Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/gTDOBtwLMiDtbRKNVgti3Iic0bk.roa
File: gTDOBtwLMiDtbRKNVgti3Iic0bk.roa (raw, json)
Hash identifier: ziASm6w5IQD4KOO4bueB9NrpsWQlAGjM9I5QSB/NcO8=
Subject key identifier: 81:30:CE:06:DC:0B:32:20:ED:6D:12:8D:56:0B:62:DC:88:9C:D1:B9
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 018BD26C56CCADDF3DEAF07E2FB35214D6BF
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/gTDOBtwLMiDtbRKNVgti3Iic0bk.roa
Signing time: Wed 15 Nov 2023 09:59:57 +0000
ROA not before: Wed 15 Nov 2023 09:59:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 185.186.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:6c:56:cc:ad:df:3d:ea:f0:7e:2f:b3:52:14:d6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Nov 15 09:59:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8130ce06dc0b3220ed6d128d560b62dc889cd1b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:11:cf:9e:d5:3c:f3:c6:09:9f:e9:b8:a4:1c:
aa:7f:58:0a:b8:c2:5f:e6:01:9f:7d:d8:59:fe:d3:
9b:c9:34:e6:00:21:bb:fa:4e:35:b2:b6:de:7c:96:
e9:6f:1e:c0:52:66:53:7e:8b:69:9d:d5:a8:00:55:
59:69:47:52:e3:b1:93:59:e6:a3:24:a8:d1:7a:db:
6c:54:bf:b0:f2:9a:df:c2:e3:46:17:4b:9c:68:a4:
53:9e:75:55:93:3d:e5:18:2a:bb:6c:67:33:9c:a1:
04:02:17:72:80:3b:59:10:a9:7e:1b:97:4b:8d:e7:
f3:d5:7f:f5:a7:cb:7a:e1:ff:8a:d0:d6:8b:68:bf:
48:9d:bd:16:ad:d9:ce:92:62:da:41:f9:5c:d5:e1:
f8:38:ef:03:e6:46:f6:03:76:90:59:4b:42:99:00:
8e:3d:fd:66:1b:87:f4:64:05:b6:6a:33:f4:09:d8:
69:e3:1f:7d:81:3c:d9:f7:ac:96:73:92:8a:ef:33:
b7:18:3a:64:16:9c:ef:a5:26:1d:6e:85:e7:99:5f:
d6:04:97:8f:1f:16:67:76:9d:0b:22:ba:02:82:62:
8e:8e:76:c3:8f:8f:85:d8:77:d5:fa:4c:f4:be:3c:
60:a0:5a:f3:fc:bc:60:37:f3:60:cc:cf:6f:c0:16:
76:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:30:CE:06:DC:0B:32:20:ED:6D:12:8D:56:0B:62:DC:88:9C:D1:B9
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/gTDOBtwLMiDtbRKNVgti3Iic0bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.26.0/24
Signature Algorithm: sha256WithRSAEncryption
38:34:45:37:c7:c0:02:a6:31:0a:6a:c9:22:5d:e5:21:33:7c:
9f:d8:78:3b:7d:7a:56:29:8d:b8:22:96:a7:aa:d0:fd:cc:75:
23:94:5b:ac:4c:6b:83:de:a6:ef:aa:93:9e:a8:03:b1:e2:dd:
15:3f:6d:c0:df:36:d8:dc:ee:b1:06:e9:c8:dd:1e:dd:6e:a9:
54:30:fe:79:0a:c8:f8:5f:90:7f:f6:db:1e:4b:49:7d:9e:56:
56:91:db:c0:ab:83:e1:8b:9a:3a:d8:93:f7:23:21:c0:12:d4:
7a:88:2d:aa:0f:15:40:fc:ca:7d:85:88:fb:63:d7:f1:b0:3b:
c7:8f:39:33:65:d1:ad:56:a2:2c:07:2c:9c:0f:07:6f:71:a1:
a1:4f:48:dd:e6:e0:06:a6:76:0b:1c:98:39:73:a1:58:83:d9:
66:02:e3:80:db:8b:a9:83:56:63:21:21:09:63:2b:f5:6a:84:
82:2e:dc:b4:af:e8:77:27:8a:69:6c:1a:58:64:8d:9d:44:fc:
da:cf:88:a3:64:7b:e9:c4:8c:09:e6:8f:f0:35:0b:c8:9d:60:
a5:cb:59:85:e7:c4:6e:4d:ce:95:fc:b2:e8:a2:61:3a:3e:d4:
f2:37:14:85:46:6b:b3:78:9e:ae:58:4f:a3:b5:d1:14:8e:93:
00:4a:e7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 4 14:03:43 2023 by rpki-client on console-fra.rpki-client.org