Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/068191-878d-425c-8993-09b9905d41db/1/Svn_1D4dp90SvDiGiags-wUe0_c.roa
File: Svn_1D4dp90SvDiGiags-wUe0_c.roa (raw, json)
Hash identifier: We9dmF0BRZmJJA/oOWQ/3VYhcf2d0NWfTdrA2/JEutw=
Subject key identifier: 4A:F9:FF:D4:3E:1D:A7:DD:12:BC:38:86:89:A8:2C:FB:05:1E:D3:F7
Certificate issuer: /CN=175501d93e9b2b1a4fed308e2ae431cc277e69e0
Certificate serial: 01919DE12149F15C3194CFB6D40C62BEE3FF
Authority key identifier: 17:55:01:D9:3E:9B:2B:1A:4F:ED:30:8E:2A:E4:31:CC:27:7E:69:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1UB2T6bKxpP7TCOKuQxzCd-aeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/068191-878d-425c-8993-09b9905d41db/1/Svn_1D4dp90SvDiGiags-wUe0_c.roa
Signing time: Thu 29 Aug 2024 11:24:22 +0000
ROA not before: Thu 29 Aug 2024 11:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5400
IP address blocks: 166.49.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 07:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:e1:21:49:f1:5c:31:94:cf:b6:d4:0c:62:be:e3:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=175501d93e9b2b1a4fed308e2ae431cc277e69e0
Validity
Not Before: Aug 29 11:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4af9ffd43e1da7dd12bc388689a82cfb051ed3f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1c:70:6e:b5:28:53:80:7a:16:40:98:c8:3a:
da:d2:5a:e3:2b:41:92:61:ed:12:eb:c0:f7:d7:f7:
28:c8:b6:ab:03:43:e2:41:75:d7:5c:4d:6c:94:66:
2f:dd:fa:fd:1b:1f:a6:a9:ed:5f:f8:85:53:c5:b5:
fb:c3:db:dd:a0:d1:4d:43:aa:d8:47:e8:ae:16:9e:
e6:fb:99:fe:95:64:fa:86:66:e7:63:ca:a6:d6:fe:
c9:0e:b8:57:ac:bd:e2:bb:fd:3a:35:58:5b:e3:63:
7e:f3:f0:c3:c4:22:e5:a2:6c:45:0a:41:a7:04:d1:
c3:0a:e3:24:ce:8c:87:91:56:42:6c:60:48:47:13:
f9:97:55:10:7a:5a:d1:55:47:4a:cd:a9:bb:0a:06:
b4:dd:ba:4f:66:57:ba:72:91:29:07:dc:5d:b4:93:
18:34:91:e4:a7:c3:97:13:ee:0a:d0:65:9a:47:f0:
2d:92:f4:6e:cf:98:2d:80:cf:07:20:e8:68:59:ac:
d1:63:d4:2e:67:d7:2f:7e:cf:bf:21:75:95:3c:88:
e9:f5:fd:15:57:db:89:dc:d0:d6:3d:8a:53:57:a1:
42:15:2f:5c:f5:0a:2f:ca:27:81:05:01:08:fa:8c:
92:72:e7:92:8f:cc:7d:9e:34:78:c4:a4:0f:92:78:
7b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F9:FF:D4:3E:1D:A7:DD:12:BC:38:86:89:A8:2C:FB:05:1E:D3:F7
X509v3 Authority Key Identifier:
keyid:17:55:01:D9:3E:9B:2B:1A:4F:ED:30:8E:2A:E4:31:CC:27:7E:69:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1UB2T6bKxpP7TCOKuQxzCd-aeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/068191-878d-425c-8993-09b9905d41db/1/Svn_1D4dp90SvDiGiags-wUe0_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/068191-878d-425c-8993-09b9905d41db/1/F1UB2T6bKxpP7TCOKuQxzCd-aeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.49.171.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:c1:b9:b1:6e:e7:be:ad:9f:25:51:bb:79:9c:f2:56:94:4d:
0b:bd:6a:6b:bf:f0:29:a4:11:0e:9e:21:a7:91:f7:b4:14:1a:
2e:73:f8:06:f8:78:c6:e2:63:55:5c:58:bc:ca:1e:a1:63:76:
d3:21:43:f4:d7:5d:fc:eb:72:7a:a6:0b:d4:29:bc:c7:8d:4a:
fc:13:e1:1d:fa:73:34:76:e3:32:36:1d:65:01:1a:74:61:20:
b3:f4:cf:14:5d:50:db:d9:ac:c1:1c:09:d4:34:fb:98:66:e4:
11:d6:c8:00:e2:a2:eb:66:68:96:e5:84:62:fb:af:c7:db:c1:
41:e4:1b:16:0d:70:db:e6:20:c2:2d:a7:d4:77:92:26:86:6f:
a9:68:54:1a:92:12:51:de:f9:62:02:d7:dc:9d:d9:8e:a2:13:
f5:63:41:55:5f:1e:73:22:8c:ed:af:a6:e9:a4:9a:91:80:04:
e7:fd:fb:84:69:d3:7d:fa:3c:ae:c0:63:fd:4f:0a:2c:82:48:
c5:2a:c1:f5:95:38:de:c2:e0:6d:8c:c1:3c:14:a0:40:b0:82:
88:ca:27:d0:49:6f:56:f6:f4:47:ab:6f:39:9a:f7:8f:ac:1c:
b8:e4:8a:bf:31:8f:6e:59:a5:3e:c8:21:88:b2:f8:5f:31:60:
1c:67:4d:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:25:56 2025 by rpki-client