Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/w8j34fFt4OmEx5yJj24n2TOWiGY.roa
File: w8j34fFt4OmEx5yJj24n2TOWiGY.roa (raw, json)
Hash identifier: UKCxXfrL8zIPvNjlc/4u1anrxua7ryVaLdDL/nLUs98=
Subject key identifier: C3:C8:F7:E1:F1:6D:E0:E9:84:C7:9C:89:8F:6E:27:D9:33:96:88:66
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 018C698DBE2E4E4B69102031ABDC0F2E26E2
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/w8j34fFt4OmEx5yJj24n2TOWiGY.roa
Signing time: Thu 14 Dec 2023 18:19:06 +0000
ROA not before: Thu 14 Dec 2023 18:19:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215838
IP address blocks: 185.186.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:69:8d:be:2e:4e:4b:69:10:20:31:ab:dc:0f:2e:26:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Dec 14 18:19:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3c8f7e1f16de0e984c79c898f6e27d933968866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f0:24:95:9f:8f:9a:ca:d4:24:b9:a4:6c:5a:
cf:33:85:0d:3b:74:46:9a:a6:56:d0:a9:d7:4b:55:
0d:b8:79:5a:a1:13:3b:1a:f5:0a:b5:63:56:0e:2b:
3d:e8:fa:34:f6:c4:eb:9f:d2:a5:4d:52:b9:72:12:
b1:c3:03:89:88:2a:e4:64:cb:a1:03:a2:c6:0f:02:
d3:f4:8f:e1:b7:9e:4e:da:5b:23:9d:27:f9:ac:2a:
81:e4:1f:94:ec:8e:ce:b9:da:1d:5b:24:8e:c1:da:
46:32:fa:6b:d0:8f:a5:95:6a:0c:4e:ca:3c:7c:c0:
c1:13:55:84:3a:17:3f:15:86:80:c5:fe:b9:35:6a:
c3:ad:8f:15:67:db:43:59:fc:ca:10:fa:ce:54:99:
bc:d0:04:4f:65:7b:5d:fb:04:69:fb:9a:8d:8d:fe:
b5:c0:dd:2e:2b:b2:f2:b7:ed:d8:00:63:f1:b0:06:
6f:b5:58:c0:38:b3:b4:99:a7:df:9e:09:92:50:ff:
41:14:76:15:dc:b2:16:f7:e4:37:ce:76:29:93:a8:
54:13:e0:55:9a:ab:52:2e:98:3f:48:0a:04:62:0d:
7a:e0:a5:f5:9e:99:92:55:d4:6d:48:d8:ab:a0:99:
7d:fa:15:4c:e6:54:e3:e6:7b:10:ae:cc:e3:cd:7a:
a7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C8:F7:E1:F1:6D:E0:E9:84:C7:9C:89:8F:6E:27:D9:33:96:88:66
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/w8j34fFt4OmEx5yJj24n2TOWiGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.26.0/24
Signature Algorithm: sha256WithRSAEncryption
33:51:df:2b:a7:d4:b9:3b:2b:a4:7a:d7:f4:ed:c8:de:fa:0d:
bf:03:32:90:7d:7b:e0:95:d2:6e:3b:68:2c:43:78:d1:c0:c0:
e3:5b:22:e3:45:b4:82:a9:68:e0:b9:a1:39:79:4a:3d:16:f3:
62:ae:e7:ed:c2:17:4f:45:0c:86:f1:05:b7:68:21:f4:97:93:
13:f2:fb:b4:27:1d:e9:1e:ef:7e:48:14:79:e9:22:7b:c6:7f:
95:f5:fb:58:e8:c7:51:59:b2:a7:bd:f1:6f:d0:50:9f:fa:37:
3a:da:e4:15:a6:7e:93:ac:11:e4:5f:32:09:96:60:d2:0f:ae:
87:69:a9:1c:8e:f2:9d:d2:a3:32:f2:57:13:fc:a8:4b:a9:8d:
50:3a:e4:01:63:6a:ae:15:c8:39:a9:b5:6b:f6:a8:50:77:05:
36:41:0d:97:d5:39:47:4a:95:41:47:0b:8d:b3:4e:25:35:da:
9c:2d:2f:8c:0c:89:c3:ce:9e:a9:f5:6b:a4:45:b7:52:be:af:
05:fe:87:86:59:e6:72:71:f4:d7:02:b3:94:e4:50:d7:1c:55:
ca:1d:d0:43:b6:c2:9f:61:ef:24:03:84:7e:20:4f:84:0d:f7:
09:ce:d3:56:71:ec:2a:a3:45:2d:c4:79:35:34:49:8e:ec:0b:
23:14:92:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:21 2024 by rpki-client on console-fra.rpki-client.org