Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/EmjlJ-jicqpP_CWcmJK3QwMjXOQ.roa
File: EmjlJ-jicqpP_CWcmJK3QwMjXOQ.roa (raw, json)
Hash identifier: rWx5R4e6mD+Un1RrSrJJ/g+wP46saH+k3C61miGz5OI=
Subject key identifier: 12:68:E5:27:E8:E2:72:AA:4F:FC:25:9C:98:92:B7:43:03:23:5C:E4
Certificate issuer: /CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Certificate serial: 0191359813DD6EFC6FE2610818B21663050A
Authority key identifier: 36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/EmjlJ-jicqpP_CWcmJK3QwMjXOQ.roa
Signing time: Fri 09 Aug 2024 05:24:04 +0000
ROA not before: Fri 09 Aug 2024 05:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.113.66.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 19 Aug 2024 07:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:35:98:13:dd:6e:fc:6f:e2:61:08:18:b2:16:63:05:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Validity
Not Before: Aug 9 05:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1268e527e8e272aa4ffc259c9892b74303235ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d6:32:79:06:a6:24:7b:73:d0:8f:a4:36:12:
cc:c8:6c:d2:a7:de:9d:65:de:26:52:08:1c:c7:98:
05:b5:74:5d:b3:0d:8a:40:59:7c:37:6a:71:91:9b:
70:15:90:a8:5a:03:ed:17:84:fb:b4:6e:ff:1c:b9:
94:49:f4:de:11:5c:3a:92:72:b6:e4:d6:bd:01:11:
d3:d2:db:ac:8d:79:8d:83:00:93:50:68:77:4f:4b:
e9:5d:5e:06:2a:61:60:b2:08:ff:a2:f9:84:c5:a4:
48:ed:7d:3c:6e:3d:eb:31:db:0e:4a:d6:ba:43:f0:
3e:c0:0b:14:46:8a:f7:ca:a6:eb:32:7a:e9:58:29:
97:0d:2c:19:11:ca:32:a7:21:fb:69:6c:99:a8:7f:
03:36:5b:16:5e:11:d1:bd:1a:16:76:7c:cb:7e:5e:
ea:13:3a:5b:af:18:91:03:69:c8:79:04:72:dc:ed:
b1:e4:22:11:af:ab:23:eb:b3:5a:f8:7b:6a:61:6a:
0f:ee:4a:8e:24:b0:0a:eb:c4:68:dc:ee:6d:bf:a7:
92:65:3a:f8:7b:a1:fb:a7:e4:ef:af:c6:84:47:9c:
99:3d:c5:db:e2:bf:ba:a5:03:5a:21:e3:da:d0:4c:
c9:d3:a7:bd:af:68:48:80:9d:e5:2c:99:66:14:e6:
1c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:68:E5:27:E8:E2:72:AA:4F:FC:25:9C:98:92:B7:43:03:23:5C:E4
X509v3 Authority Key Identifier:
keyid:36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/EmjlJ-jicqpP_CWcmJK3QwMjXOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.66.0/23
Signature Algorithm: sha256WithRSAEncryption
91:c3:3a:ce:41:de:ba:85:07:9b:16:35:78:8f:6b:78:36:fe:
c8:0a:22:f7:8d:d6:4a:e3:e9:0f:14:37:c3:9a:37:7a:09:86:
ea:a1:e1:a7:f9:f7:bf:7f:03:b4:32:e4:50:bb:f2:5f:00:8e:
fe:af:47:d6:c5:1b:ff:4e:72:58:ab:5a:bc:7c:42:94:b0:36:
f2:e4:09:79:01:f6:d2:57:92:8c:f4:13:09:71:6b:79:a1:b8:
70:80:9a:21:61:d2:01:cc:a4:df:8e:81:a4:4a:ff:bf:04:f8:
f3:a6:47:af:ad:66:7d:a4:0c:b8:e0:af:9a:21:04:24:78:72:
e1:82:cf:a7:83:d8:e7:b9:fb:8c:22:12:a1:0d:29:c8:7d:bc:
6c:aa:80:cc:24:35:81:5d:9b:e9:7c:3e:44:a0:88:e4:92:e5:
ac:00:9e:7c:2a:c8:eb:12:ed:66:bd:42:10:f5:36:08:5f:39:
46:3e:e7:88:55:c7:2e:53:ee:07:ef:3f:92:08:28:dc:6c:b7:
fd:93:57:54:de:08:04:ac:4b:9c:11:0c:a4:f1:06:b7:af:cf:
96:c6:38:03:fa:06:1b:29:0e:31:ca:b6:c2:df:0f:4b:b9:ce:
7c:96:b5:74:87:8f:d3:c2:cf:dd:40:be:e9:89:fd:a7:3b:72:
11:b7:99:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZE1mBPdbvxv4mEIGLIWYwUKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OTRmY2M2YmY2YTg3NDBmYTc4MTQ2NDFmZDlkNmVjOGQ4
NjJlNWYwHhcNMjQwODA5MDUyNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjY4ZTUyN2U4ZTI3MmFhNGZmYzI1OWM5ODkyYjc0MzAzMjM1Y2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutYyeQamJHtz0I+kNhLMyGzSp96d
Zd4mUggcx5gFtXRdsw2KQFl8N2pxkZtwFZCoWgPtF4T7tG7/HLmUSfTeEVw6knK2
5Na9ARHT0tusjXmNgwCTUGh3T0vpXV4GKmFgsgj/ovmExaRI7X08bj3rMdsOSta6
Q/A+wAsURor3yqbrMnrpWCmXDSwZEcoypyH7aWyZqH8DNlsWXhHRvRoWdnzLfl7q
EzpbrxiRA2nIeQRy3O2x5CIRr6sj67Na+HtqYWoP7kqOJLAK68Ro3O5tv6eSZTr4
e6H7p+Tvr8aER5yZPcXb4r+6pQNaIePa0EzJ06e9r2hIgJ3lLJlmFOYcjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBJo5Sfo4nKqT/wlnJiSt0MDI1zkMB8GA1UdIwQY
MBaAFDaU/Ma/aodA+ngUZB/Z1uyNhi5fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnBUOHhyOXFoMEQ2ZUJSa0g5blc3STJHTGw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9hOGRkOWUtNzFmMi00Zjc3LWI1NzUt
MGQzZmNlNDI5YmRlLzEvRW1qbEotamljcXBQX0NXY21KSzNRd01qWE9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9hOGRkOWUtNzFmMi00Zjc3LWI1NzUtMGQzZmNlNDI5YmRl
LzEvTnBUOHhyOXFoMEQ2ZUJSa0g5blc3STJHTGw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuXFCMA0G
CSqGSIb3DQEBCwUAA4IBAQCRwzrOQd66hQebFjV4j2t4Nv7ICiL3jdZK4+kPFDfD
mjd6CYbqoeGn+fe/fwO0MuRQu/JfAI7+r0fWxRv/TnJYq1q8fEKUsDby5Al5AfbS
V5KM9BMJcWt5obhwgJohYdIBzKTfjoGkSv+/BPjzpkevrWZ9pAy44K+aIQQkeHLh
gs+ng9jnufuMIhKhDSnIfbxsqoDMJDWBXZvpfD5EoIjkkuWsAJ58KsjrEu1mvUIQ
9TYIXzlGPueIVccuU+4H7z+SCCjcbLf9k1dU3ggErEucEQyk8Qa3r8+WxjgD+gYb
KQ4xyrbC3w9Luc58lrV0h4/Tws/dQL7pif2nO3IRt5mH
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:09 2025 by rpki-client