Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/tmEo2TlpXouHJPINM74QL8PRQ2Y.roa
File: tmEo2TlpXouHJPINM74QL8PRQ2Y.roa (raw, json)
Hash identifier: pECZP6XDPis73ReJV469DRGk+R+tMGjcE67SzQFE2WA=
Subject key identifier: B6:61:28:D9:39:69:5E:8B:87:24:F2:0D:33:BE:10:2F:C3:D1:43:66
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 019557C4F48DB4206EB1B67B3E4DFD6C475F
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/tmEo2TlpXouHJPINM74QL8PRQ2Y.roa
Signing time: Sun 02 Mar 2025 16:51:20 +0000
ROA not before: Sun 02 Mar 2025 16:51:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3600
IP address blocks: 103.240.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Mar 2025 15:37:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:57:c4:f4:8d:b4:20:6e:b1:b6:7b:3e:4d:fd:6c:47:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Mar 2 16:51:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b66128d939695e8b8724f20d33be102fc3d14366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2f:3d:26:aa:b8:cf:92:6e:d0:d0:fb:5c:3a:
94:05:6f:0e:aa:5f:c2:34:92:2e:29:ae:84:7e:b4:
4e:81:d5:1a:da:1b:8d:00:e8:31:26:18:fd:3a:d1:
b7:e1:d9:cb:9f:91:54:d1:8b:db:85:4b:85:5c:41:
12:14:cb:d0:59:7b:0f:2e:79:fa:53:67:31:34:0f:
52:9d:1f:c0:83:6b:1a:0a:67:c8:73:de:7b:fe:32:
db:05:6b:5a:c2:ce:ec:05:c3:c3:8f:8f:4d:b2:e0:
73:ca:2f:89:5a:ff:a0:b0:82:b5:cc:42:c4:90:83:
cc:27:87:62:63:cb:d7:22:58:9a:b0:8a:7c:1d:35:
68:68:24:cf:81:73:87:fa:3e:a8:53:d9:ea:b2:29:
44:aa:dd:22:65:61:92:59:50:df:82:91:3e:9a:fd:
06:a3:87:21:5c:f2:18:b2:e2:2f:61:f7:03:00:d7:
09:7c:be:01:bb:ca:b8:c4:98:57:44:3c:eb:a6:6d:
b4:b7:e6:22:64:20:b1:21:d4:5c:ac:6f:cb:52:cd:
11:ab:7f:2d:05:f8:2a:91:40:9f:28:69:20:8d:7b:
9e:08:8e:d4:3a:67:f3:e6:0e:cc:7e:a0:ce:f2:ea:
c2:b8:0f:36:86:52:7d:8b:f5:d5:69:bd:6e:ae:a0:
9d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:61:28:D9:39:69:5E:8B:87:24:F2:0D:33:BE:10:2F:C3:D1:43:66
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/tmEo2TlpXouHJPINM74QL8PRQ2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.240.146.0/24
Signature Algorithm: sha256WithRSAEncryption
41:37:ce:f0:ff:8c:64:da:20:bf:ca:4a:58:85:0d:52:4d:34:
a0:b4:55:52:41:05:9f:94:82:34:8c:c0:36:a6:7d:32:70:a4:
53:f1:0f:91:79:43:61:df:c0:01:d9:f4:e5:76:dc:e9:d0:39:
4f:7b:18:ba:44:b9:08:6f:13:55:fe:1f:24:37:c1:df:fe:04:
d0:68:22:13:cc:0a:c6:6b:93:e0:77:b2:6a:54:dc:75:b2:23:
3f:9f:74:91:37:6c:28:14:14:95:75:f7:ba:f8:83:06:ec:5c:
47:29:cd:76:73:12:7c:ea:2d:77:30:0b:39:06:62:db:97:35:
6b:8c:33:e6:24:d0:e0:96:c5:b5:03:49:24:e5:51:28:f6:9d:
c7:22:e0:70:89:f4:c1:18:b3:1a:9c:06:bd:bd:13:08:a3:7d:
81:5f:eb:ec:26:2f:51:6c:54:a8:76:0c:1c:d6:c4:4c:b7:83:
75:02:2b:52:15:e2:e1:46:ee:b5:e8:b7:c2:0d:29:94:8f:90:
89:38:99:33:f7:ff:43:35:5a:f2:e9:69:c1:55:18:6b:e4:90:
fe:35:8e:a9:eb:80:5f:96:44:3c:3d:48:c4:bd:33:7d:a5:44:
28:0b:6e:d7:55:f0:8e:ba:c5:58:7d:f6:3d:b9:b1:64:de:18:
19:dc:5e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 23:13:17 2025 by rpki-client