Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/ER08Ech2NeYZaIgjY03GWrThUuE.roa
File: ER08Ech2NeYZaIgjY03GWrThUuE.roa (raw, json)
Hash identifier: n0V4AgbRgJ+DBGOKYwaLjApu6Pgq0a5qkJ3LJaIDdPk=
Subject key identifier: 11:1D:3C:11:C8:76:35:E6:19:68:88:23:63:4D:C6:5A:B4:E1:52:E1
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 0189D4BB6539B08236137190730758012F7E
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/ER08Ech2NeYZaIgjY03GWrThUuE.roa
Signing time: Tue 08 Aug 2023 10:39:58 +0000
ROA not before: Tue 08 Aug 2023 10:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.186.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:bb:65:39:b0:82:36:13:71:90:73:07:58:01:2f:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Aug 8 10:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=111d3c11c87635e619688823634dc65ab4e152e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:6e:64:82:d4:d9:78:2d:1a:7b:68:dc:7c:
6d:05:fc:a6:98:8a:e5:10:a6:b4:70:9e:95:66:9c:
4e:51:59:88:00:44:67:6a:84:dc:4d:80:18:cc:8e:
ab:89:a3:df:33:80:c9:ca:99:4c:c2:ea:6c:69:75:
9a:68:95:98:c6:17:68:b7:db:37:01:84:58:6d:ef:
ef:65:02:d8:8c:ac:ae:b3:fc:73:02:e5:95:a1:22:
ba:1b:e4:53:70:67:83:d5:6f:79:18:05:f7:7a:2b:
fe:35:c5:91:d9:74:76:0c:ca:67:3a:4b:84:c9:39:
6e:ea:b0:ca:35:f8:08:3b:ed:9e:6c:0c:70:99:50:
4d:f7:b8:d1:0f:a4:be:0f:8f:15:e4:a6:0f:ac:21:
2e:5c:ba:f5:38:31:f5:04:a6:de:65:9f:86:f5:20:
0a:7c:0b:ab:46:da:ec:9c:83:66:6d:70:1c:c4:0e:
d0:26:58:b6:39:6c:05:86:22:87:6c:b3:f3:c8:10:
c8:29:06:23:33:ea:d6:21:a8:9c:b9:e4:1b:7d:78:
51:98:c7:d3:56:85:5e:f3:d4:33:f1:f5:5d:13:e1:
b0:11:f6:91:3e:fe:c0:55:cc:f2:59:b6:82:eb:cd:
db:d8:1c:6f:27:c6:ae:0a:26:4b:d0:de:b0:09:ae:
89:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1D:3C:11:C8:76:35:E6:19:68:88:23:63:4D:C6:5A:B4:E1:52:E1
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/ER08Ech2NeYZaIgjY03GWrThUuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.25.0/24
Signature Algorithm: sha256WithRSAEncryption
58:38:86:b4:38:c2:5d:86:75:4b:6b:aa:96:54:15:96:04:b5:
12:54:7c:51:66:e2:b5:b6:f9:b9:9a:99:be:8f:e6:9a:f3:d3:
9b:9d:01:28:b5:3e:5c:72:c9:b3:9b:87:a3:64:a0:0d:fa:f7:
47:b3:7d:ae:39:7b:90:29:f3:62:e1:fb:ab:a3:3c:ae:71:28:
21:18:d6:54:cd:90:38:e1:60:09:9a:61:9b:22:c7:50:c6:1d:
53:11:6f:0a:db:ef:c0:ad:a4:a9:06:e8:b6:ff:5e:5b:32:4a:
e7:19:98:3b:3a:cb:6d:5b:a8:63:4e:46:b0:8e:62:88:10:d8:
63:ee:7a:f8:c5:4a:56:78:db:28:f7:6a:d3:83:ed:30:fe:23:
10:20:01:c7:42:ea:26:06:7c:49:e7:10:81:1d:ef:53:e9:32:
eb:b6:5f:38:e7:b3:48:9e:37:20:27:41:e3:02:aa:04:17:21:
87:8c:3b:db:a9:e0:ee:cf:b4:be:f6:ad:6a:df:75:04:e9:a7:
74:08:4b:0f:17:87:c8:ba:62:78:c5:50:3d:92:3f:c8:6b:15:
82:50:b7:17:d3:a5:74:2c:93:9b:14:9d:34:f3:c7:1d:63:8d:
dd:d9:ce:c4:59:89:18:a9:2c:6b:7a:02:11:8a:7c:ba:08:b1:
8b:73:b7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 13:16:36 2023 by rpki-client on console-fra.rpki-client.org