Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/_Pnjn9jQoSHkZpHE7SqNbEcali0.roa
File: _Pnjn9jQoSHkZpHE7SqNbEcali0.roa (raw, json)
Hash identifier: lmEkvqzzUWl2YshZ1CgRNGbiVOmDLZc/kEBtoLHNCsg=
Subject key identifier: FC:F9:E3:9F:D8:D0:A1:21:E4:66:91:C4:ED:2A:8D:6C:47:1A:96:2D
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 018573562A8FD8BAD0C16CE0826698D64394
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/_Pnjn9jQoSHkZpHE7SqNbEcali0.roa
Signing time: Mon 02 Jan 2023 16:35:04 +0000
ROA not before: Mon 02 Jan 2023 16:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203634
IP address blocks: 82.222.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:2a:8f:d8:ba:d0:c1:6c:e0:82:66:98:d6:43:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 2 16:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcf9e39fd8d0a121e46691c4ed2a8d6c471a962d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:07:f3:47:3d:37:68:f5:c7:75:a9:b8:66:
1b:72:7b:85:18:8b:4a:46:c2:98:d8:36:9b:ba:40:
4c:bb:33:15:71:5b:42:1c:66:ff:cb:ef:de:a2:6f:
7a:f1:7f:8c:87:65:d7:fb:55:97:99:8d:1f:a7:9b:
7a:1a:3d:6c:8f:b2:1c:71:4e:a9:46:9b:da:dc:64:
70:82:eb:5d:84:80:fe:d6:46:bf:e9:ff:42:c3:eb:
90:19:5a:f3:43:0f:3b:20:42:58:ed:d0:4b:cf:06:
92:b0:75:ca:8d:f6:c1:d8:9e:fc:f5:07:37:e0:ea:
55:ea:90:43:37:65:f7:ca:8d:e9:85:0a:14:ac:62:
8d:d8:49:26:a8:86:fc:46:f8:34:56:7c:e0:07:67:
21:74:31:70:74:3b:f7:1d:27:25:ed:66:63:a3:1d:
97:6d:da:8d:04:2c:ae:fb:36:b9:94:24:d2:03:46:
e4:07:5b:eb:7c:89:46:1d:bd:d8:9c:9e:97:21:47:
41:84:b7:13:66:3a:70:7d:b0:ce:4e:d1:73:00:50:
cd:15:64:92:ba:0e:57:82:58:cc:d6:ed:62:9e:46:
d3:dd:fc:78:f4:93:18:63:49:54:a7:e6:f7:bc:45:
f4:a2:16:fd:3f:02:9f:4a:7d:d3:25:c1:25:b8:dc:
ab:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F9:E3:9F:D8:D0:A1:21:E4:66:91:C4:ED:2A:8D:6C:47:1A:96:2D
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/_Pnjn9jQoSHkZpHE7SqNbEcali0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.222.159.0/24
Signature Algorithm: sha256WithRSAEncryption
82:62:53:10:78:a6:91:3d:16:b9:08:5b:51:ae:3b:32:4d:b9:
5d:88:5c:5c:18:95:14:cb:92:ca:ad:2e:4b:82:06:ab:14:d2:
8f:a7:29:57:a1:c1:52:fa:ed:f8:00:58:54:82:22:77:eb:c5:
81:40:5b:f3:ac:65:8c:5a:cb:41:90:63:a3:95:1e:e9:d1:3c:
f7:e4:a5:00:30:9a:eb:43:86:70:43:85:bb:58:05:16:4a:bb:
ea:d7:bb:ff:d3:f8:6e:f1:c8:84:0c:46:f1:84:5d:73:5b:93:
35:ef:3f:e5:a2:e8:6a:e8:ab:e8:e0:0c:7f:c5:79:38:15:43:
00:f3:06:74:a2:ee:ff:0a:2a:f1:d1:22:61:91:43:d6:7f:06:
2d:6c:c8:03:b0:13:93:8b:d1:7f:a6:7a:a3:f9:05:17:c9:a2:
87:6d:1e:09:c9:de:c5:c5:d5:bc:05:a2:00:c2:76:d4:c0:e8:
fc:1d:fc:64:e0:25:b6:df:c5:1c:86:94:66:04:52:5e:71:5d:
c3:d0:f9:38:83:36:f1:d8:72:f9:a0:76:a2:31:19:5c:03:f8:
d8:f6:55:0a:02:2a:e2:d8:06:03:23:74:0b:44:c1:77:94:78:
38:0e:06:72:c9:7d:a8:df:de:72:49:3f:cf:d3:94:08:e7:21:
46:61:2f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:57 2024 by rpki-client on console-ams.rpki-client.org