb:2a:ed:7d:50:8c:ac:23:e6:8e:77:0b:40:fd:03:51:22:d6:
aa:1a:d2:3e:50:0d:17:5d:93:f7:cd:98:3a:8e:dc:3f:22:98:
5a:56:a1:cd:5a:c7:33:1c:08:16:ca:ff:2d:3d:d8:a8:cd:c1:
bc:29:a4:b9:0b:cf:07:79:64:40:e4:15:6d:f3:86:b4:45:32:
ab:9d:44:67:07:c8:eb:79:1a:86:42:71:3a:75:27:2b:f7:a5:
d9:b1:9c:de:b8:62:2d:a7:13:d9:b2:95:cf:8e:2a:8b:99:9e:
7d:49:a5:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 12:18:25 2026 by rpki-client