Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/3oMSoEnBVzzoXBfpeVx7mCTy9Sg.roa
File: 3oMSoEnBVzzoXBfpeVx7mCTy9Sg.roa (raw, json)
Hash identifier: 06+BvBE8KBtVXaqy/IVaVu8VfAxk5RZH7s11/p4RsLs=
Subject key identifier: DE:83:12:A0:49:C1:57:3C:E8:5C:17:E9:79:5C:7B:98:24:F2:F5:28
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 037C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3oMSoEnBVzzoXBfpeVx7mCTy9Sg.roa
Signing time: Sat 18 May 2024 07:55:04 +0000
ROA not before: Sat 18 May 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 892 (0x37c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 18 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=DE8312A049C1573CE85C17E9795C7B9824F2F528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d9:64:a3:29:97:4e:14:e2:b7:72:91:5e:0b:
59:35:9f:ef:ad:17:a5:9f:c0:ea:2a:68:1c:c7:6a:
97:b3:85:3b:94:11:1d:68:50:13:f8:43:fb:36:f1:
dc:f3:bb:3f:09:61:b3:66:84:7d:06:49:d5:20:8d:
53:7b:85:39:6f:79:ef:73:fd:39:78:19:23:29:fe:
1c:6d:2b:38:ce:85:1b:8c:b0:82:7b:cf:ae:95:19:
5a:11:6d:89:f7:2f:7f:48:50:aa:d0:c3:97:c3:b4:
de:2f:86:85:14:d7:9a:13:44:d5:96:bb:17:ab:68:
67:b6:f5:bf:b2:6e:38:37:b2:a7:ba:db:43:55:9e:
f3:dd:26:55:2b:02:8f:c2:78:09:d5:11:8f:90:08:
c8:92:04:b6:ea:13:ad:f0:ac:08:0b:99:d4:6b:19:
8d:24:6e:22:86:76:41:21:b2:29:49:a8:7f:b1:dc:
ac:3b:3a:0a:b1:e4:b8:b5:cf:2b:b8:b3:5f:c9:56:
7c:e2:be:be:a1:0b:f3:92:60:85:35:96:3e:56:f0:
a5:49:60:cb:35:93:c7:22:9a:fb:5c:c0:8c:82:f7:
1b:96:d9:d3:93:0b:8d:72:d7:08:a9:6f:74:c5:d1:
c5:1a:7e:26:2b:cc:90:94:4c:88:1d:7e:97:30:84:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:83:12:A0:49:C1:57:3C:E8:5C:17:E9:79:5C:7B:98:24:F2:F5:28
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3oMSoEnBVzzoXBfpeVx7mCTy9Sg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
67:17:dd:a9:01:32:20:ff:0c:c3:be:3a:08:b9:22:42:99:68:
de:2d:a8:52:c8:6e:2d:87:a3:b9:83:0b:e3:ab:eb:fd:8a:87:
ee:b8:84:76:1b:ab:e9:7c:b7:b0:10:1a:35:5b:c6:e2:eb:98:
2e:72:2e:a6:a1:6e:5a:ad:d2:c7:01:18:1a:8b:02:7a:6d:61:
18:fb:40:ab:eb:3d:36:b0:a8:12:52:6b:b8:c9:8f:31:31:92:
ec:4e:6f:f4:c1:c0:86:0a:35:d6:af:29:d9:e9:ad:92:55:43:
50:8f:ed:e6:48:46:3b:65:fe:4b:72:27:57:22:ef:62:ee:37:
6a:5c:c2:00:d9:83:3a:8c:da:4a:05:a6:ea:78:b8:02:c4:ba:
b5:17:ee:9a:3f:97:10:30:ee:37:5b:10:77:fa:c3:c6:48:88:
74:b3:09:b1:cf:48:73:91:d0:54:59:f5:09:4a:a3:83:a4:b1:
27:ee:c4:6e:44:b3:22:05:f0:88:60:c2:8c:fd:b0:c7:af:d3:
66:9c:66:da:ee:5e:03:80:4f:cd:53:aa:88:67:d5:a9:d4:aa:
da:d0:ac:c4:0b:0e:3c:17:8f:b7:4a:f7:14:9c:f3:b6:69:3f:
83:5c:33:79:85:7d:50:d7:0c:e7:67:75:07:f0:87:a4:86:71:
78:f8:c0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 12:48:00 2024 by rpki-client on console-ams.rpki-client.org