Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/lXhRpRQWREMViZrZBDhUSyrEGGI.roa
File: lXhRpRQWREMViZrZBDhUSyrEGGI.roa (raw, json)
Hash identifier: Q7/7B5nBRUto81Y/pkVkpHk12pPG/SQ8Stfov4Q+Amk=
Subject key identifier: 95:78:51:A5:14:16:44:43:15:89:9A:D9:04:38:54:4B:2A:C4:18:62
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 018C34F64EAAE1333A59DB2DC1C311E9A43E
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/lXhRpRQWREMViZrZBDhUSyrEGGI.roa
Signing time: Mon 04 Dec 2023 13:13:26 +0000
ROA not before: Mon 04 Dec 2023 13:13:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.186.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:34:f6:4e:aa:e1:33:3a:59:db:2d:c1:c3:11:e9:a4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Dec 4 13:13:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=957851a51416444315899ad90438544b2ac41862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3d:a9:6e:f3:6a:24:25:02:6f:fa:9a:95:68:
32:2e:fd:f5:6a:5b:f3:a2:84:49:8c:86:df:c2:d1:
a0:1b:66:eb:5c:a6:a0:f7:37:aa:f6:df:d9:3e:dd:
00:3c:a0:d5:1f:74:8d:cb:ff:65:1b:da:c4:e2:41:
47:82:41:d8:f8:c2:8e:62:90:82:dc:99:6b:aa:da:
af:4f:9c:1d:f5:10:69:ca:21:94:8d:68:c7:89:fe:
ac:56:88:97:d7:5a:34:95:b5:eb:95:cc:db:1f:ef:
7b:8e:47:56:66:c0:d4:bc:7f:9d:ad:9d:5f:3c:35:
91:0c:85:67:93:10:9e:a0:2e:c9:c1:0a:ac:ba:f7:
c3:1f:ca:28:f5:0c:b8:88:98:7b:2a:e0:4d:a4:3f:
e1:16:7b:83:b1:59:52:af:6d:d5:ef:5b:a3:e1:e1:
ee:28:f0:d7:67:8e:f4:ac:91:ac:95:17:0f:a6:0f:
cf:35:07:6e:4e:e9:33:02:4e:d4:72:d4:e8:90:d7:
32:de:52:99:c9:f9:2c:7a:b0:e0:ad:7f:01:f5:bd:
3b:f7:dc:ef:24:cd:53:21:9c:c3:08:0d:48:a7:2d:
0f:02:5b:ea:68:17:41:77:ab:43:1f:29:89:c8:ca:
84:64:97:c4:e9:85:26:76:d9:9c:dc:83:fd:a4:11:
78:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:78:51:A5:14:16:44:43:15:89:9A:D9:04:38:54:4B:2A:C4:18:62
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/lXhRpRQWREMViZrZBDhUSyrEGGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.26.0/24
Signature Algorithm: sha256WithRSAEncryption
40:d1:4c:4d:12:7d:21:ab:78:f1:2a:93:ce:cc:0d:87:f7:71:
14:0d:13:91:6b:cf:8f:68:86:6f:98:03:71:3c:76:c6:de:2b:
66:b4:52:4d:0e:39:41:2b:61:7c:48:59:db:02:35:62:8a:54:
5b:dc:51:c8:38:68:64:d2:31:7f:5a:8b:02:4f:7d:22:23:80:
e5:53:91:71:d5:a4:18:d0:e1:12:40:b0:11:85:4d:aa:1c:bf:
16:ef:92:11:26:30:77:e4:83:b5:06:c8:1c:ff:c9:ab:e6:a3:
8b:33:9c:50:65:a1:7b:a4:c7:3f:5b:99:37:4b:f1:66:86:2a:
8d:fb:11:e0:92:7f:50:94:6a:f0:df:bd:ad:f1:95:04:9e:22:
1c:fc:d8:c5:a3:92:86:03:16:3d:8a:05:39:00:84:fb:03:48:
94:1a:14:49:17:01:fc:dc:91:2d:11:99:38:96:ad:33:92:9a:
44:60:52:7c:e9:27:dd:4e:83:60:81:90:a5:e0:6b:dd:f6:16:
36:c1:fb:f6:87:11:c1:2c:c6:fe:5f:3d:ba:68:82:97:13:04:
18:4d:fd:d2:c7:07:57:50:31:9b:a7:a8:d0:74:24:24:92:76:
c9:5f:bd:3b:08:12:e8:6f:3a:ea:b3:f2:17:8a:db:d7:21:e1:
81:b1:c7:a8
-----BEGIN CERTIFICATE-----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Generated at Thu Dec 14 18:54:49 2023 by rpki-client on console-fra.rpki-client.org