Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/8paBUx6EgVziMALg5FGKfxdnnGY.roa
File: 8paBUx6EgVziMALg5FGKfxdnnGY.roa (raw, json)
Hash identifier: NqP/Az/QLMlO9lM7o/+U1YcznwqZyQw9Z/g90/3qe10=
Subject key identifier: F2:96:81:53:1E:84:81:5C:E2:30:02:E0:E4:51:8A:7F:17:67:9C:66
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0373
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8paBUx6EgVziMALg5FGKfxdnnGY.roa
Signing time: Fri 17 May 2024 07:55:05 +0000
ROA not before: Fri 17 May 2024 07:55:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 883 (0x373)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 17 07:55:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=F29681531E84815CE23002E0E4518A7F17679C66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0c:b2:34:cb:52:3e:b9:fc:e8:86:b6:97:2a:
80:9c:37:a5:a3:7f:75:29:4f:3e:68:ea:4e:0d:d9:
62:8f:9d:0b:7a:32:6d:59:92:e2:c2:33:4f:cc:8a:
44:2a:55:db:8a:31:49:a6:fd:94:d4:f2:1f:bf:da:
72:5f:2d:48:39:d8:0e:ea:0a:97:d5:ad:f0:82:f9:
9f:5e:0d:e3:67:f0:13:17:78:2d:21:eb:77:1f:86:
82:03:dc:78:e0:60:ad:db:e1:c1:ee:62:c7:b2:85:
23:13:4e:8d:c2:2a:4b:1a:76:6c:c9:ba:10:f6:50:
16:da:60:80:fe:cc:c6:6b:ef:53:0f:18:bf:8c:ca:
9d:a8:c3:47:32:53:a4:b8:8b:8c:95:81:46:ef:35:
c9:31:c1:5b:86:f5:ba:0c:c5:d4:6f:98:ca:33:66:
a5:d4:e3:d5:69:41:2c:69:71:84:84:df:03:0d:67:
9e:5f:85:3e:8e:f7:81:b3:40:30:3e:7e:56:78:f2:
83:2e:31:4f:a6:6e:3a:3f:e2:03:f9:d0:08:39:6a:
63:a8:9e:e4:16:ca:92:05:ef:7c:99:e0:50:66:d8:
84:6b:91:2f:fc:a4:c9:5a:a4:8f:52:ef:3b:02:5d:
45:c9:b8:5c:5d:62:cb:6a:15:b7:e1:93:09:7d:cd:
0a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:96:81:53:1E:84:81:5C:E2:30:02:E0:E4:51:8A:7F:17:67:9C:66
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8paBUx6EgVziMALg5FGKfxdnnGY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d0:06:9d:3e:e9:da:59:d0:bc:cf:ca:99:05:95:28:d7:21:
6d:06:cd:15:f0:d9:79:cb:a9:d4:a6:20:e2:fb:9d:8b:a3:3c:
a8:00:d0:3e:c8:ce:80:e9:93:30:4c:5c:b1:99:ec:3f:8e:aa:
b7:82:e4:07:3e:d8:4e:53:22:dc:54:29:a9:08:60:34:05:d5:
d6:0b:6b:c9:c2:21:c8:c1:bf:2a:ca:7e:06:55:8c:e0:94:b4:
1d:ee:48:e1:53:a8:71:5f:8f:38:c4:df:87:a0:b8:39:71:66:
38:88:92:b3:5d:a2:b8:d3:9d:3e:81:87:17:74:26:7f:f9:7c:
00:57:fc:45:8a:e9:54:21:3d:86:f3:00:1c:33:e4:13:7b:ee:
f5:62:c0:45:ec:2e:66:75:0a:16:bb:f8:91:da:e0:a4:b3:a3:
1b:44:bf:40:84:41:29:00:f7:a8:31:7c:6a:d9:d8:ec:c6:de:
47:e7:92:21:f7:90:e5:3b:a8:a0:79:da:2f:99:57:91:af:60:
c0:0f:06:2e:9b:4e:c7:7b:66:ce:1b:c7:b5:7f:06:ba:85:b5:
4a:6d:b6:72:9e:0e:cd:9d:a1:11:c2:50:cd:b6:05:b3:26:17:
d4:a0:ea:d7:ad:f6:0e:f8:79:39:8d:2b:60:8e:99:f5:36:a5:
6d:b8:4b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 14:34:57 2024 by rpki-client on console-ams.rpki-client.org