Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/EJ9w_jq8l4vge835iQjMNpdNcx4.roa
File: EJ9w_jq8l4vge835iQjMNpdNcx4.roa (raw, json)
Hash identifier: 7SvRgTL3LDvLY3qIS9v2BhtSeLeZwJBN0wgGOn6DU5A=
Subject key identifier: 10:9F:70:FE:3A:BC:97:8B:E0:7B:CD:F9:89:08:CC:36:97:4D:73:1E
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0185735620331F80C8249E5EE25EE4D5CE9B
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/EJ9w_jq8l4vge835iQjMNpdNcx4.roa
Signing time: Mon 02 Jan 2023 16:35:02 +0000
ROA not before: Mon 02 Jan 2023 16:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24891
IP address blocks: 82.222.169.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:20:33:1f:80:c8:24:9e:5e:e2:5e:e4:d5:ce:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 2 16:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=109f70fe3abc978be07bcdf98908cc36974d731e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:52:6a:a2:8e:41:ef:42:b1:f9:a2:6e:d0:49:
db:20:17:b4:43:d3:85:08:3d:53:4a:55:9d:02:de:
a5:53:67:98:3c:55:68:4b:48:c8:1e:d2:50:40:2a:
40:04:3e:0c:30:de:ba:e8:e8:74:8b:29:90:83:fd:
93:e2:5c:c5:43:36:80:cc:47:07:61:a1:58:f7:7a:
82:47:c1:a9:b0:09:43:bf:5b:d0:4c:cf:6b:49:51:
9f:47:03:4e:5e:c3:47:6b:95:8c:6f:f2:1a:ca:ad:
92:27:13:29:b4:d2:16:de:52:24:f8:e6:7c:b8:c9:
40:d9:40:90:27:1c:bf:f1:30:1f:c9:3b:6b:1a:d4:
7e:9a:4c:6a:fb:a4:7c:7c:c1:f1:42:07:9c:a5:56:
02:90:a3:aa:a4:00:c2:dc:4e:7c:11:25:49:a4:2b:
1c:40:89:ed:40:b9:90:f3:12:32:ac:cb:d4:fd:3b:
e3:11:cf:0d:24:22:5b:f7:b9:1f:58:2c:92:9a:40:
7e:6b:ff:57:03:62:e1:12:44:b1:50:9f:58:5c:57:
44:1f:4a:de:2e:29:0f:05:52:d3:a8:a2:a1:2a:54:
de:62:45:ab:13:d8:c0:0c:d5:af:11:d1:30:9b:ca:
4e:ed:d2:1e:a6:a5:bd:86:60:fb:cf:6a:95:21:5a:
c3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9F:70:FE:3A:BC:97:8B:E0:7B:CD:F9:89:08:CC:36:97:4D:73:1E
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/EJ9w_jq8l4vge835iQjMNpdNcx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.222.169.0/24
Signature Algorithm: sha256WithRSAEncryption
00:2d:84:47:ee:1b:d1:b6:ed:c8:88:06:80:18:d6:6c:50:0f:
f7:a6:0a:ab:4f:79:6c:15:76:e2:b3:12:b7:56:07:11:35:18:
1e:93:67:b6:88:ed:90:ef:3b:29:8a:92:21:cc:6b:32:68:fe:
0f:6a:a0:ff:f6:82:da:57:9c:a6:a8:d1:03:4e:be:34:75:3b:
ed:ae:32:bc:67:c4:98:cc:0c:3b:3a:ed:70:d9:1d:31:0c:d4:
97:20:1e:2e:97:1a:f5:ec:30:91:0c:ef:77:a0:b3:82:fc:96:
34:83:e1:dd:87:3c:75:fa:25:0c:f9:c0:91:9e:21:a3:6f:ca:
32:52:95:59:66:ba:3a:20:73:68:17:09:b1:06:62:20:c3:15:
74:6c:f5:3a:1d:0b:40:52:cc:7e:5b:63:77:f3:eb:4c:4f:de:
7b:1d:eb:cf:7f:fb:9b:6f:d1:c3:37:5f:97:39:d6:a7:31:63:
2f:97:dd:37:08:7b:35:d7:93:05:de:28:b9:f7:f5:ad:e9:1b:
93:db:c1:13:7f:d5:69:fe:f5:c8:1f:f4:9f:5d:ed:c5:64:38:
c7:ed:80:3a:4b:09:b5:87:d9:b9:ac:df:03:8b:2c:c5:33:e8:
38:ab:cd:ba:39:4f:19:79:65:cd:5a:39:07:00:fd:2d:2d:c8:
de:c3:db:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzViAzH4DIJJ5e4l7k1c6bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhOWQzMGU2MDM1YmU4YjgzODYwNjFmMjcxNDgxYzcwN2Uw
NGNlMmIwHhcNMjMwMTAyMTYzNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDlmNzBmZTNhYmM5NzhiZTA3YmNkZjk4OTA4Y2MzNjk3NGQ3MzFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAllJqoo5B70Kx+aJu0EnbIBe0Q9OF
CD1TSlWdAt6lU2eYPFVoS0jIHtJQQCpABD4MMN666Oh0iymQg/2T4lzFQzaAzEcH
YaFY93qCR8GpsAlDv1vQTM9rSVGfRwNOXsNHa5WMb/Iayq2SJxMptNIW3lIk+OZ8
uMlA2UCQJxy/8TAfyTtrGtR+mkxq+6R8fMHxQgecpVYCkKOqpADC3E58ESVJpCsc
QIntQLmQ8xIyrMvU/TvjEc8NJCJb97kfWCySmkB+a/9XA2LhEkSxUJ9YXFdEH0re
LikPBVLTqKKhKlTeYkWrE9jADNWvEdEwm8pO7dIepqW9hmD7z2qVIVrDOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBCfcP46vJeL4HvN+YkIzDaXTXMeMB8GA1UdIwQY
MBaAFLqdMOYDW+i4OGBh8nFIHHB+BM4rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXAwdzVnTmI2TGc0WUdIeWNVZ2NjSDRFemlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hYzljMzItN2RiYy00ZDZjLWJjMDgt
NWQ1ODRmYmM1ZDI3LzEvRUo5d19qcThsNHZnZTgzNWlRak1OcGROY3g0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hYzljMzItN2RiYy00ZDZjLWJjMDgtNWQ1ODRmYmM1ZDI3
LzEvdXAwdzVnTmI2TGc0WUdIeWNVZ2NjSDRFemlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUt6pMA0G
CSqGSIb3DQEBCwUAA4IBAQAALYRH7hvRtu3IiAaAGNZsUA/3pgqrT3lsFXbisxK3
VgcRNRgek2e2iO2Q7zspipIhzGsyaP4PaqD/9oLaV5ymqNEDTr40dTvtrjK8Z8SY
zAw7Ou1w2R0xDNSXIB4ulxr17DCRDO93oLOC/JY0g+Hdhzx1+iUM+cCRniGjb8oy
UpVZZro6IHNoFwmxBmIgwxV0bPU6HQtAUsx+W2N38+tMT957HevPf/ubb9HDN1+X
OdanMWMvl903CHs115MF3ii59/Wt6RuT28ETf9Vp/vXIH/SfXe3FZDjH7YA6Swm1
h9m5rN8DiyzFM+g4q826OU8ZeWXNWjkHAP0tLcjew9vO
-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:30 2024 by rpki-client on console.sobornost.net