Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/MST7qCLOjz12lt3a7LNBBOzv75U.roa
File: MST7qCLOjz12lt3a7LNBBOzv75U.roa (raw, json)
Hash identifier: Y71Cp/B2690imURWdy4StAr3XMJhY5Tu6vqByzo8unk=
Subject key identifier: 31:24:FB:A8:22:CE:8F:3D:76:96:DD:DA:EC:B3:41:04:EC:EF:EF:95
Certificate issuer: /CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Certificate serial: 018B65EB86D57612465A3579DDC36D30DC53
Authority key identifier: A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/MST7qCLOjz12lt3a7LNBBOzv75U.roa
Signing time: Wed 25 Oct 2023 08:20:16 +0000
ROA not before: Wed 25 Oct 2023 08:20:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62294
IP address blocks: 85.222.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:eb:86:d5:76:12:46:5a:35:79:dd:c3:6d:30:dc:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Validity
Not Before: Oct 25 08:20:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3124fba822ce8f3d7696dddaecb34104ecefef95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1c:44:b9:0d:21:e4:90:6b:5e:2b:8c:a1:91:
2c:67:af:06:4b:8f:6b:b5:6f:5c:ff:d5:29:3e:dd:
32:d0:31:c7:86:8d:23:6a:7e:6c:af:1e:d5:95:5e:
8e:83:70:a3:c0:21:42:a1:3a:aa:a8:5d:08:b3:db:
71:de:38:5b:f9:20:cc:a7:99:9e:3f:5b:13:9f:45:
aa:75:0f:48:32:41:62:c0:1a:97:da:43:68:b2:bc:
c2:61:f4:f5:23:36:b3:e1:54:8c:ff:ee:23:16:81:
af:7f:44:65:19:a3:62:f6:ab:6e:e0:58:6a:15:5f:
2e:72:b4:91:33:e0:ee:30:7d:a7:fc:5d:e7:df:89:
21:a1:1e:10:2a:18:6f:34:e2:ca:57:2b:58:96:74:
38:50:df:1a:1d:ac:e2:b9:8d:ca:d7:d4:95:c0:70:
08:8a:d1:11:b0:e6:7a:c4:e5:1b:95:df:ee:29:d6:
40:a4:64:6c:e8:d7:b8:f4:ed:cd:04:ee:24:37:da:
c5:8e:04:1b:1b:df:96:de:5d:3c:4b:50:b9:41:93:
1d:02:12:e1:6c:50:d5:d3:1c:37:26:22:cd:c2:cb:
81:cf:00:44:67:27:76:83:25:ad:36:74:61:39:e8:
ce:38:47:cf:04:2e:e8:73:d6:13:a6:de:07:be:60:
a6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:24:FB:A8:22:CE:8F:3D:76:96:DD:DA:EC:B3:41:04:EC:EF:EF:95
X509v3 Authority Key Identifier:
keyid:A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/MST7qCLOjz12lt3a7LNBBOzv75U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/p9eN4CNOb5lwFZL1NuRfX1WU7sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.222.164.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:28:95:71:e6:6f:32:9c:91:5b:5e:a1:39:11:43:bf:d8:55:
a9:f6:f1:87:b2:f2:23:a0:79:f5:92:3b:cc:ed:16:f8:53:4a:
c1:64:d2:f1:88:79:88:fc:cc:a7:9a:57:db:e2:f9:f3:8c:85:
30:c2:09:0a:4a:9e:7e:0d:f0:94:07:fe:bd:1a:af:22:6f:d8:
0b:ef:8a:cb:df:b9:e8:fa:71:80:af:63:4b:8c:95:54:bd:a3:
46:72:db:3a:32:ef:ab:e2:6e:e3:30:79:32:2d:6d:5a:21:fd:
3c:0c:3e:0d:54:f4:3a:fe:46:a4:7c:4b:7b:fa:4f:20:29:cf:
82:11:32:f2:8b:a9:05:06:2c:b5:57:24:1d:d6:51:b8:09:dc:
72:3d:49:72:6a:b7:88:00:c7:67:86:78:d3:8c:7a:66:bf:9a:
21:e1:f9:d9:d2:94:cb:ba:41:d9:dd:89:44:57:ff:e8:42:f7:
5f:e8:e7:d7:b0:4b:0d:43:37:8e:64:c8:e1:cf:05:74:79:7b:
59:5d:bc:38:80:18:29:23:f3:0c:65:fc:e4:41:ad:c8:9b:38:
d2:49:7b:be:0c:4c:9a:c0:29:2f:ae:8e:06:e6:49:67:4d:47:
29:5c:38:0f:b0:4e:ec:38:a5:0a:cb:ba:91:7c:92:53:1e:18:
b4:89:a1:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:33 2024 by rpki-client on console-ams.rpki-client.org