Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/o_vXikuMsrGEJrDASiLojqX8d84.roa
File: o_vXikuMsrGEJrDASiLojqX8d84.roa (raw, json)
Hash identifier: HvRI/xM7+JBZGeuA2LM4bbcHe7rGR9/oNLI5BUncLxI=
Subject key identifier: A3:FB:D7:8A:4B:8C:B2:B1:84:26:B0:C0:4A:22:E8:8E:A5:FC:77:CE
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 0186FE5856A43FC9C608E12476298D1773F4
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/o_vXikuMsrGEJrDASiLojqX8d84.roa
Signing time: Mon 20 Mar 2023 09:27:27 +0000
ROA not before: Mon 20 Mar 2023 09:27:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135752
IP address blocks: 185.186.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:58:56:a4:3f:c9:c6:08:e1:24:76:29:8d:17:73:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Mar 20 09:27:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3fbd78a4b8cb2b18426b0c04a22e88ea5fc77ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:16:02:e5:12:37:ad:3a:99:7b:d0:f8:6d:97:
6f:7b:47:78:2c:ef:c6:b1:81:ed:04:32:df:c0:40:
d2:56:fc:8e:61:1a:79:bb:64:a0:5a:8a:17:e0:b1:
24:3b:10:10:f1:bf:bc:cb:20:9c:8e:78:37:28:79:
8f:b4:0e:37:b3:8a:67:49:de:bf:99:95:3f:e5:80:
f2:b2:59:ca:6e:cc:43:a3:ab:3c:ff:6d:63:ad:89:
58:e7:af:69:0d:86:7a:15:ab:60:8d:b4:ce:20:95:
88:20:37:ac:81:e6:d2:58:72:ea:b4:03:40:a0:1d:
85:09:37:57:33:34:5f:01:90:7c:bd:20:77:1c:65:
b2:5d:56:7b:2f:3c:1f:da:97:12:1c:f0:68:61:08:
d0:cb:5d:e9:59:bf:88:65:ec:fd:b7:ff:23:40:c7:
ab:19:67:b1:2f:c2:23:08:a5:15:42:ab:7a:b9:4e:
36:9d:1b:16:fa:7a:d7:b9:f4:d1:83:73:71:19:8d:
1c:7f:ba:82:28:94:0c:c0:d7:99:8b:4b:1b:e9:c9:
b8:24:6a:1d:84:93:24:e6:4c:44:9b:f8:62:d5:ae:
ca:45:17:4a:00:9c:6f:74:5d:f4:67:19:47:6d:94:
ac:66:2b:1c:e3:1a:23:6e:30:10:a6:61:2d:6d:98:
6f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:FB:D7:8A:4B:8C:B2:B1:84:26:B0:C0:4A:22:E8:8E:A5:FC:77:CE
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/o_vXikuMsrGEJrDASiLojqX8d84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:43:4c:f9:88:a0:a8:1b:35:1f:bb:bc:40:70:32:6f:03:26:
7b:b7:11:a2:56:2b:a6:43:0a:a4:29:42:db:f7:ec:d6:3e:59:
33:40:9f:0b:b9:88:00:b1:bd:4c:7d:22:f1:8d:64:ce:24:a6:
a3:07:ba:80:ac:54:60:cc:91:db:ed:b3:be:66:ce:22:f8:8f:
ac:d2:6e:4d:b6:56:c9:63:31:a0:f7:2f:c4:3f:6b:a6:98:b4:
c0:2b:f9:6a:19:4d:01:76:99:fd:97:71:fd:1d:62:74:1f:75:
ec:98:e0:9a:aa:8d:a0:96:6b:e2:9b:e6:16:e6:11:0f:7b:f4:
cb:25:71:d0:96:1c:5e:31:08:b6:f1:2d:77:fc:77:b8:45:bf:
78:b7:14:c7:49:6d:ab:da:95:fe:cb:64:f3:22:8c:ae:cd:63:
69:fd:92:62:17:db:3f:0e:b7:67:78:9a:b8:33:9c:94:66:58:
8f:9d:bf:c8:74:5c:33:f9:67:79:b1:ec:95:e6:65:04:66:d6:
e1:4d:52:8a:be:bb:84:68:cd:1b:80:73:71:01:28:fc:6e:d0:
2d:c6:5c:d4:bc:93:b9:f8:08:81:67:8d:31:1c:dd:48:25:a7:
2b:b5:03:cc:3a:fe:a8:f7:d9:60:f0:3f:75:89:57:12:0c:ca:
59:ba:3e:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYb+WFakP8nGCOEkdimNF3P0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYTBhZGIxYThiNzk3MDIwZjBlYzdhMjlhOWI1YWJhZDQw
YjY1M2UwHhcNMjMwMzIwMDkyNzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhM2ZiZDc4YTRiOGNiMmIxODQyNmIwYzA0YTIyZTg4ZWE1ZmM3N2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxYC5RI3rTqZe9D4bZdve0d4LO/G
sYHtBDLfwEDSVvyOYRp5u2SgWooX4LEkOxAQ8b+8yyCcjng3KHmPtA43s4pnSd6/
mZU/5YDyslnKbsxDo6s8/21jrYlY569pDYZ6FatgjbTOIJWIIDesgebSWHLqtANA
oB2FCTdXMzRfAZB8vSB3HGWyXVZ7Lzwf2pcSHPBoYQjQy13pWb+IZez9t/8jQMer
GWexL8IjCKUVQqt6uU42nRsW+nrXufTRg3NxGY0cf7qCKJQMwNeZi0sb6cm4JGod
hJMk5kxEm/hi1a7KRRdKAJxvdF30ZxlHbZSsZisc4xojbjAQpmEtbZhvFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKP714pLjLKxhCawwEoi6I6l/HfOMB8GA1UdIwQY
MBaAFNygrbGot5cCDw7HopqbWrrUC2U+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0tDdHNhaTNsd0lQRHNlaW1wdGF1dFFMWlQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC84NDZiZDMtMDM3My00MTkwLWFkZmYt
M2UzNmNhOWEyZDY5LzEvb192WGlrdU1zckdFSnJEQVNpTG9qcVg4ZDg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC84NDZiZDMtMDM3My00MTkwLWFkZmYtM2UzNmNhOWEyZDY5
LzEvM0tDdHNhaTNsd0lQRHNlaW1wdGF1dFFMWlQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuboZMA0G
CSqGSIb3DQEBCwUAA4IBAQArQ0z5iKCoGzUfu7xAcDJvAyZ7txGiViumQwqkKULb
9+zWPlkzQJ8LuYgAsb1MfSLxjWTOJKajB7qArFRgzJHb7bO+Zs4i+I+s0m5NtlbJ
YzGg9y/EP2ummLTAK/lqGU0Bdpn9l3H9HWJ0H3XsmOCaqo2glmvim+YW5hEPe/TL
JXHQlhxeMQi28S13/He4Rb94txTHSW2r2pX+y2TzIoyuzWNp/ZJiF9s/DrdneJq4
M5yUZliPnb/IdFwz+Wd5seyV5mUEZtbhTVKKvruEaM0bgHNxASj8btAtxlzUvJO5
+AiBZ40xHN1IJacrtQPMOv6o99lg8D91iVcSDMpZuj7O
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:31 2023 by rpki-client on console-fra.rpki-client.org