Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/MHBGyxt0N9p9TYxV6hFMUleh_E8.roa
File: MHBGyxt0N9p9TYxV6hFMUleh_E8.roa (raw, json)
Hash identifier: ozasDeLg6sl0vwvXL3CkfAThkbjokS8ETcRIarooXtA=
Subject key identifier: 30:70:46:CB:1B:74:37:DA:7D:4D:8C:55:EA:11:4C:52:57:A1:FC:4F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0421
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MHBGyxt0N9p9TYxV6hFMUleh_E8.roa
Signing time: Wed 05 Jun 2024 15:55:03 +0000
ROA not before: Wed 05 Jun 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1057 (0x421)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 5 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=307046CB1B7437DA7D4D8C55EA114C5257A1FC4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f4:a6:04:d4:2a:b3:d4:99:c6:2c:a1:31:b1:
90:c7:dd:69:72:0b:fe:38:d1:98:a2:87:26:51:5a:
b3:d2:d8:c8:ea:1a:5b:9a:c2:e6:d8:a3:42:23:5d:
87:f9:58:d3:ff:ef:82:52:94:0e:a8:0a:86:a5:41:
36:44:6f:9a:10:f7:fe:ea:f4:b8:2f:39:90:3d:be:
67:58:eb:93:72:30:b0:1e:94:fb:9b:d7:3c:da:18:
c9:4a:9e:30:c4:9b:41:3b:80:4c:db:55:99:93:ec:
f3:ec:16:19:1c:81:44:c7:71:6f:e1:96:34:c9:d9:
07:22:7e:2f:af:1d:dc:39:fa:8d:64:f9:9a:d8:6c:
06:e9:d8:e7:5e:98:e9:bc:5f:e3:e9:b4:61:e2:ed:
37:c2:56:53:e5:04:30:3d:3b:54:94:3f:8b:83:82:
b6:ec:c1:de:d6:3e:62:7c:7e:ed:54:a9:4e:e7:f9:
45:be:c4:b6:8e:37:58:a6:d1:fe:e9:31:93:e4:52:
d3:98:74:59:99:18:46:43:fe:d6:77:07:a1:9c:e5:
bf:82:0c:e5:c8:43:e6:91:66:34:b7:d8:99:ba:0b:
89:72:16:8c:b1:68:ce:0f:b4:90:cf:bc:5f:cd:74:
bb:f9:cf:c0:b3:1d:61:93:61:36:da:42:30:38:a4:
27:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:70:46:CB:1B:74:37:DA:7D:4D:8C:55:EA:11:4C:52:57:A1:FC:4F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MHBGyxt0N9p9TYxV6hFMUleh_E8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a9:46:85:be:9f:37:99:4d:77:1f:d6:bc:7a:b1:10:e2:d2:
16:85:2b:a8:27:53:6e:89:a5:a0:2e:21:3d:bd:14:8e:d8:14:
ef:a8:46:9e:9b:3a:00:9f:e5:87:b9:36:14:68:60:40:e8:c6:
5e:12:8d:33:5a:15:aa:5d:d7:33:df:8f:3b:5c:33:b8:06:03:
de:0c:ae:fd:be:71:27:d4:71:e6:a9:c3:d1:e4:40:b1:6d:81:
2d:85:be:7d:1d:9d:42:e1:38:1b:e0:6d:5a:82:70:cd:34:c9:
b4:38:2f:7a:08:18:1a:d4:32:46:d2:9c:fd:87:84:79:44:91:
09:c6:22:01:9c:d4:f2:79:d4:c0:ce:35:54:75:7e:f8:60:52:
73:0d:30:8d:bb:c3:63:e5:2e:91:cb:ed:63:80:8f:5f:61:1b:
23:ed:c5:8b:ca:5a:b5:37:9e:72:a7:ef:ea:c4:d1:8c:50:63:
7b:e4:b6:fb:60:fb:3f:5b:8a:2a:1e:16:b4:a4:d1:75:17:a7:
18:08:df:e3:86:2f:e3:03:66:e7:94:b2:cd:37:bf:9e:05:4b:
34:a1:55:ee:71:95:bc:20:e0:42:cd:0f:4c:00:03:a7:08:a6:
c9:7f:fe:88:51:26:50:7c:51:2d:28:5a:e1:b7:fc:12:25:a0:
2a:e3:4c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 5 22:07:53 2024 by rpki-client on console-ams.rpki-client.org