Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/3xf14bcocpgWfOpviqRN9uTR4pY.roa
File: 3xf14bcocpgWfOpviqRN9uTR4pY.roa (raw, json)
Hash identifier: Vh4AAwBx4Zhef7dpZrVVEZ3aV6Y98ZMdZzpM2+HKxjg=
Subject key identifier: DF:17:F5:E1:B7:28:72:98:16:7C:EA:6F:8A:A4:4D:F6:E4:D1:E2:96
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0235
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3xf14bcocpgWfOpviqRN9uTR4pY.roa
Signing time: Thu 11 Apr 2024 23:55:03 +0000
ROA not before: Thu 11 Apr 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 565 (0x235)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 11 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=DF17F5E1B7287298167CEA6F8AA44DF6E4D1E296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:a3:df:cb:61:17:04:a2:34:4b:b3:4a:bd:
04:b6:32:4d:3b:a0:7e:ff:fd:c8:93:10:0c:18:d5:
8f:97:92:12:6d:c7:c7:5a:49:17:54:e9:2e:4d:e4:
cb:cd:0b:04:e9:2e:ab:32:01:21:3f:b4:6d:fc:42:
68:df:5a:c6:e2:49:61:38:4c:c3:5d:6a:ef:fa:a6:
9d:0b:e1:b7:59:fa:6d:7b:b2:ff:84:bf:a8:ff:c4:
4c:3c:61:dd:51:a8:c8:d2:33:70:4b:a2:be:a8:28:
5e:ec:24:2c:e7:b4:75:54:cd:00:4f:6e:fc:ed:01:
ac:d1:78:c4:9b:57:e5:41:d3:8c:99:de:c7:f6:df:
43:fd:b3:34:74:0e:3a:ab:b7:ba:4f:48:a1:c2:dd:
4d:69:e8:a0:e2:66:cf:2c:75:2a:f1:26:bd:3a:cc:
d7:a5:45:8f:ea:6d:d4:8b:3c:09:83:01:f9:26:0b:
a4:91:3e:15:b4:39:1e:13:2c:c3:24:4c:81:8a:5d:
f0:d6:ed:65:b1:84:0b:c7:98:9c:a9:0a:d1:00:10:
60:b4:70:44:15:e4:e4:75:1a:61:f0:e1:16:15:91:
c7:af:55:54:50:a1:61:ec:75:e7:a9:b1:79:f0:a4:
85:c6:25:75:24:93:ad:46:ff:54:5b:02:b3:87:8b:
7e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:17:F5:E1:B7:28:72:98:16:7C:EA:6F:8A:A4:4D:F6:E4:D1:E2:96
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3xf14bcocpgWfOpviqRN9uTR4pY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:79:10:7a:e2:c9:e4:50:65:2b:2b:99:86:30:e9:6c:2a:1c:
96:a3:30:b2:69:47:5c:00:d8:8b:c6:a3:98:47:e0:a3:c8:d5:
e9:02:e6:0c:42:c4:d5:eb:2b:21:0d:ec:69:21:ff:e6:d7:3d:
3b:09:28:0f:b2:fb:f3:f9:f6:f3:e9:02:10:01:3e:66:06:dd:
00:62:30:92:fd:6f:f8:d2:f4:46:c1:b2:95:cb:bd:ec:a3:ff:
d3:56:fd:c0:d0:a2:a3:ca:2e:d1:25:9b:6b:6f:d2:c0:ff:62:
46:fb:cd:0b:32:fd:4a:0c:fb:d0:70:70:25:2f:60:68:36:9c:
5f:bc:a2:8e:5a:cc:54:0b:97:9b:9e:51:9e:18:d2:5e:be:ed:
c7:5e:bc:86:e6:39:95:70:6a:fc:bc:5f:8f:a7:5d:00:c4:5e:
f4:f6:1e:b3:cc:58:9f:66:6e:f0:ea:1e:a2:49:22:68:56:28:
cd:12:90:25:fc:0e:ae:fd:d6:b5:63:c3:81:8b:ed:d8:78:7c:
cd:29:ef:67:ca:4d:b7:49:ea:f0:f7:af:97:5a:cb:20:ec:4e:
03:8e:d9:bb:c5:ea:8d:2b:05:ba:3b:04:2f:9a:62:95:69:68:
82:10:9a:7b:c0:f0:68:69:cd:84:22:6b:06:9a:cc:87:27:b8:
ba:fa:93:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org