Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/MQhw_mUPFViiFewco69M7uYJQhI.roa
File: MQhw_mUPFViiFewco69M7uYJQhI.roa (raw, json)
Hash identifier: 1Z7QXUCzVF/XVO/ehrVVv+aTh9SutPWhS2wUpJKpDrQ=
Subject key identifier: 31:08:70:FE:65:0F:15:58:A2:15:EC:1C:A3:AF:4C:EE:E6:09:42:12
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0535
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MQhw_mUPFViiFewco69M7uYJQhI.roa
Signing time: Sat 06 Jul 2024 07:55:04 +0000
ROA not before: Sat 06 Jul 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Jul 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1333 (0x535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 6 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=310870FE650F1558A215EC1CA3AF4CEEE6094212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bc:45:7f:73:74:c9:35:27:df:27:2b:de:94:
29:fa:14:ea:7c:a7:40:07:6d:ac:86:75:c4:72:31:
32:b5:38:f7:5e:60:75:46:f8:08:67:c5:5d:0b:a4:
b9:ed:e4:d0:bd:37:38:d0:6e:f8:db:9a:aa:8d:a4:
84:83:7f:10:9f:2f:f8:d1:ba:c5:78:98:4b:64:13:
04:78:de:d7:20:55:1a:5e:c7:52:1e:7d:f2:f9:f8:
98:f9:a2:ec:82:29:37:81:89:a1:42:44:0d:be:64:
77:be:f7:74:1a:d2:b4:f9:be:1f:f8:4e:96:2b:d4:
54:92:e6:96:cc:9c:7e:fc:3a:fb:d9:7b:25:a8:e0:
74:bb:5f:65:65:63:57:e6:1d:26:c0:d6:05:ee:43:
a8:75:b2:47:30:de:21:47:b9:f4:20:64:56:97:5f:
03:d3:97:d3:2e:a3:8a:a7:66:43:ef:79:7c:04:3c:
95:f4:a1:f8:2b:c3:33:09:0b:dc:d4:e4:6c:20:a8:
ae:d5:1a:6c:02:1b:90:ab:95:ad:ac:70:4c:0f:73:
1c:01:83:9b:99:2c:27:c2:aa:e9:97:be:72:ef:13:
76:e9:a4:cf:71:df:22:78:6a:04:29:af:e2:11:04:
f2:73:ac:d2:6d:6a:7b:70:46:d6:be:4a:5f:80:0c:
33:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:08:70:FE:65:0F:15:58:A2:15:EC:1C:A3:AF:4C:EE:E6:09:42:12
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MQhw_mUPFViiFewco69M7uYJQhI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a1:4e:27:d7:c3:8c:85:08:d1:8d:4a:c2:4c:f1:19:58:fe:
6e:94:4b:dd:88:6a:d5:5f:c9:ce:7e:0c:e7:05:2e:19:13:5d:
de:5b:31:09:f9:18:8f:15:d1:23:93:b3:ca:6a:49:00:9b:30:
0a:4f:2b:30:96:77:d4:ef:6e:ba:74:e6:f7:49:43:52:d2:b8:
c6:b2:96:a2:83:4b:da:d8:77:43:0c:d6:cf:76:62:b8:2f:32:
09:10:59:56:4f:4c:f1:a2:b8:39:08:40:65:ab:ad:1a:dc:44:
9c:d5:76:57:b4:ca:bd:43:2e:38:f4:dd:96:c7:e9:3c:a6:a5:
0d:0f:64:ee:57:51:af:42:ce:03:46:e6:57:65:cf:22:b5:8f:
f6:7c:b8:24:5a:2e:64:d3:cc:67:d3:c2:1a:b8:c4:b9:38:09:
17:ee:57:79:a8:43:be:da:5c:0a:ab:f0:98:a6:fc:cb:b5:8e:
4e:dc:a1:f8:51:46:b9:29:82:a2:87:87:15:cd:b0:1e:43:07:
bc:b7:b4:95:13:83:d3:1e:66:00:85:11:be:ff:f4:f5:3c:e7:
82:39:d8:cd:d7:19:4a:fd:b2:62:f2:9e:eb:9c:d5:20:b7:03:
25:9b:67:d4:10:ae:c7:bf:53:7e:69:9d:b3:77:ab:83:3f:47:
35:41:20:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 6 13:01:43 2024 by rpki-client on console-fra.rpki-client.org