Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/QyV6PrlL_AKcasPAGyuaKEGmemg.roa
File: QyV6PrlL_AKcasPAGyuaKEGmemg.roa (raw, json)
Hash identifier: ikwDJwsmjgrx7nF98EXMpbZW3YLpiO0nDL3rOIO0FRc=
Subject key identifier: 43:25:7A:3E:B9:4B:FC:02:9C:6A:C3:C0:1B:2B:9A:28:41:A6:7A:68
Certificate issuer: /CN=6d85061361b19f212efe90c2d8cf3eee617f20e5
Certificate serial: 018FEBA89FEC5FBA72DD90126B0751DF93AC
Authority key identifier: 6D:85:06:13:61:B1:9F:21:2E:FE:90:C2:D8:CF:3E:EE:61:7F:20:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYUGE2GxnyEu_pDC2M8-7mF_IOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/QyV6PrlL_AKcasPAGyuaKEGmemg.roa
Signing time: Thu 06 Jun 2024 03:47:27 +0000
ROA not before: Thu 06 Jun 2024 03:47:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210612
IP address blocks: 103.68.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:eb:a8:9f:ec:5f:ba:72:dd:90:12:6b:07:51:df:93:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d85061361b19f212efe90c2d8cf3eee617f20e5
Validity
Not Before: Jun 6 03:47:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43257a3eb94bfc029c6ac3c01b2b9a2841a67a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fc:e5:25:47:3e:e4:bc:d4:05:5b:7d:f5:3d:
87:16:90:2b:2e:9c:ca:95:64:64:c7:78:bb:62:32:
35:a6:d9:35:06:6e:37:56:a4:77:f3:d7:b6:57:52:
62:20:8b:3b:5a:ea:1f:05:0e:43:cf:6e:f1:5c:38:
71:99:8d:a1:e6:1a:8c:b5:b4:b0:5d:a0:2b:14:a8:
bc:8c:f0:68:52:0f:36:af:84:df:c7:3c:db:36:13:
ef:10:9d:1f:32:0e:4b:7d:45:65:3a:49:19:6a:fc:
fd:1b:8b:44:21:10:a5:b3:72:f2:9b:72:5e:c3:c8:
3b:c5:9f:29:bf:d4:60:4a:ec:21:38:ae:e7:e9:b6:
d2:9b:8f:e9:f3:ea:2d:9f:fa:d0:ab:cb:6b:9a:e3:
da:f9:4a:79:d9:8b:e4:ef:0d:8a:df:bc:f0:3c:57:
eb:a6:00:04:20:72:f2:35:ec:d9:7b:34:82:10:cb:
f5:7c:ca:b2:48:27:a9:c9:bc:e7:b9:5a:23:a1:d5:
c8:8c:71:d6:a0:5a:57:47:72:c7:6d:31:bd:70:49:
76:55:3c:b2:9e:9a:e9:80:f1:17:77:b2:c6:a5:50:
52:d4:ed:ab:01:4b:1b:3f:8d:78:a8:04:c5:ad:61:
7f:47:e2:16:ba:01:53:3d:ef:cb:85:66:08:45:29:
b8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:25:7A:3E:B9:4B:FC:02:9C:6A:C3:C0:1B:2B:9A:28:41:A6:7A:68
X509v3 Authority Key Identifier:
keyid:6D:85:06:13:61:B1:9F:21:2E:FE:90:C2:D8:CF:3E:EE:61:7F:20:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYUGE2GxnyEu_pDC2M8-7mF_IOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/QyV6PrlL_AKcasPAGyuaKEGmemg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/bYUGE2GxnyEu_pDC2M8-7mF_IOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.68.32.0/24
Signature Algorithm: sha256WithRSAEncryption
54:fd:d8:a0:86:7a:c1:af:be:aa:df:09:96:32:93:4e:3e:59:
cc:cd:e7:fb:9d:3d:03:10:7a:bd:da:bf:e8:97:ba:c0:67:35:
f0:2b:aa:e2:52:63:ee:8c:48:28:e7:f6:26:f5:84:2d:d7:5b:
30:a4:21:ad:fa:11:9a:b4:d9:94:7c:4d:d0:9b:0f:9c:bc:b4:
09:36:f3:f9:d9:3a:af:01:82:fc:b9:30:33:57:bb:d3:55:97:
f3:b7:c6:35:da:30:bb:23:d7:91:f7:ea:e3:55:5a:87:fb:bf:
a2:df:8f:80:3a:18:23:b4:c8:ec:0a:23:86:a9:b0:7e:e4:8e:
a0:d2:f4:ab:6d:3a:1c:11:04:5d:b7:d6:70:8c:7d:c7:63:29:
ca:e1:22:ee:48:af:68:94:5f:f0:cd:1d:b8:69:a9:a0:17:b9:
08:01:b9:66:ac:b8:3b:43:87:af:bc:68:b1:ee:2f:ca:24:88:
32:8d:b9:ee:ba:55:7a:2e:9b:d4:2f:36:73:d5:fb:46:97:1c:
53:00:da:0c:2e:04:3f:d1:e8:42:87:5f:b5:09:25:62:0a:0d:
33:16:b4:5c:0e:df:19:a7:4f:8b:ae:c0:93:df:e3:66:c5:24:
99:a0:ab:7c:eb:a7:8e:27:b0:82:9f:67:8b:0f:8d:95:8d:c3:
83:85:0e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:08:33 2025 by rpki-client