Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/mwSz9vpLE1RykmDj9aTkdD8W7oo.roa
File: mwSz9vpLE1RykmDj9aTkdD8W7oo.roa (raw, json)
Hash identifier: GMDlqi+6igpbTabyIJOgezNY5X9hOnqwDZMRuqTdYQg=
Subject key identifier: 9B:04:B3:F6:FA:4B:13:54:72:92:60:E3:F5:A4:E4:74:3F:16:EE:8A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0688
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mwSz9vpLE1RykmDj9aTkdD8W7oo.roa
Signing time: Mon 12 Aug 2024 23:55:04 +0000
ROA not before: Mon 12 Aug 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Aug 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1672 (0x688)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 12 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9B04B3F6FA4B1354729260E3F5A4E4743F16EE8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:54:75:9d:1a:f9:08:aa:4a:36:8c:f0:ac:ae:
60:8f:fd:74:86:fb:97:02:a7:a2:10:10:e4:89:4c:
9e:d0:84:bf:45:3f:d0:d1:d4:f8:f2:52:05:24:66:
be:a5:cc:ea:78:78:cc:f1:fe:e0:c0:23:aa:e4:7c:
41:4b:18:fb:6f:7b:32:b5:54:2e:e3:1c:25:c2:3e:
f9:e1:16:4a:13:b6:70:4e:68:d6:9a:23:48:76:8e:
bb:64:b5:d4:31:88:6f:11:40:29:25:bf:55:7f:28:
3a:48:3d:35:36:2c:1a:1b:f4:95:f9:a0:b9:58:10:
2c:2d:f3:b4:b9:47:2d:1a:3b:9b:10:2d:c4:15:bd:
d8:3e:35:e0:ac:99:0f:d9:e4:5e:86:4d:17:95:df:
17:3e:46:77:18:70:50:08:2d:8c:93:af:98:95:0b:
6e:7f:52:8f:61:f7:b0:dc:f9:74:9a:d4:96:47:26:
be:82:f5:92:cb:17:a5:69:19:fa:54:13:9b:4e:59:
b3:b3:b2:35:19:6d:c0:25:cf:7b:db:79:07:85:ae:
a5:e8:c7:53:17:1c:77:ee:97:af:c0:43:00:c6:e9:
63:24:ee:27:03:07:6e:93:2f:f5:ed:05:08:cb:52:
2c:85:19:99:0a:d4:1e:77:d4:b1:c6:4e:60:ad:cf:
91:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:04:B3:F6:FA:4B:13:54:72:92:60:E3:F5:A4:E4:74:3F:16:EE:8A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mwSz9vpLE1RykmDj9aTkdD8W7oo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
34:1c:c4:07:3d:25:81:29:28:bb:d4:b8:07:17:28:0d:77:72:
b9:86:3a:ae:f7:4c:1d:48:c8:60:86:c5:96:03:cc:d6:76:dd:
80:55:35:6c:fb:0c:c1:3b:30:b7:f3:30:b1:86:d1:f1:6e:09:
17:31:39:11:f2:5e:53:51:ea:10:64:4f:2c:6d:00:7b:70:74:
0b:db:c8:ce:96:6a:8a:fc:95:e1:1e:f7:7e:04:06:b3:6f:7d:
f8:ef:a1:d6:a4:f1:cc:77:02:e3:d5:95:62:e8:57:88:17:4d:
14:0a:29:53:a8:0b:6d:ba:cb:b2:ac:1a:23:99:3c:12:3f:5f:
56:44:d6:22:f1:22:9f:ec:49:3e:f8:17:9e:ed:ad:a0:8d:7d:
44:c1:35:0b:4c:a2:e3:70:8f:4b:34:e9:0b:c2:b2:90:73:03:
7b:64:72:f4:e8:30:1d:cc:39:00:6e:4d:83:b0:a0:d2:8b:da:
be:75:ba:f2:78:ec:4c:31:03:46:00:21:47:e7:c1:b6:91:a3:
63:fd:3f:90:37:d3:80:48:e1:a9:da:f6:b6:02:60:69:53:bd:
48:38:99:60:40:16:7d:be:74:0e:f0:0c:5f:21:a7:6f:f2:3b:
67:af:5f:d5:b0:54:1d:cf:09:08:50:cf:d1:00:93:c6:66:68:
ff:a5:71:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 13 06:55:09 2024 by rpki-client on console-ams.rpki-client.org