Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/SWhZ-987tA8OTMNYTPDUmpF3Mt4.roa
File: SWhZ-987tA8OTMNYTPDUmpF3Mt4.roa (raw, json)
Hash identifier: eCu/Nhvjvyn5Y3y9EQdd8CX1zf8TlE6fz4WCMSP59KM=
Subject key identifier: 49:68:59:FB:DF:3B:B4:0F:0E:4C:C3:58:4C:F0:D4:9A:91:77:32:DE
Certificate issuer: /CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Certificate serial: 018CC501534AC4D172C77371ED5123CE83AD
Authority key identifier: C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/SWhZ-987tA8OTMNYTPDUmpF3Mt4.roa
Signing time: Mon 01 Jan 2024 12:30:47 +0000
ROA not before: Mon 01 Jan 2024 12:30:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202909
IP address blocks: 77.220.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:53:4a:c4:d1:72:c7:73:71:ed:51:23:ce:83:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Validity
Not Before: Jan 1 12:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=496859fbdf3bb40f0e4cc3584cf0d49a917732de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e9:09:18:24:e1:7e:22:5d:df:51:d3:9e:0f:
f5:fc:08:cd:20:68:be:b1:95:ce:1a:63:27:f2:0c:
7d:35:ef:ad:86:8d:c1:05:07:46:c0:6b:dc:fb:47:
e8:1d:66:fd:33:0a:57:97:ab:51:99:d8:fb:4f:b0:
c8:c1:ae:5f:26:6a:f0:b6:e6:64:8e:2a:54:85:d1:
7a:de:fb:31:90:61:d5:34:f2:f8:8b:18:27:d8:02:
a2:40:d0:48:06:3f:35:9f:02:e9:a3:2e:65:19:b3:
6e:5e:b0:7a:9b:24:95:9f:4b:7c:43:10:8e:4d:41:
25:04:16:b0:4b:88:e5:86:98:e7:90:69:33:36:00:
bf:54:ad:7d:5b:c4:64:7c:15:95:6f:16:f2:e6:36:
10:35:49:78:b1:e7:57:98:73:13:4e:8d:09:03:0f:
c0:90:46:0d:a5:b9:dc:79:3f:36:b3:62:41:e2:1c:
3d:16:f2:b6:cc:21:a8:b5:69:03:5b:5f:f2:b3:49:
26:43:e5:39:bc:7d:92:51:55:a6:ae:b1:2d:9e:cc:
df:5a:51:91:53:4b:89:c2:4a:9d:2f:d8:f2:07:75:
d3:60:a3:a0:64:28:2e:33:9f:5a:6d:eb:68:12:d2:
27:0b:6b:35:68:11:bc:03:8c:0a:48:4c:9d:1a:e1:
e1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:68:59:FB:DF:3B:B4:0F:0E:4C:C3:58:4C:F0:D4:9A:91:77:32:DE
X509v3 Authority Key Identifier:
keyid:C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/SWhZ-987tA8OTMNYTPDUmpF3Mt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.109.0/24
Signature Algorithm: sha256WithRSAEncryption
32:29:5b:74:11:be:13:72:c2:a1:4f:c0:a4:bd:8c:bd:91:c4:
0e:63:82:17:2c:2c:95:a9:cf:5d:a1:d0:84:19:0a:a5:5d:99:
67:0b:46:2a:90:24:1c:ce:7e:af:82:79:e2:fc:ae:4b:5c:7a:
6f:b9:1b:f0:d2:12:db:3f:44:ea:62:80:90:28:0f:83:0b:5f:
3e:99:ef:5b:aa:1b:89:2f:f8:2c:3a:b4:d8:cd:5e:ef:b3:3d:
69:1c:b7:f9:6b:31:37:e5:00:92:c4:96:a9:e1:8d:67:8d:9e:
ed:a4:53:5a:7b:ba:c9:67:02:d2:5b:35:10:c6:03:88:e6:83:
9e:38:0f:fa:bf:0b:56:b6:c6:3f:c4:a1:a0:f0:47:27:09:77:
03:f5:64:1d:31:3b:f8:a4:3f:34:15:ff:d5:e5:ed:04:ae:c5:
21:9c:94:4d:08:3c:7e:86:39:7b:f2:17:40:4e:d2:36:56:cf:
35:f0:44:68:c1:ce:91:b5:e0:7d:79:cf:99:76:ca:cc:88:d8:
2c:22:4a:08:67:b4:4b:54:03:46:85:d7:ec:48:f4:19:8b:13:
28:e1:80:85:f4:8b:fa:b5:8b:cf:9b:12:38:04:e0:09:b8:03:
63:0e:12:a0:5d:92:ad:70:8d:18:47:4d:8c:46:83:f5:d0:eb:
5b:b3:28:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:50:06 2025 by rpki-client