Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/74cenT4v3kWnNNSIDcz87iE2qgE.roa
File: 74cenT4v3kWnNNSIDcz87iE2qgE.roa (raw, json)
Hash identifier: WRHNmysFL37a3mXG/CaIVCn/CuA2/neqn6Bx6rH+3Eg=
Subject key identifier: EF:87:1E:9D:3E:2F:DE:45:A7:34:D4:88:0D:CC:FC:EE:21:36:AA:01
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0871
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/74cenT4v3kWnNNSIDcz87iE2qgE.roa
Signing time: Sun 06 Oct 2024 07:55:03 +0000
ROA not before: Sun 06 Oct 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2161 (0x871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 6 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EF871E9D3E2FDE45A734D4880DCCFCEE2136AA01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:68:be:a8:cc:b8:ef:49:eb:09:51:6a:cf:74:
2a:0f:c0:91:90:55:0a:d3:62:b4:73:5e:03:d6:c3:
8e:eb:8e:89:0d:8d:c5:43:3c:e2:62:51:1b:80:f5:
91:e0:84:2a:ac:03:5f:c9:4e:87:03:5b:63:34:5d:
f3:77:83:52:a7:57:4e:96:8f:6e:5d:18:03:0a:04:
d4:1f:59:5b:1d:9d:89:53:11:c9:92:9b:38:cd:d5:
84:b4:81:25:41:4f:99:52:43:55:66:4a:a0:1c:1b:
18:0a:8b:23:1a:46:2f:81:5c:54:06:ad:c8:f1:93:
af:e1:bb:5f:eb:99:48:7c:a6:f1:1a:b8:e8:31:05:
67:ce:b2:41:fd:97:ef:d3:8b:3f:d4:fc:7b:a0:55:
16:ad:92:48:43:a9:50:99:31:3d:81:78:87:b5:8c:
88:5f:09:14:6e:0b:15:e3:16:c9:37:7c:a4:25:08:
86:20:82:9d:84:34:7b:2e:34:ee:72:00:e4:8a:33:
b7:4c:e0:61:b1:40:dd:bc:b6:99:88:50:a8:fb:48:
01:e9:a5:e3:a9:a7:ff:f5:62:dc:99:94:b4:e1:22:
79:e0:3b:0e:bb:98:43:26:d0:a8:d9:d4:59:ca:bb:
b4:c1:c8:07:53:f2:25:fc:7d:29:f2:4e:ab:5d:95:
7d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:87:1E:9D:3E:2F:DE:45:A7:34:D4:88:0D:CC:FC:EE:21:36:AA:01
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/74cenT4v3kWnNNSIDcz87iE2qgE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:b8:02:0e:b5:1f:e7:c2:60:eb:a3:ba:e5:ad:02:a8:0c:fe:
50:7b:a0:3f:f0:79:f5:c9:24:81:1e:a3:b8:4b:65:49:35:cd:
ef:9f:f7:94:00:ce:75:27:a9:78:d6:c8:8a:58:1a:4c:5e:f6:
fc:b7:ba:08:f1:3e:52:30:ab:7f:63:be:98:20:35:f7:dd:14:
e3:a6:6b:9b:1c:01:eb:ee:2b:c2:13:c0:5d:3a:8a:7d:bc:ff:
42:71:c7:b3:31:38:b0:37:e3:83:5b:67:9b:8c:38:c6:bb:56:
e1:39:8c:de:ef:8a:02:70:0c:e3:a9:c3:20:f4:19:44:7b:d0:
13:c6:9a:f6:c9:2e:18:39:94:ab:73:73:e4:42:83:68:6f:af:
6f:2d:8b:d3:e6:ad:1e:ba:12:2d:d3:79:36:29:2c:75:38:65:
83:8b:26:d0:99:ee:a0:96:ca:06:f0:8f:28:87:2d:2d:b8:ff:
fb:cf:e3:67:f0:8a:6e:84:53:0d:99:10:f1:55:27:99:ed:b7:
f2:8d:35:07:f7:1c:11:6c:67:83:fb:db:9a:1c:1a:87:65:13:
b3:2e:5c:4c:ce:7f:48:26:3f:4f:5a:33:bd:00:9a:f9:92:b2:
43:74:a6:28:b2:fa:0e:12:58:cc:b8:df:af:60:13:b9:e0:c7:
b7:d4:80:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 6 18:41:56 2024 by rpki-client on console-ams.rpki-client.org