Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/2CXWkB2gsHG6LN5kVvNffNuE_bo.roa
File: 2CXWkB2gsHG6LN5kVvNffNuE_bo.roa (raw, json)
Hash identifier: kgcxo0xCDWwIgABWcLfIF6nniBBJq9Rz9A1OG1h+sBc=
Subject key identifier: D8:25:D6:90:1D:A0:B0:71:BA:2C:DE:64:56:F3:5F:7C:DB:84:FD:BA
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 08EF
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2CXWkB2gsHG6LN5kVvNffNuE_bo.roa
Signing time: Sun 20 Oct 2024 07:55:02 +0000
ROA not before: Sun 20 Oct 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Oct 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2287 (0x8ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 20 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D825D6901DA0B071BA2CDE6456F35F7CDB84FDBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a5:1e:08:42:d0:75:83:8b:66:85:fb:9c:26:
02:28:6e:e0:cb:15:57:5c:d8:bd:17:7e:78:c3:f9:
0a:8c:e6:50:de:92:dc:e9:d4:b2:4f:9c:c8:13:8c:
a6:88:78:92:fa:54:13:c2:b4:65:09:a3:4b:fa:fe:
99:4b:71:13:a8:2e:b7:52:cc:a6:1a:67:57:eb:82:
98:46:db:84:8e:b3:7b:51:1e:0d:0c:f9:25:d5:27:
2c:b2:76:74:ca:9d:ce:a1:67:32:70:e7:ba:9a:ab:
76:60:95:d2:96:97:9a:fc:f3:8a:6b:c3:45:6b:fc:
05:28:74:0c:98:b0:5b:07:90:01:f7:34:e5:03:7f:
d2:e2:26:ed:03:b7:f7:85:69:3c:45:f5:18:b2:ec:
ce:b3:65:82:88:ee:db:af:ac:11:83:6e:67:11:bf:
94:b1:41:29:42:97:8a:b7:29:ce:7f:53:a2:bd:54:
e5:95:d4:f0:cc:70:0e:10:f4:c7:4f:4f:74:d8:46:
06:24:73:e1:51:c2:e5:10:c2:97:10:f8:14:46:ae:
7e:75:51:a4:9e:d7:1e:ad:f9:08:82:f2:b9:57:c8:
2d:e0:05:d6:a0:e4:06:d5:6c:57:69:88:63:f9:de:
01:d6:04:ca:af:a5:de:bd:c8:43:3a:4f:74:8a:dc:
20:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:25:D6:90:1D:A0:B0:71:BA:2C:DE:64:56:F3:5F:7C:DB:84:FD:BA
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2CXWkB2gsHG6LN5kVvNffNuE_bo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:57:48:af:97:7f:93:6e:8b:89:50:cc:e3:ab:20:e6:af:8d:
f6:0c:a4:7b:52:6c:91:8e:fc:3e:9d:da:bb:6c:48:c2:f9:25:
14:13:6d:6a:de:5d:d1:6f:74:f3:42:f0:a0:e4:ac:ef:1b:ef:
39:23:b0:76:24:35:7a:73:7b:99:a4:d4:49:f8:1d:b6:aa:fc:
51:41:df:01:a7:d8:e6:b2:15:04:b8:b0:5e:f2:3a:9d:a9:6e:
4d:d9:15:5a:f9:75:ce:35:62:48:49:b7:5c:9e:17:df:28:37:
0f:36:75:6f:58:8f:15:e7:60:ba:18:ff:db:5f:5c:ab:bd:8c:
13:c1:0e:93:b6:69:94:9f:b4:fb:5f:ab:55:9e:46:ce:83:b5:
2c:2b:dd:dc:3c:6d:06:73:20:f9:6d:1c:3e:55:49:10:ab:4c:
10:7a:b1:a2:0a:5d:a6:52:16:7d:76:29:53:a2:8c:5a:35:34:
78:f4:ea:bb:7d:b1:1c:b7:fc:a4:b0:93:e0:9c:ea:33:dc:ba:
f0:64:fa:7a:2d:90:41:3d:8c:46:6b:84:f3:7d:65:86:c5:48:
a5:2a:ee:df:a6:56:3e:1f:b0:0d:eb:c6:39:27:24:6c:91:45:
2d:52:7c:ff:49:3c:9e:45:93:16:52:f9:4b:d0:a8:50:ea:e0:
f7:3a:e1:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 13:06:23 2024 by rpki-client on console-fra.rpki-client.org