Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/_26-Yv8tlbXWBG6cwae_Datu3aY.roa
File: _26-Yv8tlbXWBG6cwae_Datu3aY.roa (raw, json)
Hash identifier: 91e8USAKOpH6P1NvdrQiEUU0ch5GNYQjaeS3R00PxMg=
Subject key identifier: FF:6E:BE:62:FF:2D:95:B5:D6:04:6E:9C:C1:A7:BF:0D:AB:6E:DD:A6
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 018BD26C562A70069E52787887DF0938E328
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/_26-Yv8tlbXWBG6cwae_Datu3aY.roa
Signing time: Wed 15 Nov 2023 09:59:57 +0000
ROA not before: Wed 15 Nov 2023 09:59:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.186.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:6c:56:2a:70:06:9e:52:78:78:87:df:09:38:e3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Nov 15 09:59:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff6ebe62ff2d95b5d6046e9cc1a7bf0dab6edda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:80:ec:1b:6e:24:13:0f:5c:59:4e:98:01:93:
57:cd:f7:7b:3a:a4:9c:71:41:5e:22:1e:8c:b9:ce:
41:5f:42:2f:42:00:e4:3c:c2:01:1b:89:9e:47:6e:
09:54:77:cf:b7:d9:c9:39:19:26:16:15:f4:96:79:
f8:36:3e:7c:30:c4:58:f8:1d:0c:14:7a:71:ac:6c:
6b:da:6e:e0:f2:9b:67:10:db:85:a2:8e:e5:08:5b:
ea:1c:a6:04:0a:69:47:1c:16:75:ae:dd:9d:f2:56:
2c:e5:44:e8:52:fd:ca:3b:f5:8f:ae:e4:f3:87:f4:
ad:92:67:d4:93:46:41:29:84:b2:2c:d5:7f:d5:c6:
51:eb:ab:08:b9:8d:51:55:67:9f:64:35:c5:9f:77:
eb:9f:05:19:bb:9f:69:e6:e3:c7:b1:7f:f5:96:ac:
12:95:d0:9e:34:d5:cd:12:38:17:13:fe:44:22:5a:
51:35:98:a7:4e:03:94:97:82:d4:b6:ab:22:7b:59:
eb:56:e7:44:27:2a:00:a0:ff:7f:3c:a2:02:85:9c:
25:bc:1a:29:c3:a7:8d:19:7a:99:12:18:ee:79:45:
db:3f:e2:10:22:52:45:0c:74:b9:96:98:04:04:ae:
b4:02:08:be:6f:c5:67:90:0a:39:0f:c2:d9:35:47:
08:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:6E:BE:62:FF:2D:95:B5:D6:04:6E:9C:C1:A7:BF:0D:AB:6E:DD:A6
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/_26-Yv8tlbXWBG6cwae_Datu3aY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.25.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c6:6b:38:eb:8a:06:11:c6:42:8e:81:58:d9:95:94:37:13:
77:fd:ab:10:f0:ac:17:e2:cd:fc:52:44:dc:b6:a9:33:c2:bd:
3f:5e:27:c9:b1:a5:f6:6b:54:5b:50:56:69:a8:c7:24:7f:46:
24:45:19:ed:ed:bc:cf:55:9e:b4:93:a5:05:51:c6:ab:41:53:
f2:61:48:96:5c:ac:39:f3:aa:62:1f:b3:11:b7:42:08:70:6e:
ec:08:a2:47:97:35:dc:9f:4c:35:96:df:7c:f1:ea:3c:d5:95:
4a:1e:43:6d:9d:19:80:fe:da:29:d6:eb:ac:bd:e6:d6:8e:c0:
a1:b6:06:b0:e2:ca:03:23:16:2d:11:91:0c:3e:c9:de:b2:8c:
b4:6c:90:44:c8:25:57:d4:08:d3:85:71:b8:b3:25:d7:81:a6:
27:61:83:8b:35:00:d6:36:e3:5b:50:12:a3:bf:e0:f7:b1:c3:
7a:a1:28:9c:2e:7c:bf:a7:85:ed:ab:70:32:08:ec:89:34:9c:
c4:4e:c1:a4:ec:97:5e:e6:dd:e7:a3:f2:a2:20:e0:20:df:b5:
f0:26:ff:22:60:6e:c6:ea:cf:db:f4:ff:c8:eb:b6:44:3a:aa:
9b:99:4c:65:80:f4:79:38:39:dc:dd:46:cd:05:a5:ab:0e:33:
89:d2:8d:eb
-----BEGIN CERTIFICATE-----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Generated at Sun Nov 19 20:53:29 2023 by rpki-client on console-fra.rpki-client.org