Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/gqJNd6UlnXovrQSAhNdTqswiGxI.roa
File: gqJNd6UlnXovrQSAhNdTqswiGxI.roa (raw, json)
Hash identifier: qO1XGZasLLtCe8CQB8IE21igPDbt2xPLT/inQVMGLIg=
Subject key identifier: 82:A2:4D:77:A5:25:9D:7A:2F:AD:04:80:84:D7:53:AA:CC:22:1B:12
Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce
Certificate serial: 01955CD0C1DE6CCA048471A2553CA6736191
Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/gqJNd6UlnXovrQSAhNdTqswiGxI.roa
Signing time: Mon 03 Mar 2025 16:22:19 +0000
ROA not before: Mon 03 Mar 2025 16:22:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59253
IP address blocks: 103.148.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Mar 2025 18:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5c:d0:c1:de:6c:ca:04:84:71:a2:55:3c:a6:73:61:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce
Validity
Not Before: Mar 3 16:22:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=82a24d77a5259d7a2fad048084d753aacc221b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e1:c6:f4:ef:c8:2b:0f:3a:f2:42:2d:21:42:
b0:1b:ce:bc:b3:be:aa:35:3b:9d:56:9a:44:b3:57:
c9:05:5a:4f:6a:b6:41:f3:a7:b5:eb:35:fd:db:c5:
2c:45:0b:39:c7:37:61:72:9a:58:31:67:48:e9:43:
56:3b:37:7f:2a:5a:12:0e:3e:10:7c:02:e9:9f:12:
bd:08:f9:ba:93:d8:6d:c2:87:b9:65:c0:80:ae:5d:
e7:6c:27:6e:77:97:57:de:8c:b6:32:17:fe:7f:69:
55:84:94:fc:b6:98:c3:5b:45:ba:5f:6d:b2:1c:b0:
6d:d6:f4:08:ad:59:9a:4e:f1:e9:da:cf:92:e4:3e:
3b:29:7d:a8:b8:97:b2:cb:1a:d2:dc:16:9d:d8:7e:
db:ed:d7:ba:31:4b:12:41:f3:22:1a:20:3e:d1:31:
9b:70:20:2a:3e:05:db:e4:c1:6c:b5:43:70:dc:4a:
da:75:4e:6b:ad:9a:ae:29:f8:e2:f1:1c:63:49:3f:
66:50:52:14:34:cb:02:cb:6f:a9:b4:7d:7c:b7:fa:
4f:28:08:c9:6f:b4:20:a3:3e:27:43:dc:2d:7f:7c:
0d:4d:47:a7:09:13:90:e1:41:77:64:33:6e:d1:23:
08:be:a7:9f:59:0f:19:95:ee:b7:ac:59:38:35:45:
5b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A2:4D:77:A5:25:9D:7A:2F:AD:04:80:84:D7:53:AA:CC:22:1B:12
X509v3 Authority Key Identifier:
keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/gqJNd6UlnXovrQSAhNdTqswiGxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.140.0/24
Signature Algorithm: sha256WithRSAEncryption
98:c6:56:d4:a1:53:f7:03:b7:68:13:41:41:29:b7:d8:20:f2:
bf:88:b4:f5:dc:31:45:07:c6:f2:72:0a:f2:93:9a:75:8c:88:
c0:b8:62:ef:80:ae:5d:11:af:6c:36:c9:cb:f0:16:b4:92:85:
86:3c:81:f4:34:19:e3:ad:73:0a:b0:8e:db:91:c3:db:7f:0a:
f9:b8:2c:ba:17:c4:76:56:d1:2f:bc:fb:68:f9:64:ae:f5:af:
71:c1:8c:ce:8a:3c:93:29:eb:42:19:33:11:9a:7c:c6:48:e3:
9b:f6:71:e2:82:1f:29:03:d0:26:e7:c6:84:dd:92:80:e0:ad:
5c:3e:46:b1:8f:bc:8c:72:b9:df:1a:d2:02:3b:b4:ae:05:3b:
42:3e:fe:23:b9:2e:d2:89:62:36:d9:c4:be:51:88:04:82:4b:
3b:6d:2f:1b:53:a5:d5:1d:5e:65:e0:d3:c2:fc:c1:27:aa:23:
5a:82:e1:17:e7:2a:e8:6b:e7:bc:e2:8e:88:5d:97:64:8f:43:
fb:67:59:b1:a4:fc:b3:35:d1:5e:06:4d:10:af:1a:22:e7:5e:
80:1b:1f:5c:04:5e:42:80:07:88:12:7e:3a:13:65:bd:0d:00:
d3:40:31:40:3f:92:4b:16:3c:d2:83:26:da:58:e3:61:62:24:
4a:4c:e3:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVc0MHebMoEhHGiVTymc2GRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNmE4NmU2MmYwY2U5OGUwMmU5ODA4NjlmZjQ0MTRlZTJh
MGYwY2UwHhcNMjUwMzAzMTYyMjE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmEyNGQ3N2E1MjU5ZDdhMmZhZDA0ODA4NGQ3NTNhYWNjMjIxYjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruHG9O/IKw868kItIUKwG868s76q
NTudVppEs1fJBVpParZB86e16zX928UsRQs5xzdhcppYMWdI6UNWOzd/KloSDj4Q
fALpnxK9CPm6k9htwoe5ZcCArl3nbCdud5dX3oy2Mhf+f2lVhJT8tpjDW0W6X22y
HLBt1vQIrVmaTvHp2s+S5D47KX2ouJeyyxrS3Bad2H7b7de6MUsSQfMiGiA+0TGb
cCAqPgXb5MFstUNw3EradU5rrZquKfji8RxjST9mUFIUNMsCy2+ptH18t/pPKAjJ
b7Qgoz4nQ9wtf3wNTUenCROQ4UF3ZDNu0SMIvqefWQ8Zle63rFk4NUVbOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIKiTXelJZ16L60EgITXU6rMIhsSMB8GA1UdIwQY
MBaAFC5qhuYvDOmOAumAhp/0QU7ioPDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2Et
YTY2N2JiNzY1MDYwLzEvZ3FKTmQ2VWxuWG92clFTQWhOZFRxc3dpR3hJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2EtYTY2N2JiNzY1MDYw
LzEvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5SMMA0G
CSqGSIb3DQEBCwUAA4IBAQCYxlbUoVP3A7doE0FBKbfYIPK/iLT13DFFB8bycgry
k5p1jIjAuGLvgK5dEa9sNsnL8Ba0koWGPIH0NBnjrXMKsI7bkcPbfwr5uCy6F8R2
VtEvvPto+WSu9a9xwYzOijyTKetCGTMRmnzGSOOb9nHigh8pA9Am58aE3ZKA4K1c
Pkaxj7yMcrnfGtICO7SuBTtCPv4juS7SiWI22cS+UYgEgks7bS8bU6XVHV5l4NPC
/MEnqiNaguEX5yroa+e84o6IXZdkj0P7Z1mxpPyzNdFeBk0Qrxoi516AGx9cBF5C
gAeIEn46E2W9DQDTQDFAP5JLFjzSgybaWONhYiRKTOP6
-----END CERTIFICATE-----
Generated at Wed Jul 23 23:29:54 2025 by rpki-client