Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/TqnJ8HKhz3rws__uvss0a1xJhZ0.roa
File: TqnJ8HKhz3rws__uvss0a1xJhZ0.roa (raw, json)
Hash identifier: zEOR2vKoIzYXFzLGvQ6v7xenyyKhQP56sOJ8QjNotm0=
Subject key identifier: 4E:A9:C9:F0:72:A1:CF:7A:F0:B3:FF:EE:BE:CB:34:6B:5C:49:85:9D
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 019E00E9CD1B8E86B0BFA849E40305A63DCB
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/TqnJ8HKhz3rws__uvss0a1xJhZ0.roa
Signing time: Thu 07 May 2026 05:29:42 +0000
ROA not before: Thu 07 May 2026 05:29:42 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 45.146.234.0/23 maxlen: 24
185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 May 2026 06:51:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:00:e9:cd:1b:8e:86:b0:bf:a8:49:e4:03:05:a6:3d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: May 7 05:29:42 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4ea9c9f072a1cf7af0b3ffeebecb346b5c49859d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:eb:68:7f:da:22:83:ad:2c:da:cd:a7:be:c6:
c1:92:0c:70:ec:60:06:8c:b5:a8:5f:33:91:5d:80:
8a:d4:8b:5f:c2:c5:f8:a9:6a:6e:b5:c7:f1:51:ea:
a8:c3:98:4f:ab:53:17:b0:1b:84:69:6d:60:30:ec:
24:1c:de:ad:d2:b0:7e:57:b2:0a:0f:e7:db:6a:36:
8c:8d:47:69:d4:b6:0c:9c:40:ce:a3:c8:7f:6c:9f:
c5:ba:c7:26:1b:89:b3:75:d1:bc:94:e4:50:3c:ac:
38:3a:c9:1c:70:bd:3e:8e:98:f0:e3:e2:e2:12:45:
9a:49:94:c8:90:b7:ed:af:1d:20:51:51:e0:8c:8d:
f5:4e:09:da:3d:44:7b:40:0f:f1:ee:38:87:38:3a:
b1:64:5b:83:6c:f7:1c:4f:21:a1:c6:86:03:99:3e:
da:55:6b:9a:df:ab:4d:01:85:61:7c:ee:89:c4:43:
b7:25:b4:1a:90:9c:62:86:b8:c3:6c:0e:0f:35:e9:
c6:02:82:11:91:4a:c9:a8:ac:4c:24:e0:5b:84:b4:
66:ca:7c:37:08:ea:0c:e0:1a:a0:14:5c:0d:ba:07:
19:b5:46:37:52:c6:74:d1:32:01:af:53:e0:58:ff:
75:7c:74:8c:e4:e3:6b:02:c4:2e:94:a5:85:45:60:
79:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A9:C9:F0:72:A1:CF:7A:F0:B3:FF:EE:BE:CB:34:6B:5C:49:85:9D
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/TqnJ8HKhz3rws__uvss0a1xJhZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.234.0/23
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
12:61:6e:96:1a:5f:91:7e:9f:c8:5c:95:ba:2f:ee:b9:49:50:
bb:1f:5c:ef:64:6a:a6:ab:8b:c1:c1:1b:bf:de:2d:d9:08:7f:
7e:9e:8a:b8:78:be:7f:76:b1:c4:1b:4e:c6:26:4c:f1:f1:ed:
07:08:6f:66:18:a3:c8:bb:69:9e:3c:ff:a3:8f:46:b0:90:43:
82:0a:5c:a0:c3:e3:be:a4:ec:6b:f9:f0:d6:09:d9:58:ba:5c:
af:49:93:cc:33:8f:b2:7d:f5:3f:8a:84:a5:c4:43:87:71:8e:
72:46:90:0d:dc:69:b1:a2:98:ba:22:0b:0e:81:63:af:d8:55:
e2:33:f0:a7:84:1f:7e:d4:e9:bc:4b:68:2b:5d:f4:41:2a:09:
eb:ca:42:ef:6b:cc:b7:97:c1:8d:06:b9:06:d5:af:6b:19:33:
95:45:b7:bb:d3:63:7b:75:e3:14:4c:9e:f7:e8:f3:7b:48:cd:
b0:4c:68:4b:37:51:83:0a:e4:f1:02:6e:ab:73:dd:22:2d:b4:
61:6d:31:3d:dc:3f:91:a3:6a:51:3a:32:fb:00:b0:44:29:82:
50:4e:8b:53:60:fd:10:8e:97:dd:44:88:b4:d0:d2:64:58:a1:
91:62:d6:01:fa:0c:7b:71:41:f5:b0:67:d1:a3:4f:16:60:f6:
ca:b2:a2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:45:58 2026 by rpki-client