Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/vYCGUFqIDfaGk8R9w-xG3hU9bEU.roa
File: vYCGUFqIDfaGk8R9w-xG3hU9bEU.roa (raw, json)
Hash identifier: /b7m5B/npMP6KtamfXbKU4QhDnxvs1PWd4D23p8h6ac=
Subject key identifier: BD:80:86:50:5A:88:0D:F6:86:93:C4:7D:C3:EC:46:DE:15:3D:6C:45
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 018BE943444A231B50F3947CCA1B87ED2901
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/vYCGUFqIDfaGk8R9w-xG3hU9bEU.roa
Signing time: Sun 19 Nov 2023 20:26:21 +0000
ROA not before: Sun 19 Nov 2023 20:26:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15440
IP address blocks: 185.186.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e9:43:44:4a:23:1b:50:f3:94:7c:ca:1b:87:ed:29:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Nov 19 20:26:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd8086505a880df68693c47dc3ec46de153d6c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:48:41:70:02:56:15:9f:2e:74:d2:06:b9:ae:
d0:05:62:7f:a4:7c:d4:f8:a5:78:09:c3:79:46:49:
b5:82:6b:19:ff:72:f4:09:9c:ea:86:5a:b8:5a:d2:
3e:07:49:a6:87:60:b2:c1:41:68:f4:26:14:6e:e6:
16:0e:bc:48:9e:91:53:86:c3:27:4a:3b:56:4e:6e:
b0:c6:14:6b:21:ea:85:85:bf:6b:24:e8:d2:2b:bb:
f7:82:0c:11:db:59:a8:33:39:dd:60:4c:e5:b5:82:
0a:82:13:51:ce:47:11:69:f5:57:db:b8:66:84:48:
da:04:86:be:5c:fd:cb:2f:ce:8c:72:d6:6e:2a:52:
03:5f:64:61:62:77:67:6e:f2:e7:d7:66:bb:95:0e:
d4:77:f5:69:b8:d4:20:a8:b2:ec:ff:ef:2e:23:f5:
a0:8e:69:1b:ca:cf:6c:bb:0d:80:f0:2d:b6:2f:ee:
74:f6:49:3f:36:48:ce:08:b4:54:a6:b7:f6:ee:ee:
9c:94:41:52:27:4d:a0:3e:fa:e2:6a:a4:6b:37:d6:
72:10:e9:37:28:14:01:8f:27:ca:58:15:52:b0:2b:
e7:f4:ea:23:9e:55:6b:06:15:50:05:fa:1f:46:78:
48:3a:7e:75:5f:ba:57:cd:b4:b1:6d:88:99:06:d7:
51:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:80:86:50:5A:88:0D:F6:86:93:C4:7D:C3:EC:46:DE:15:3D:6C:45
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/vYCGUFqIDfaGk8R9w-xG3hU9bEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.25.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ef:20:20:15:50:37:29:ab:f0:ad:3e:e4:3b:52:29:ad:fc:
0b:a6:c2:91:83:58:f8:47:e0:4a:13:9d:c6:2f:51:a2:d5:53:
91:05:dc:43:c2:c9:95:f2:c3:56:2d:ba:2d:1e:aa:fd:98:a6:
7c:f3:4a:59:03:5a:dc:c1:d5:bc:38:c4:c8:41:6f:ec:0e:5c:
a3:d9:0f:d9:5d:c1:b7:9c:10:b2:3a:a1:ab:c1:09:2d:b7:fe:
c7:9e:f5:59:42:25:8e:5a:c8:35:8b:d7:68:3a:09:60:5e:08:
9e:03:2f:5e:a9:f4:20:4f:c2:d2:d5:9b:8d:36:1f:45:a9:3c:
3e:03:e3:ff:14:15:df:13:d3:2f:8e:7a:e6:b3:97:91:03:40:
3f:ff:69:e5:36:16:31:8a:05:61:73:1d:60:c3:12:57:db:45:
6c:e6:96:c7:e9:39:2f:f2:84:29:54:7a:26:c4:4a:3f:85:e7:
e6:f6:af:c5:a7:b0:e6:da:3e:14:51:9f:c0:d6:4f:54:9b:fe:
45:a8:d2:f6:32:f7:d0:f2:3f:b2:57:b1:b8:3e:2b:74:db:70:
96:cd:41:57:7f:f1:d5:52:63:04:dc:bd:5f:36:b8:2e:e8:09:
a4:6c:63:db:62:66:2e:b3:e6:5b:02:42:61:62:48:fa:23:25:
ec:69:fb:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:59 2024 by rpki-client on console-ams.rpki-client.org