Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/mmtZ-c93YkUs4uuEtuMN4xbr2DQ.roa
File: mmtZ-c93YkUs4uuEtuMN4xbr2DQ.roa (raw, json)
Hash identifier: 2UOTV6tHP1rd9ZfL5O7ax5PMnSvJwjTYfjf3mVezqY0=
Subject key identifier: 9A:6B:59:F9:CF:77:62:45:2C:E2:EB:84:B6:E3:0D:E3:16:EB:D8:34
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05D4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mmtZ-c93YkUs4uuEtuMN4xbr2DQ.roa
Signing time: Tue 23 Jul 2024 23:55:03 +0000
ROA not before: Tue 23 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1492 (0x5d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 23 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9A6B59F9CF7762452CE2EB84B6E30DE316EBD834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:58:96:d3:ff:0c:c5:b6:39:9c:dc:dc:38:cd:
59:cc:93:b4:7f:2d:6b:48:7b:5e:ab:df:cb:b6:c3:
b0:10:1f:7d:33:8a:b5:9a:f9:7b:93:de:27:42:47:
f5:68:f6:e9:35:84:8a:18:a9:38:d3:4e:f0:88:a1:
96:d6:a3:95:97:24:b2:dc:8a:64:33:2a:85:9c:d5:
9e:0e:52:94:a9:60:00:28:ef:b3:f0:cb:8d:e6:22:
53:77:53:95:4f:16:cb:bc:38:cb:f3:0d:02:f9:40:
56:40:d5:6f:87:4a:20:4f:e5:01:c4:cd:98:dd:ab:
6b:46:2e:2e:bd:e8:cf:6a:11:a6:bb:2f:61:95:40:
fe:0e:97:68:e0:4d:e0:65:d7:f9:3c:f3:f1:8d:a3:
64:ed:fc:04:2a:ba:19:08:25:15:db:08:79:76:e3:
2a:ac:f5:8d:41:50:e2:02:9d:e5:d5:29:4d:50:8b:
74:50:8d:d6:a6:84:8e:52:7d:a0:22:11:93:82:7a:
ba:ea:ca:9e:d4:90:8d:60:29:3c:a6:09:69:37:44:
9d:cb:9f:85:3d:68:4b:f2:fb:80:34:cf:71:a6:5f:
dd:17:50:77:01:ab:3b:07:da:cd:1a:c6:50:be:74:
46:93:c3:37:ab:ad:cb:25:d9:83:a0:41:f5:5d:76:
bb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6B:59:F9:CF:77:62:45:2C:E2:EB:84:B6:E3:0D:E3:16:EB:D8:34
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mmtZ-c93YkUs4uuEtuMN4xbr2DQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ad:4a:0a:ca:e5:99:d1:68:8b:bc:5e:ef:a4:af:1f:66:11:
b7:f4:3c:d6:68:65:76:7c:65:e4:ed:1a:10:0d:97:2f:b9:65:
a3:49:d3:79:f4:35:f0:fe:fe:89:e1:f4:54:8e:03:a2:a9:7a:
cf:29:a0:d3:95:c3:bf:c9:72:18:32:75:2a:bf:6c:0b:83:88:
36:7b:49:73:2f:42:63:57:4c:17:60:b9:eb:5b:2d:97:67:77:
15:ff:b1:75:a9:25:a8:c4:79:c2:db:75:d8:fa:33:f9:7c:e6:
7e:e7:d6:8b:47:e8:06:ab:05:42:e2:95:cd:91:94:e8:68:e2:
c8:a1:07:70:5a:ac:3c:59:29:e4:28:02:3c:1b:bd:96:e3:9b:
b0:7d:48:1d:f7:c4:4a:3e:5d:38:d1:b8:54:e6:3d:cd:53:50:
15:26:9e:ba:ef:dd:c1:64:e8:93:03:49:14:3c:ac:8b:fa:07:
57:26:b7:9c:68:27:8a:db:05:9b:86:87:84:ac:b6:35:17:c4:
26:38:2b:6d:1d:0f:9e:4f:ca:22:d4:38:fb:46:bc:63:e0:00:
cd:62:15:1e:49:f3:ce:9f:3d:d5:04:a6:ab:3a:c8:27:76:20:
81:62:22:d6:83:0c:d7:af:1b:94:64:fd:5c:34:d4:db:cf:23:
08:02:b8:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 06:37:02 2024 by rpki-client on console-fra.rpki-client.org