Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/MKP9vOr40D9ok6b-dhOQTxtRyhM.roa
File: MKP9vOr40D9ok6b-dhOQTxtRyhM.roa (raw, json)
Hash identifier: WmIzf/xA8asT/IyDRAHK1+DlaXtA6siMuCO8pyzy37Q=
Subject key identifier: 30:A3:FD:BC:EA:F8:D0:3F:68:93:A6:FE:76:13:90:4F:1B:51:CA:13
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0316
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MKP9vOr40D9ok6b-dhOQTxtRyhM.roa
Signing time: Mon 06 May 2024 23:55:04 +0000
ROA not before: Mon 06 May 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 790 (0x316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 6 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30A3FDBCEAF8D03F6893A6FE7613904F1B51CA13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:94:af:0d:56:55:d2:aa:fe:69:0f:8b:e3:
bf:09:c4:df:3d:a4:e3:25:98:a8:50:4d:58:11:03:
a7:1b:84:56:fc:40:6a:1c:4f:c7:95:fd:4b:db:2d:
3b:8d:ae:90:37:a4:17:bc:ad:8d:b9:24:33:51:b8:
18:d4:c4:a0:bc:b5:c5:ec:86:18:e1:00:62:80:ef:
5d:cd:6b:c6:ae:0d:5c:69:71:88:72:29:e7:45:78:
48:2f:cb:80:5e:b7:cd:11:67:4a:b4:b4:e4:98:2e:
4f:cf:2c:2b:06:72:8a:b5:d3:e1:60:e4:0f:06:59:
49:0f:34:68:6f:52:65:d0:d5:9e:3e:e7:19:58:41:
0d:fa:3f:2b:4c:2a:96:57:2f:56:6b:c6:87:18:d3:
82:a8:84:22:eb:f5:39:83:98:13:de:9a:60:58:a5:
5d:d0:9e:b3:da:7d:e8:10:79:d6:d2:48:cb:42:1b:
32:c6:27:68:c0:01:ae:7a:95:5b:fb:69:ff:90:8d:
8b:25:e4:da:43:36:cc:2e:ea:19:22:20:5b:88:59:
3e:96:ee:37:62:cb:00:77:16:0d:2c:f7:31:a8:f4:
b2:b2:21:99:16:72:e3:3d:0e:33:11:e5:1c:f2:e7:
14:a3:df:bc:49:80:53:0e:57:22:69:71:3e:13:e1:
05:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:A3:FD:BC:EA:F8:D0:3F:68:93:A6:FE:76:13:90:4F:1B:51:CA:13
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MKP9vOr40D9ok6b-dhOQTxtRyhM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f0:77:b2:09:4a:0a:83:a9:a3:70:63:c0:5e:e2:d8:02:36:
6f:ca:42:5c:de:e9:ec:2d:a9:ab:d9:15:81:e0:45:f5:30:6e:
00:be:98:36:b6:42:a7:29:ba:43:02:b5:f9:a1:3c:54:23:0f:
bd:8a:a6:b8:e7:95:fc:92:21:4f:35:07:d2:bc:a5:12:7f:82:
58:01:09:2e:af:d5:91:8f:83:2a:e8:db:6c:a1:60:6d:8d:20:
2e:97:88:ac:42:70:da:ca:5f:22:0c:59:5e:22:02:9c:b0:60:
68:09:ea:3f:fa:c8:f2:a1:dd:34:75:a3:dc:83:5c:e5:51:43:
0a:e9:a5:28:84:f9:e9:61:97:7d:67:44:e2:7b:52:78:c9:00:
14:fc:d6:8f:41:8a:a8:31:54:0a:8e:c5:4f:b7:24:8e:1b:56:
96:d2:c9:9d:74:b8:96:c6:98:6f:21:53:03:32:c4:6b:94:14:
69:ba:79:5c:95:cb:ba:1c:35:fd:8f:35:ba:c1:a2:f8:30:cb:
c9:e4:aa:ea:84:e1:70:a9:2d:07:92:43:3f:99:c2:25:d7:25:
da:74:d1:8d:da:72:04:f9:c4:f7:bc:d6:a2:69:e4:7d:03:ce:
14:82:89:6d:77:1a:55:16:3e:92:eb:73:62:cd:ed:bd:0a:b9:
b8:ac:a2:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 04:41:37 2024 by rpki-client on console-ams.rpki-client.org