Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/_9nSFdz2WHBfdjpaGVqUI5c3Ux0.roa
File: _9nSFdz2WHBfdjpaGVqUI5c3Ux0.roa (raw, json)
Hash identifier: GzwFBarXLNXYAXoq5A5/G1Mf+uLw0JmQCO3w4Wg6FvI=
Subject key identifier: FF:D9:D2:15:DC:F6:58:70:5F:76:3A:5A:19:5A:94:23:97:37:53:1D
Certificate issuer: /CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a
Certificate serial: 0186BAFB0D874016BDE5BF39E8B2E88A1016
Authority key identifier: 9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/_9nSFdz2WHBfdjpaGVqUI5c3Ux0.roa
Signing time: Tue 07 Mar 2023 07:31:00 +0000
ROA not before: Tue 07 Mar 2023 07:31:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200571
IP address blocks: 185.97.9.0/24 maxlen: 24
185.97.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ba:fb:0d:87:40:16:bd:e5:bf:39:e8:b2:e8:8a:10:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a
Validity
Not Before: Mar 7 07:31:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffd9d215dcf658705f763a5a195a94239737531d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1d:f2:e1:67:c2:8c:53:25:35:49:f1:04:aa:
68:e2:b3:ce:4a:e5:7f:05:90:91:ed:54:58:2b:43:
86:3a:16:dd:74:9f:76:b2:ed:82:35:fb:f2:23:9c:
3a:f8:77:2c:6d:5e:59:8c:26:16:38:76:60:03:3a:
88:e8:43:e6:4a:0b:f4:dd:a6:47:b4:e6:67:e2:76:
05:e9:78:45:db:c3:1c:fe:bb:09:ca:ef:b0:3a:48:
1e:8b:ae:9a:60:40:b0:1f:54:00:b8:c5:8a:3f:ae:
2e:4b:d0:17:a8:2f:08:09:39:57:c7:c1:91:a4:2a:
1f:69:d9:86:e5:08:fe:9b:a6:16:2f:d8:15:02:57:
8f:9a:58:b7:df:7d:bc:e9:d7:59:22:d9:be:53:1a:
ad:9f:79:1a:1e:c3:49:04:ab:e5:27:3d:6e:89:67:
7e:43:88:cc:54:d6:cc:92:61:74:87:3e:28:9c:4c:
cd:f6:39:d8:e9:57:da:8f:04:0d:0a:de:22:e9:b3:
d9:7c:30:f0:27:e9:a6:f2:98:cf:7d:75:82:9a:b6:
1f:8f:16:29:64:e6:47:3a:82:0c:6a:bc:5f:39:3a:
38:e1:5b:a7:69:8c:33:59:2e:1b:b9:18:ae:ac:f1:
2a:94:da:90:c0:9e:cf:2c:5d:47:35:29:4e:75:35:
0a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D9:D2:15:DC:F6:58:70:5F:76:3A:5A:19:5A:94:23:97:37:53:1D
X509v3 Authority Key Identifier:
keyid:9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/_9nSFdz2WHBfdjpaGVqUI5c3Ux0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ngN01xvFfbltw5PpH-u56dWf75o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.9.0/24
185.97.11.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:0f:ab:56:78:48:3b:f3:d1:cb:6b:7f:92:bd:cf:af:9d:32:
8f:44:b2:a2:ef:e1:72:c5:80:22:83:24:4a:07:49:cf:29:38:
13:de:64:59:23:0d:29:e9:e8:d2:0c:44:17:30:97:ef:8c:34:
23:fd:0b:f3:99:d1:85:ef:10:0b:1f:8f:33:1b:be:ba:d4:e5:
42:7d:3e:6b:f2:1d:ee:1f:a1:f8:61:12:88:50:4e:cf:4e:20:
9c:54:de:4d:13:bf:c6:fb:42:95:28:13:cb:61:48:e7:a0:7a:
14:61:a2:d7:91:8a:a6:8f:a3:21:70:75:57:03:7c:6d:56:c0:
e3:96:db:9e:24:ed:68:54:ac:7f:cb:dc:f4:10:33:fc:1d:ee:
de:2c:79:c6:1c:7c:da:77:b5:46:3c:9f:7c:48:f8:5d:87:1d:
63:ed:87:d6:6e:ad:ca:d3:d9:53:db:f0:66:86:1e:a4:2d:bf:
9c:52:e5:1c:01:5a:a1:5d:e2:f1:0a:da:60:0a:a1:80:e9:59:
15:3a:8a:8c:0f:45:e2:5d:31:1d:36:18:bc:08:88:fa:f1:ed:
9a:0b:55:4c:fc:5f:07:05:fc:23:72:18:9e:6b:66:d1:60:6a:
b2:5d:29:aa:bd:a1:a3:15:d4:fd:e8:b6:30:c8:e6:e3:2f:f4:
e6:91:8f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:05 2024 by rpki-client on console-ams.rpki-client.org