Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/59jZHxwIZUSsEVLdq40UPXYfj7U.roa
File: 59jZHxwIZUSsEVLdq40UPXYfj7U.roa (raw, json)
Hash identifier: uDBJ0Ylt2iiBcabOdq3dg0kHLeeqVICxB8GAUvnGw4g=
Subject key identifier: E7:D8:D9:1F:1C:08:65:44:AC:11:52:DD:AB:8D:14:3D:76:1F:8F:B5
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: EE
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/59jZHxwIZUSsEVLdq40UPXYfj7U.roa
Signing time: Wed 06 Mar 2024 15:55:03 +0000
ROA not before: Wed 06 Mar 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238 (0xee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 6 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E7D8D91F1C086544AC1152DDAB8D143D761F8FB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:d2:93:19:ec:bd:6c:95:3a:f5:41:94:ac:
70:cc:2a:d2:d5:82:b5:62:97:b6:44:f5:ba:d1:08:
be:72:30:b2:88:f9:15:5d:5c:54:49:bb:cd:ac:7a:
d7:aa:6e:4a:f1:e5:44:40:2d:c4:d7:96:02:35:2c:
f8:87:59:d2:bf:92:3e:79:1b:9c:53:73:d7:79:4c:
78:10:91:0b:53:21:d9:f0:1c:2c:9c:3a:3a:68:83:
6a:76:65:02:68:03:ff:c9:3e:9d:54:94:e5:1e:ef:
fe:26:47:ab:ef:90:46:99:03:93:68:10:65:54:d3:
74:43:34:93:f6:be:1c:08:72:d1:68:03:d6:10:ba:
b6:2d:31:aa:b9:84:88:81:8e:d5:5e:b4:64:d4:46:
38:ee:36:51:99:3d:27:4b:6b:75:2b:1e:74:89:c0:
16:86:76:5a:bd:3b:fc:17:b4:02:c9:ed:19:c8:3c:
a1:a0:f8:8c:0b:eb:8e:34:4a:bb:23:69:b3:79:64:
5b:5f:32:58:6a:57:5c:b4:c9:7d:44:23:c2:51:e9:
4f:b5:95:24:3a:95:4d:01:a3:6a:b4:4c:18:71:c7:
ff:4a:e9:bc:c1:42:cb:21:da:1e:6d:e1:a1:e2:d6:
30:55:84:fc:d8:d8:ad:b0:cf:a9:aa:70:be:b1:df:
9d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D8:D9:1F:1C:08:65:44:AC:11:52:DD:AB:8D:14:3D:76:1F:8F:B5
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/59jZHxwIZUSsEVLdq40UPXYfj7U.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:d9:53:e6:3e:29:1e:0e:9f:4e:4f:29:fe:cb:1d:6c:9d:3b:
84:78:f0:b0:09:64:54:4b:10:1e:99:ac:a4:76:eb:8b:e2:bf:
27:08:e2:84:4f:b2:a3:1d:08:65:87:67:cc:9c:36:10:4f:7a:
3a:85:16:f8:24:27:c8:da:8c:36:97:08:af:d5:7b:11:3c:87:
00:d8:ab:b7:55:9e:8c:9e:1b:1c:bb:7b:d5:c3:7e:a9:30:72:
33:ed:d8:76:c3:df:d6:be:3d:27:27:22:fe:d6:3b:75:42:61:
5c:2a:4d:2e:ce:4d:41:e2:b3:57:97:b6:f2:42:cb:89:cb:25:
80:ed:a2:f1:1f:ca:36:31:95:57:01:f3:1c:de:63:e1:c4:40:
de:07:22:55:9f:f8:cd:70:1f:f0:36:bd:72:53:32:5b:30:80:
b7:66:e2:c2:b0:89:86:af:cc:95:2f:02:49:48:c3:c0:1c:89:
dc:6c:89:6e:c4:00:f6:dc:fe:56:8a:69:7d:ca:4b:91:bd:67:
57:b0:98:81:b8:67:b6:28:43:52:2c:b2:1c:80:f7:a8:f0:a7:
6d:e4:8e:a6:d7:34:10:94:cc:ba:50:67:fe:3a:93:05:e0:55:
f4:92:47:d4:90:b4:c3:f2:c2:c8:78:09:94:90:39:42:15:ec:
fb:39:9a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 6 22:50:07 2024 by rpki-client on console-ams.rpki-client.org