Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/8xTi1dl0YcIzXdkNG7us3g8MMaU.roa
File: 8xTi1dl0YcIzXdkNG7us3g8MMaU.roa (raw, json)
Hash identifier: JBhaqlZho1TG/0BiFovJnoETLRJW4Etb28nh1IWEI5M=
Subject key identifier: F3:14:E2:D5:D9:74:61:C2:33:5D:D9:0D:1B:BB:AC:DE:0F:0C:31:A5
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 025C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8xTi1dl0YcIzXdkNG7us3g8MMaU.roa
Signing time: Tue 16 Apr 2024 07:55:04 +0000
ROA not before: Tue 16 Apr 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 11:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 604 (0x25c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 16 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=F314E2D5D97461C2335DD90D1BBBACDE0F0C31A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:43:07:8c:3d:f0:42:b6:d2:6c:6c:62:a9:23:
f1:e1:89:e0:b7:83:1d:d1:ec:aa:a4:ac:6b:ed:e3:
aa:d6:44:bf:aa:24:2b:d1:77:b7:a2:e9:8d:73:cb:
fd:19:82:c0:98:18:22:53:0d:a7:47:4e:98:83:a5:
5f:32:17:8f:94:98:02:40:97:c6:a4:6d:04:d9:48:
54:70:bc:c7:72:da:86:33:0d:42:39:de:e3:ef:8e:
03:32:db:0b:47:07:a7:96:8c:22:45:8d:98:09:2e:
65:68:82:11:8d:9f:20:9a:ee:3d:94:6a:5c:4c:9b:
38:d7:49:eb:8d:aa:22:d1:f0:2e:96:e9:3b:c0:97:
6c:62:ae:7c:80:fa:71:18:87:91:b8:fd:03:ee:81:
68:35:77:d2:c7:f4:97:c3:6a:af:d9:16:13:79:27:
4f:05:cd:9c:92:c2:8e:80:d8:c1:bf:2b:b2:61:d1:
46:f2:41:90:b3:44:e4:08:b4:63:26:69:7a:ee:a6:
a8:dd:c7:cc:39:18:e0:d0:84:c1:dc:27:a9:81:cd:
d3:55:4f:53:c1:26:3c:9c:ca:61:96:99:29:55:b8:
38:b5:61:b5:f4:b1:c9:0d:d5:c8:40:39:3c:2c:f0:
48:61:b1:17:be:e7:29:14:35:20:20:1a:e8:01:a8:
d2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:14:E2:D5:D9:74:61:C2:33:5D:D9:0D:1B:BB:AC:DE:0F:0C:31:A5
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8xTi1dl0YcIzXdkNG7us3g8MMaU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
83:17:c7:bb:14:28:90:81:3e:7e:7a:93:7e:9c:6f:c3:8e:54:
99:6b:48:8b:58:67:27:84:e2:90:8f:69:1e:1d:0a:2c:ba:1e:
91:e5:29:6c:c7:1e:c3:05:3d:b2:52:29:c9:19:dd:ce:49:e2:
fd:78:ec:7a:00:09:c1:bd:16:bb:41:ee:4f:2d:c7:93:6a:79:
1c:f0:11:3e:a1:87:89:8d:bc:a8:8a:de:db:b4:ee:b9:ca:bd:
9b:e6:2b:8f:af:03:35:5f:13:7d:85:86:b3:d3:a8:4b:f3:6e:
93:e1:32:3e:88:c1:3e:fd:38:f9:13:b9:03:d3:2e:61:9f:cd:
9a:7f:62:86:4b:cb:29:46:df:11:79:bb:ef:22:e1:5a:82:5d:
1c:15:79:53:ad:31:94:ea:ba:cf:d9:51:d4:3a:29:e3:2b:b3:
83:e7:b2:60:65:44:c2:39:c9:c5:bc:7f:26:0d:79:04:fa:23:
e5:0f:c6:73:85:53:10:dd:ff:c0:b8:ac:f5:24:f6:6c:65:6f:
ac:2d:de:7f:d8:20:d5:c8:33:44:29:ea:3a:7b:c2:09:0f:9f:
1a:ad:92:e3:89:64:71:43:3f:4c:c7:24:93:79:5c:e1:92:28:
39:31:c1:ea:c7:7f:cc:2f:14:79:9e:0e:e8:89:bc:6e:77:bb:
c0:3c:b1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 16:50:12 2024 by rpki-client on console-ams.rpki-client.org