Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/FkP2unMUlnWpBVXvSmSCTwp810g.roa
File: FkP2unMUlnWpBVXvSmSCTwp810g.roa (raw, json)
Hash identifier: IsMQHKxollDpwDys3bcossY3oz6FLQ5ocZwsm96XDhc=
Subject key identifier: 16:43:F6:BA:73:14:96:75:A9:05:55:EF:4A:64:82:4F:0A:7C:D7:48
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: 011094
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/FkP2unMUlnWpBVXvSmSCTwp810g.roa
Signing time: Sat 17 Jun 2023 00:00:38 +0000
ROA not before: Sat 17 Jun 2023 00:00:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 2a0e:b240::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 15 Feb 2024 17:03:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69780 (0x11094)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Jun 17 00:00:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1643F6BA73149675A90555EF4A64824F0A7CD748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4a:ee:dd:f7:f0:b5:b9:fe:f0:f0:48:e2:97:
a2:5f:e3:81:ec:4b:a5:e6:25:79:9a:a0:06:b2:b5:
52:ca:4b:c6:70:6d:dd:14:60:93:b3:b0:55:41:1d:
a4:ea:10:cd:e0:33:87:cf:78:5a:e7:f5:e1:1f:e1:
9b:f2:b2:08:38:7b:c6:aa:22:df:b7:73:09:e7:b2:
21:9c:6d:48:5f:c5:78:5f:f7:1b:1a:12:ec:e1:dc:
39:1e:28:d1:59:62:ae:4e:65:12:37:b1:99:5a:9d:
94:f9:c2:c8:ad:58:d9:15:bd:ee:ae:f9:6a:18:fe:
91:fc:a9:84:29:40:08:0d:82:dc:a0:1c:a3:71:74:
1b:41:0a:d9:de:87:e4:3f:2d:84:7b:0b:9c:f7:ea:
5e:52:48:9d:37:40:f9:1d:c6:9f:1a:ab:29:12:63:
34:1a:a8:22:df:f5:14:d1:fc:e1:90:b0:6e:a6:00:
3b:9c:52:65:80:ce:fa:87:4b:ed:c1:11:de:eb:94:
c3:c3:26:4d:34:74:b6:c4:57:80:23:da:8a:40:ad:
89:3f:71:59:51:2a:c1:40:d5:a5:e0:ef:2a:e0:81:
6f:ca:40:89:aa:8a:e5:ce:5c:56:80:d7:9d:97:b7:
f7:0c:0d:f5:d6:0d:e1:4a:a1:a1:8d:7a:d6:5c:ad:
5a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:43:F6:BA:73:14:96:75:A9:05:55:EF:4A:64:82:4F:0A:7C:D7:48
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/FkP2unMUlnWpBVXvSmSCTwp810g.roa
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b240::/29
Signature Algorithm: sha256WithRSAEncryption
30:17:ea:a1:72:07:69:5a:7d:85:67:0a:31:44:70:6a:72:6c:
d7:45:0c:e8:d4:fa:bf:24:e2:e4:d1:85:f3:d0:d9:50:22:58:
23:8d:36:d8:4a:68:c1:48:c7:e3:0d:5c:d2:22:0b:ef:33:59:
15:59:a8:a7:ff:85:43:c2:0e:73:84:af:6d:93:08:9f:eb:77:
1a:a9:cc:ca:93:71:25:f0:3c:2b:1d:25:4a:3e:35:3d:2d:0e:
64:25:a9:43:a4:95:c9:14:c3:67:b4:f0:af:b0:40:30:c7:1c:
3f:a4:6b:ef:a0:58:84:c9:b2:66:c9:ba:8e:55:ee:f2:fa:b8:
e1:91:76:1c:65:9c:87:f0:1a:9c:52:e3:66:a1:f6:14:24:ea:
74:d6:7a:84:48:af:09:d8:16:8f:15:7a:4d:37:d7:f0:9b:ca:
0d:43:0f:15:80:c7:c9:75:0c:57:51:7c:af:56:50:d4:66:b1:
ea:41:9f:7f:28:8b:d1:5c:56:dc:a8:b7:d9:90:fc:c1:c7:07:
da:00:35:18:45:ea:cf:80:a2:a6:36:c0:08:aa:b4:38:a3:eb:
64:3f:e4:6b:3e:37:5a:e9:a2:c7:f2:65:1d:da:80:b3:26:04:
b1:d0:10:30:bf:46:5b:dd:bb:c6:f6:20:bf:7c:2f:7f:a9:fb:
3f:ff:b2:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 15 20:37:04 2024 by rpki-client on console-ams.rpki-client.org