Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/MOEl20HknUcurA7IEQ0T6b6FAEo.roa
File: MOEl20HknUcurA7IEQ0T6b6FAEo.roa (raw, json)
Hash identifier: HdYPIK9uG6Yo0OTat7/naQ0wvmT4/WYcACkkisT6Who=
Subject key identifier: 30:E1:25:DB:41:E4:9D:47:2E:AC:0E:C8:11:0D:13:E9:BE:85:00:4A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0268
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MOEl20HknUcurA7IEQ0T6b6FAEo.roa
Signing time: Wed 17 Apr 2024 15:55:03 +0000
ROA not before: Wed 17 Apr 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 616 (0x268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 17 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30E125DB41E49D472EAC0EC8110D13E9BE85004A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2e:3e:53:38:ef:16:fd:04:63:01:06:c7:a2:
e9:ad:a3:d3:5f:f5:09:21:d2:a8:0a:c9:fc:a7:04:
25:a1:bc:55:2e:ad:e1:20:49:63:b9:cd:fa:8c:81:
78:93:9d:4c:2f:3e:59:1c:1f:d2:9f:c4:9e:25:c4:
95:e6:34:61:9d:5e:b8:66:d5:6f:74:f7:11:7b:5c:
b4:7e:fe:61:b3:3e:d0:05:bd:6a:ac:71:aa:a8:84:
fd:9c:46:75:e4:65:86:07:7d:a0:a1:a3:76:ea:38:
40:58:17:98:45:3a:f2:da:f0:bd:a1:7a:7f:b9:cb:
ff:22:a6:51:f6:04:da:74:4e:71:c3:fd:59:81:56:
c2:b0:ca:41:f8:05:c4:85:6c:c3:be:cf:79:b0:d8:
50:06:da:35:97:9f:8c:78:df:36:e9:28:b9:c0:71:
a1:bf:41:8b:3d:cb:8e:dd:0b:f8:35:c5:5f:d6:a0:
82:45:36:8e:96:a8:72:00:a7:66:7b:85:a8:7f:a3:
20:ee:ae:08:1a:83:29:75:66:60:c7:56:66:b5:80:
75:c3:db:53:0c:22:1e:a4:ea:51:be:c1:45:d5:67:
6c:16:de:c0:bc:0d:b1:e4:67:d7:20:81:92:62:c5:
10:63:28:e1:5a:03:1f:7f:5b:ef:a7:00:e0:29:5a:
fd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E1:25:DB:41:E4:9D:47:2E:AC:0E:C8:11:0D:13:E9:BE:85:00:4A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MOEl20HknUcurA7IEQ0T6b6FAEo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
76:01:08:93:05:18:b0:9b:e9:c2:a1:96:a6:46:84:86:08:28:
76:90:4b:0e:82:29:ab:4c:13:c7:43:29:7f:ac:7e:ad:0f:15:
03:93:13:a1:2a:20:e5:7c:37:9f:cd:f6:f1:49:08:0e:8f:20:
da:f3:78:e4:0a:1f:a7:84:10:9f:fd:7d:02:27:84:51:0a:96:
f8:2d:0e:0e:3d:f5:5c:d3:82:a3:75:9e:97:6b:94:22:ae:0b:
35:bf:8e:fc:ae:b9:1b:63:53:ee:c1:03:a6:43:fd:31:1a:af:
0b:81:54:a2:d7:0d:7d:49:e7:21:ef:c9:f3:b0:a9:16:e2:c3:
26:83:fa:b4:5d:73:e9:0c:96:18:67:d3:8a:e3:b3:f0:75:b1:
d2:1d:29:49:ef:fd:37:75:3b:79:b0:11:ca:ad:57:ba:59:fe:
93:7b:25:3c:12:71:aa:76:fd:9d:34:a3:d1:90:14:a9:22:b7:
cb:2a:93:df:6f:ee:fe:67:af:3b:07:d9:e8:c8:36:1d:30:1d:
91:11:7a:dd:3e:c0:2c:0a:02:8d:f0:dc:9d:d8:e0:d5:74:bc:
71:e6:2f:37:75:2d:1a:f6:41:15:c9:63:14:72:ce:dc:d2:00:
4c:30:45:c6:1c:28:99:d9:13:1b:00:6d:e9:6c:68:60:e1:82:
05:84:f4:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org