Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/MMxiTY9wEmsmhiDExN22nZTfKbA.roa
File: MMxiTY9wEmsmhiDExN22nZTfKbA.roa (raw, json)
Hash identifier: dZWth3K6BAnN0H3E7CF6NPy0EYNbt91O57Qlu0c5Nrw=
Subject key identifier: 30:CC:62:4D:8F:70:12:6B:26:86:20:C4:C4:DD:B6:9D:94:DF:29:B0
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0151
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MMxiTY9wEmsmhiDExN22nZTfKbA.roa
Signing time: Sun 17 Mar 2024 15:55:03 +0000
ROA not before: Sun 17 Mar 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Mar 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337 (0x151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 17 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30CC624D8F70126B268620C4C4DDB69D94DF29B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b4:6b:26:6f:f5:0d:15:01:ec:83:aa:1b:cb:
3a:8e:b0:6f:7f:8d:b2:f2:f1:51:6b:4e:3b:5d:0e:
f3:4f:29:96:55:ee:05:c0:f3:16:08:b2:d5:17:98:
73:b4:90:f1:66:0f:69:29:37:97:32:d8:b7:c1:88:
5a:0d:60:d4:8d:d1:c0:a8:5b:50:aa:d8:11:6b:1a:
14:40:07:f6:3b:ea:e8:89:57:5c:10:9b:b1:fb:d7:
5c:d2:9c:98:67:65:6c:ca:fb:95:07:bc:1a:b1:37:
1e:94:c3:6a:8e:51:43:f3:ae:3a:6c:56:c0:bd:88:
eb:0c:01:3c:17:3f:bd:82:dc:e8:f1:3b:99:8e:1e:
11:36:d1:d1:e9:a6:8b:5e:f0:72:88:b9:f1:ff:ee:
e4:dc:88:f9:c9:99:a2:73:e4:b7:d5:9c:41:2d:18:
a9:65:b0:8d:83:f8:12:2c:fd:95:b7:7b:b8:9d:dd:
7a:d6:f9:b2:c7:85:13:37:64:a8:16:7e:90:66:54:
0c:68:fe:9e:ba:ff:d0:9f:06:95:a1:9c:56:9a:35:
d6:5b:88:e3:cf:2a:70:45:70:3f:82:4b:17:81:7b:
6a:9f:55:08:2a:4c:cb:0a:61:ed:d5:88:38:94:da:
0a:9d:8b:01:ae:98:6e:da:21:2b:b8:94:f1:3f:dd:
e9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CC:62:4D:8F:70:12:6B:26:86:20:C4:C4:DD:B6:9D:94:DF:29:B0
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MMxiTY9wEmsmhiDExN22nZTfKbA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
86:08:e6:fd:df:6a:65:ab:82:83:bd:a5:9b:6c:30:ff:ad:49:
44:56:1f:ec:d7:f4:7d:ca:9f:23:de:15:5f:0e:3a:60:8f:1e:
de:03:36:7d:f6:ad:c2:16:99:8c:c5:58:e6:34:e7:b9:88:90:
a0:9a:b1:8b:7a:bc:38:23:f3:2e:15:a6:2a:d4:df:39:61:19:
dc:68:eb:2b:f8:6e:37:88:90:ca:aa:c2:87:1d:a9:29:c1:ae:
e7:ea:d0:54:40:08:6f:40:33:f5:ff:74:14:60:b1:30:b6:67:
0b:8a:ea:61:0f:51:42:54:bf:17:8f:c4:2f:ae:c7:a6:87:11:
6c:93:35:3b:03:32:eb:b8:26:d0:21:d9:4c:0f:2b:b8:d6:b3:
7b:1d:d5:c9:be:f5:17:3e:81:f4:13:02:95:db:34:3c:52:62:
ff:1a:ca:33:0f:51:68:b2:22:3b:21:a3:5b:7f:7b:c8:9b:89:
1e:c9:34:9d:0a:a9:7c:52:59:d7:ed:c5:cf:10:1d:68:e2:10:
f2:b9:b1:e0:97:c1:00:1f:b0:d3:40:c9:78:61:b2:38:98:be:
bc:07:43:7f:4f:6b:4f:67:19:be:a5:da:28:1e:f2:3d:63:18:
9d:a2:69:31:2f:53:8c:49:a1:0e:50:72:93:ec:8c:06:d7:bb:
b3:9f:ea:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org