Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/23j4W_X1TxCKrFg5YPt_Q_vBpkA.roa
File: 23j4W_X1TxCKrFg5YPt_Q_vBpkA.roa (raw, json)
Hash identifier: hkXCIs06wkXmtQ/sd3l2QJ8DBZJCUcv3LUrI1Du7MxU=
Subject key identifier: DB:78:F8:5B:F5:F5:4F:10:8A:AC:58:39:60:FB:7F:43:FB:C1:A6:40
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 08BF
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/23j4W_X1TxCKrFg5YPt_Q_vBpkA.roa
Signing time: Mon 14 Oct 2024 23:55:03 +0000
ROA not before: Mon 14 Oct 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2239 (0x8bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 14 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=DB78F85BF5F54F108AAC583960FB7F43FBC1A640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b4:4c:ba:5b:67:d5:6b:8f:dc:f7:27:ee:b2:
8e:a0:cb:0a:21:4f:82:7b:e0:c1:64:3d:00:a6:db:
b1:16:1f:71:d8:8a:6f:d9:78:49:65:87:89:6b:7e:
98:3b:bd:a8:7e:86:ff:64:1a:72:8f:9a:80:4a:a2:
26:98:9b:2e:ec:a9:b2:a1:6c:0f:f2:86:fc:9b:a0:
98:e3:d1:1c:61:c5:c3:b3:c6:f5:9c:be:6e:30:c5:
4c:30:01:9e:26:1c:ed:18:c3:a5:96:f5:1a:99:bd:
43:92:a8:ae:8e:7e:40:7e:a7:d3:3a:d6:e4:f9:28:
bc:71:ec:6f:71:1f:c2:c6:4a:b3:14:69:68:89:44:
46:7d:44:34:2b:04:69:83:48:8d:86:af:62:27:73:
ac:06:61:76:07:c5:c8:a3:d4:fc:17:1f:1c:ba:9b:
2f:e9:d6:e5:32:30:ce:77:87:e1:38:9b:40:21:62:
b4:14:06:b1:31:b0:e0:f2:27:8e:46:96:39:18:d6:
eb:f9:f6:73:87:86:83:bf:de:a3:76:34:e0:1c:7c:
e7:61:a4:92:af:f2:c5:cd:bb:43:ea:75:01:d0:44:
ad:19:3e:e4:4d:07:74:6e:ca:67:ec:2d:a1:45:26:
8f:e7:90:90:76:ba:a1:aa:2f:0b:4a:d5:44:b7:24:
32:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:78:F8:5B:F5:F5:4F:10:8A:AC:58:39:60:FB:7F:43:FB:C1:A6:40
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/23j4W_X1TxCKrFg5YPt_Q_vBpkA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:51:ac:ea:50:08:07:9d:ff:3b:ed:34:a1:19:48:af:3b:2b:
79:3c:0d:f5:9f:40:29:1f:95:c3:32:b4:73:01:9b:01:3e:4c:
99:74:74:d5:dc:08:13:42:1a:3a:fb:04:48:8b:07:1a:cb:da:
8b:c0:8f:ac:3f:f5:e8:d2:18:7c:76:a0:48:45:64:70:99:40:
07:d5:d3:15:f3:6d:df:c9:ba:7a:9f:63:9c:57:91:8e:45:d4:
80:bf:83:cd:58:e6:c7:b1:8b:80:6c:3a:74:8c:d8:b0:e0:81:
26:fd:38:d1:4e:eb:9c:c1:b4:c5:2f:03:a7:a9:de:44:88:57:
86:15:64:3e:d5:de:10:ba:f7:fe:0b:40:2f:28:06:85:77:ab:
a4:45:1f:3d:8e:d3:a5:21:99:e1:29:94:a2:9f:e6:8f:07:b7:
7f:a3:d0:78:3a:3e:e1:e1:26:86:7d:30:4c:8c:f0:71:54:1a:
13:ac:a8:f8:4e:5b:77:92:8e:08:44:7b:11:40:6a:9f:11:eb:
a9:d2:58:e5:c1:2f:a0:20:5e:9d:59:78:cd:9e:d3:5f:7c:de:
a4:89:39:5a:c9:4b:fc:80:4c:ce:9f:b6:f8:fb:a3:10:b6:a2:
58:d3:d8:66:6c:67:16:f9:02:d6:4b:22:da:21:b4:da:7e:ba:
9d:95:42:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 06:04:03 2024 by rpki-client on console-ams.rpki-client.org