Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/mwO0OvaRrm9XSNKRuCDVE1TDrMI.roa
File: mwO0OvaRrm9XSNKRuCDVE1TDrMI.roa (raw, json)
Hash identifier: zsgf6pSUPOvSOsZPeuD4jOejp1eKrKVnE3FKSQGDziM=
Subject key identifier: 9B:03:B4:3A:F6:91:AE:6F:57:48:D2:91:B8:20:D5:13:54:C3:AC:C2
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0346
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mwO0OvaRrm9XSNKRuCDVE1TDrMI.roa
Signing time: Sun 12 May 2024 07:55:03 +0000
ROA not before: Sun 12 May 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 838 (0x346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 12 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9B03B43AF691AE6F5748D291B820D51354C3ACC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:be:b2:9c:b6:98:97:89:c9:5b:6e:11:bc:
a5:35:b2:39:a9:98:c1:22:53:90:cd:38:c7:8a:05:
a1:e2:f8:5d:53:14:2f:52:97:51:85:02:19:94:be:
19:d1:cf:17:5d:be:00:5a:67:2b:4f:fc:e5:e4:65:
9d:44:94:8b:ba:aa:b3:35:2c:ac:63:6e:8d:5b:85:
6b:1c:c5:e1:de:98:5c:c8:5c:5b:3c:1c:6f:d3:a3:
2c:26:69:1e:7c:13:32:b4:0d:aa:c2:ea:6d:37:52:
91:8c:40:09:69:45:da:e1:12:95:0e:48:9c:26:47:
96:ba:fe:25:21:c8:3b:d0:5f:2e:cc:41:19:b2:8b:
43:e8:0a:56:11:04:37:03:ea:3a:36:ef:e8:3b:2f:
04:9e:0b:fb:be:b3:66:31:4d:90:fc:39:59:0e:02:
96:27:2c:d2:20:27:b1:5b:98:ab:6c:bb:25:72:32:
a2:4c:7d:cb:16:c7:44:10:78:78:66:da:be:fe:db:
35:6c:54:61:a9:f7:71:5c:88:f6:ff:d1:be:3b:3a:
5d:c5:f9:70:b3:0c:f0:fe:5f:9c:20:f1:67:5d:78:
7a:09:1a:5c:b4:81:d1:3d:ea:72:35:54:c7:8e:56:
91:81:16:dc:2b:5b:87:00:8f:12:c5:c6:98:44:e0:
ae:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:03:B4:3A:F6:91:AE:6F:57:48:D2:91:B8:20:D5:13:54:C3:AC:C2
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mwO0OvaRrm9XSNKRuCDVE1TDrMI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:df:d0:ea:7e:5d:64:1f:b2:36:a7:73:5b:a9:d6:a3:6d:e7:
d7:08:d4:f3:8c:a2:7c:a2:7c:8c:62:29:1b:57:8c:1a:21:a4:
3c:17:73:bb:87:bc:7b:1d:2c:64:43:9c:cf:59:cf:0c:12:f4:
0d:1b:fe:38:a6:f2:53:ec:b9:fe:a1:00:66:d0:7b:ad:d4:cb:
a1:81:73:3a:64:5f:77:46:0c:bf:a8:b4:54:bf:41:68:da:f5:
4b:12:3a:bc:3d:8e:d1:ea:92:d0:fb:30:8d:7a:9d:9a:8f:7e:
01:14:c5:68:1b:e1:87:e3:47:f0:64:2f:d9:84:99:ca:dd:ab:
d1:01:98:51:c3:95:1a:3e:38:fc:12:93:40:b9:bb:b1:53:4d:
98:40:f6:33:e6:32:9a:08:9e:60:0d:6c:5e:e8:97:85:65:0d:
ff:03:b0:9f:2b:33:71:29:32:11:8f:ad:3c:9c:18:16:59:ed:
6c:df:b5:eb:e0:e2:a7:cc:b4:3a:fe:6b:e3:fa:57:5d:fe:d2:
a9:46:e3:4b:ce:37:d5:96:c8:d1:99:85:55:ee:61:da:73:25:
f0:e1:a5:ef:9f:32:bc:75:d6:9f:c9:3d:a8:29:36:ee:9c:8d:
a2:f7:04:f3:bd:d7:62:20:f6:18:7c:74:ae:e1:bf:6f:c4:e3:
51:95:08:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 14:13:24 2024 by rpki-client on console-ams.rpki-client.org