Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Mjspz1w-7jaf4VTvlHdDV-uP5os.roa
File: Mjspz1w-7jaf4VTvlHdDV-uP5os.roa (raw, json)
Hash identifier: hftHIW79NAHzwEftSqSLByS/i5uflYhn0BB1Pmkgs8E=
Subject key identifier: 32:3B:29:CF:5C:3E:EE:36:9F:E1:54:EF:94:77:43:57:EB:8F:E6:8B
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F15014F6C9CBFBA8C9330C58F8B78CB
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Mjspz1w-7jaf4VTvlHdDV-uP5os.roa
Signing time: Sun 01 Jan 2023 20:45:25 +0000
ROA not before: Sun 01 Jan 2023 20:45:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50886
IP address blocks: 85.122.144.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:01:4f:6c:9c:bf:ba:8c:93:30:c5:8f:8b:78:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=323b29cf5c3eee369fe154ef94774357eb8fe68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0e:a0:75:07:ad:eb:a0:4b:2c:3e:fe:18:37:
13:71:8d:cf:ee:f9:63:0b:30:c8:16:ce:0d:b1:90:
52:30:53:c0:33:7a:87:84:54:b5:de:e4:57:dd:32:
6f:7e:61:a9:e1:79:90:79:bc:6a:8f:86:e9:24:2a:
f2:32:8f:48:b7:6b:f3:a3:b0:5a:85:7c:5b:27:29:
9c:23:bc:ef:15:25:61:c8:11:6c:93:3b:e4:e8:ee:
f1:b3:2f:37:3f:8b:fe:05:4b:69:e2:e3:13:42:94:
49:8d:77:7b:8e:5d:31:a7:ab:ee:00:27:ed:a9:52:
23:70:7b:16:2e:da:9e:0b:7a:7e:d7:17:45:ef:a9:
5e:0f:e4:49:80:cf:0d:14:28:6b:64:3a:76:93:71:
50:09:cd:9a:f7:54:77:5a:fb:4e:fd:1d:51:81:47:
8c:a7:76:ab:96:35:dc:e1:9e:23:f3:e2:ef:1c:fb:
18:01:ad:13:bc:7e:ce:b8:bd:79:be:a5:aa:23:5f:
49:e0:e0:f8:30:da:54:32:51:d8:31:1f:f9:0e:dc:
85:65:83:a6:d0:70:82:50:30:e9:5c:7d:18:89:07:
9d:7d:ec:b9:54:52:36:18:7e:49:f0:8e:b9:eb:ba:
7a:ce:08:fb:1d:30:d9:10:9b:e9:2d:7b:60:06:2b:
24:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3B:29:CF:5C:3E:EE:36:9F:E1:54:EF:94:77:43:57:EB:8F:E6:8B
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Mjspz1w-7jaf4VTvlHdDV-uP5os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.122.144.0/21
Signature Algorithm: sha256WithRSAEncryption
49:26:ca:59:72:a2:84:0f:4e:2f:2c:56:39:3f:86:a0:49:5f:
5a:3c:7d:48:7b:86:cd:79:29:0c:46:9b:6d:04:3f:25:c6:6e:
71:a0:e3:9c:54:73:8e:d6:47:55:41:85:44:4b:c8:37:7b:85:
2f:37:a3:2b:57:4c:4b:76:41:48:cd:4c:d0:d8:9c:af:0c:ab:
0f:67:1c:16:89:07:43:93:bc:17:31:82:87:41:37:fc:8d:9f:
bb:3e:32:b7:fd:0d:4e:3b:86:36:b9:c4:02:18:d0:ae:36:b9:
46:05:aa:69:d2:18:98:78:ae:eb:28:85:7a:25:1e:50:e4:14:
73:5b:6f:29:cf:b9:d2:a5:cf:b4:16:3f:6f:45:3f:6d:21:af:
62:bd:b8:4e:c1:e3:ea:7f:05:dc:70:be:d5:14:bc:c3:4e:3b:
7b:c5:12:c2:1d:af:53:70:d9:aa:d2:25:c4:cc:25:60:15:4a:
89:20:ad:49:8f:2a:3c:f0:82:09:50:2b:13:77:b6:ec:23:2c:
d8:2d:78:81:3c:d1:00:d6:fa:72:dd:15:8c:68:dc:33:db:cb:
da:a4:f6:e9:0d:4c:6f:c8:e0:5e:2f:f9:bd:79:82:92:2f:f3:
2e:e3:1e:95:2d:00:d5:d5:53:98:12:a2:c6:72:73:a1:0a:b6:
43:07:d1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org