Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/0SGVDqc1WhAWRTvM96l7j8UTVcw.roa
File: 0SGVDqc1WhAWRTvM96l7j8UTVcw.roa (raw, json)
Hash identifier: 7q1hbcwWiFKJisHxkx/KqfCqbYsZ2kaDx78WqUqTugc=
Subject key identifier: D1:21:95:0E:A7:35:5A:10:16:45:3B:CC:F7:A9:7B:8F:C5:13:55:CC
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0592
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/0SGVDqc1WhAWRTvM96l7j8UTVcw.roa
Signing time: Tue 16 Jul 2024 15:55:03 +0000
ROA not before: Tue 16 Jul 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1426 (0x592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 16 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D121950EA7355A1016453BCCF7A97B8FC51355CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0b:e2:b1:6c:43:78:b8:ef:73:84:33:66:2a:
a0:2e:ff:cf:ff:8b:e3:52:b4:c4:73:a1:f3:00:f4:
a4:ec:b3:56:36:81:d2:e3:e0:cf:83:d8:75:ad:2c:
d4:27:68:2e:95:8d:b9:95:f6:8c:cc:75:2e:06:8f:
42:20:88:c4:98:e2:b1:94:a3:5c:de:1f:7b:84:47:
e6:29:ef:24:aa:c1:91:6f:49:2d:bc:80:27:21:95:
45:34:a9:b3:03:82:ce:f3:57:d2:f0:8b:4d:da:e2:
2e:3a:36:70:7f:7c:90:f7:4b:84:72:c1:97:2b:b8:
4c:05:05:cd:bd:dc:a6:58:ff:6b:f4:d0:81:f6:77:
c4:22:ff:68:e2:3a:4f:5e:2f:61:93:65:71:e3:f3:
bc:ef:d5:85:ce:71:a2:85:56:40:e0:0b:0a:c8:81:
41:df:d1:b3:a7:71:e8:fc:f1:4f:04:c5:2a:6c:78:
dd:b9:ae:dc:5c:20:4f:07:89:91:66:85:2b:1c:a7:
db:e9:97:08:59:ac:94:d9:50:ed:60:e7:c0:86:31:
1e:6b:c0:75:23:e0:3b:e2:9a:f2:3f:e5:83:10:11:
6d:ab:02:a0:aa:2d:87:30:4e:a0:29:36:78:1d:54:
db:40:90:75:58:ae:02:d2:8d:69:18:c8:23:08:62:
95:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:21:95:0E:A7:35:5A:10:16:45:3B:CC:F7:A9:7B:8F:C5:13:55:CC
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/0SGVDqc1WhAWRTvM96l7j8UTVcw.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:61:18:00:81:f6:a1:1c:2b:bb:d0:f7:79:3c:7b:bd:8c:f1:
bf:1a:82:94:43:de:ab:16:00:cd:28:3e:b4:85:5b:59:73:43:
31:76:95:db:9e:fc:5c:f6:8e:ed:8e:54:0b:8f:9a:4d:3d:b5:
d4:3c:86:25:4b:4a:89:09:90:c6:39:d6:8e:68:2d:14:12:01:
82:db:3b:c8:97:a6:ff:ba:01:11:49:5d:30:df:95:05:3d:a5:
08:33:56:c3:bd:80:1f:d8:97:24:85:11:20:d2:e7:9e:c7:52:
6a:2d:af:01:a9:c8:b7:e4:67:33:de:06:59:a1:21:84:27:95:
7f:34:8c:28:05:09:24:e1:79:85:15:a5:0d:09:d7:de:85:86:
30:bd:25:91:97:8a:a0:a2:24:16:2b:28:de:16:bb:20:05:bd:
d2:0c:c3:c5:33:fa:83:b1:c4:39:4a:ab:31:28:49:13:4c:ca:
26:ef:8d:f5:18:cf:f6:54:b0:4c:f2:0c:e0:51:a4:fc:aa:cc:
07:ae:f0:57:f2:bd:b9:8c:8c:06:9a:4e:07:06:54:f4:aa:3b:
4d:ea:ed:b4:3a:4a:87:aa:30:3d:57:83:aa:17:03:77:93:85:
58:8b:cf:db:0a:c8:9d:da:66:f8:21:f6:06:9a:0e:e6:f4:d7:
03:b7:e7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 23:30:16 2024 by rpki-client on console-ams.rpki-client.org