Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/CoiwhFB2CEbOL0k5I8uyinh4lJU.roa
File: CoiwhFB2CEbOL0k5I8uyinh4lJU.roa (raw, json)
Hash identifier: gwn2xxYabP72LwCkse9QQTadG9ZPUqmHVQYQJXfx3iY=
Subject key identifier: 0A:88:B0:84:50:76:08:46:CE:2F:49:39:23:CB:B2:8A:78:78:94:95
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 018BADD40EED896C5AF17943446555ECDDA8
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/CoiwhFB2CEbOL0k5I8uyinh4lJU.roa
Signing time: Wed 08 Nov 2023 07:27:17 +0000
ROA not before: Wed 08 Nov 2023 07:27:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58121
IP address blocks: 95.215.160.0/23 maxlen: 23
85.9.94.0/24 maxlen: 24
185.155.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ad:d4:0e:ed:89:6c:5a:f1:79:43:44:65:55:ec:dd:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Nov 8 07:27:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a88b08450760846ce2f493923cbb28a78789495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e8:03:80:ee:65:3c:54:2b:b0:a7:1d:cb:40:
07:39:ea:13:bb:d0:0f:69:0b:c7:7d:cd:d3:48:61:
41:31:f3:bc:bd:77:b0:9f:e2:da:6c:d4:b0:80:53:
bb:23:b6:98:dd:be:e4:b5:fa:be:3b:e2:65:d3:7d:
17:e5:d8:f9:0c:85:01:3e:b7:98:93:35:82:ee:35:
77:34:a3:87:8c:14:eb:27:2f:c8:e1:ca:64:c2:f3:
6a:47:9e:75:23:6b:46:42:8d:9a:8b:57:80:36:04:
7f:3a:6f:7c:e8:d9:7f:6f:3c:cc:85:d0:59:53:e6:
84:ea:6b:32:d3:b1:17:8c:2d:ad:ee:8d:7f:c8:71:
9d:af:c2:de:05:22:65:b1:55:de:d0:4e:69:36:62:
a4:c7:a2:c3:1e:54:ba:b3:d4:93:65:c3:e2:38:b5:
a8:dd:0b:a5:18:cc:c7:6c:14:ec:0d:1e:38:37:6a:
16:cc:f8:62:b1:03:66:5a:ab:3d:ba:07:18:4a:f1:
83:25:36:fc:36:bd:74:85:25:eb:0d:2b:47:50:a9:
19:6a:08:d0:17:c6:d5:fb:27:69:7d:bd:5e:94:fe:
ea:aa:23:27:ef:08:a9:a0:e4:10:ea:22:a2:59:61:
45:24:0d:66:1a:8c:ce:98:f7:50:89:54:75:5a:bf:
00:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:88:B0:84:50:76:08:46:CE:2F:49:39:23:CB:B2:8A:78:78:94:95
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/CoiwhFB2CEbOL0k5I8uyinh4lJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.9.94.0/24
95.215.160.0/23
185.155.14.0/23
Signature Algorithm: sha256WithRSAEncryption
59:0b:fa:cd:0d:ea:7c:f4:85:e2:d8:76:5d:bf:1d:6f:03:a2:
4c:11:66:64:03:d3:b4:01:13:5c:6a:44:74:ee:c5:c8:05:2e:
bf:d0:af:c3:1e:d2:4c:ba:ea:bd:63:2a:98:f9:b1:bf:06:ee:
51:95:a1:f3:cb:72:47:7c:d9:0b:08:61:78:9c:d0:77:b8:6b:
51:de:ee:30:ea:34:c9:bf:33:1b:66:a4:e0:ce:a5:59:95:1f:
99:b2:1d:4e:e7:72:be:e4:6d:73:b8:05:57:51:c4:56:b5:74:
9c:49:74:96:fe:0f:ee:e7:67:83:01:55:c4:18:9f:fe:2c:df:
5d:93:ff:5b:18:83:3b:3d:08:03:a2:54:2a:1c:a2:e4:fe:63:
25:21:57:ec:50:a9:20:a3:7c:5c:c3:8e:c0:cd:33:d1:71:d7:
8a:e9:98:de:36:e7:1f:41:a8:30:b0:4b:71:4d:87:71:27:b5:
03:68:c7:fe:c3:b7:ab:6e:5d:a0:c6:b3:7b:40:49:25:e7:f9:
9b:a2:17:ee:0f:61:38:5a:d0:bf:cd:2d:a3:ca:f5:9b:ce:77:
28:c5:29:df:19:38:14:1a:54:89:43:bd:8b:44:d2:42:60:d8:
1d:6b:af:a6:4c:55:df:2d:c8:0e:5f:47:c4:97:90:cc:90:61:
af:b7:74:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:33 2024 by rpki-client on console-ams.rpki-client.org