Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/moKMTfMDsCEy5ODN9XVMN_TKvcA.roa
File: moKMTfMDsCEy5ODN9XVMN_TKvcA.roa (raw, json)
Hash identifier: F3xWTB9KKnZ+bcJIr4KsyDqUkt+unzIp4NbaY+hSlvU=
Subject key identifier: 9A:82:8C:4D:F3:03:B0:21:32:E4:E0:CD:F5:75:4C:37:F4:CA:BD:C0
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0115
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/moKMTfMDsCEy5ODN9XVMN_TKvcA.roa
Signing time: Sun 10 Mar 2024 23:55:04 +0000
ROA not before: Sun 10 Mar 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277 (0x115)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 10 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9A828C4DF303B02132E4E0CDF5754C37F4CABDC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:8e:07:d4:ea:dc:56:69:3e:b3:6a:6c:c2:de:
cb:be:9f:d4:dc:ed:2d:94:12:6d:a7:6d:94:51:a3:
a0:41:83:c3:03:a9:b9:8d:70:6f:65:bb:f0:e0:6a:
9a:aa:85:65:f2:fc:a2:5c:4e:94:df:3f:30:87:be:
83:f6:a8:62:f3:32:a5:fb:92:63:b8:fe:a3:d4:2b:
f7:00:0d:1b:f0:fd:44:3f:43:ad:1d:43:df:f4:5c:
29:70:3e:3d:bd:4e:61:32:bd:d9:45:d4:6a:d3:cc:
47:1f:4a:ad:2e:3e:a1:ce:b4:93:c9:91:39:b2:09:
58:1d:29:d7:8c:3e:f4:2d:9a:3e:47:ff:58:33:42:
ac:3f:63:1d:bb:f8:17:80:3c:fd:2e:2a:66:56:a3:
0c:e6:3f:51:23:9b:ea:05:8e:f1:10:fe:f9:8c:01:
78:e3:6c:09:84:54:f1:e1:c5:2a:2b:19:ed:1b:65:
3a:fe:12:a8:b6:d6:70:30:b1:21:54:0e:7e:fa:f8:
a0:85:03:a6:e3:07:bc:2d:29:da:94:ef:be:2b:77:
6e:41:14:a6:db:3a:d6:c6:23:d0:48:a5:b2:a8:6e:
23:c5:94:1c:4d:cb:e2:e1:b3:66:fc:7e:9b:d0:38:
ed:49:b3:ec:56:6c:ee:11:ae:e1:b0:bd:63:39:56:
fd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:82:8C:4D:F3:03:B0:21:32:E4:E0:CD:F5:75:4C:37:F4:CA:BD:C0
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/moKMTfMDsCEy5ODN9XVMN_TKvcA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
75:99:7d:89:9c:2b:3e:08:73:42:b2:e9:4d:77:d3:91:06:f4:
51:3e:9c:23:03:41:92:da:cc:5d:77:d8:8a:25:d0:06:3e:a9:
0d:68:ec:fb:08:da:8a:16:95:dc:7f:05:86:8f:e2:86:cf:c1:
e0:bb:ba:ee:b5:3c:c6:cd:37:0b:8f:f4:b8:9a:1a:2f:a4:3e:
54:71:7b:d4:c7:9f:17:4c:f6:d6:d7:17:a2:67:0a:0b:0b:2e:
64:36:eb:8a:44:ff:92:5c:a3:c9:67:e1:b5:23:f2:e2:06:e0:
57:29:c4:3c:5c:42:fc:5c:a2:bc:77:32:59:8c:66:b9:60:4d:
bb:5c:f4:f0:ef:5a:19:88:74:e5:b7:8f:9f:18:84:fc:1e:c4:
4a:94:b6:f3:2b:d8:e6:b6:be:d1:7f:e6:dc:95:ca:ed:23:9c:
e3:5c:6c:83:a6:f1:6b:55:78:72:61:58:39:4e:2d:86:a0:39:
c0:45:23:dd:e9:40:91:7e:66:f4:78:c3:60:af:31:31:f2:d3:
1e:b4:11:3f:86:cb:c6:d5:b6:c7:fb:a9:96:6e:c3:ab:53:7c:
6a:9a:6e:87:f6:25:0f:4f:15:d8:76:88:e0:ef:44:d5:0e:6e:
c4:4b:fc:03:31:6c:06:57:34:c6:09:78:53:2b:2f:ff:e4:a1:
22:51:36:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org