Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/9IJwf8wTWvHrwLF5Jso3ti-H5Qc.roa
File: 9IJwf8wTWvHrwLF5Jso3ti-H5Qc.roa (raw, json)
Hash identifier: KutJD4uS8Fwp2qYrXbiTlNgdeLXdQ3uTCQgOxo82woc=
Subject key identifier: F4:82:70:7F:CC:13:5A:F1:EB:C0:B1:79:26:CA:37:B6:2F:87:E5:07
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 8E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/9IJwf8wTWvHrwLF5Jso3ti-H5Qc.roa
Signing time: Sat 24 Feb 2024 23:55:03 +0000
ROA not before: Sat 24 Feb 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Feb 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142 (0x8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 24 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=F482707FCC135AF1EBC0B17926CA37B62F87E507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ac:78:d0:eb:49:aa:cd:bc:49:82:e8:2a:82:
69:ce:d4:0b:8f:c7:f8:ae:98:3a:ce:7a:c8:1e:8d:
20:ab:19:eb:ac:9f:4e:46:9c:f6:e9:b8:42:68:24:
8d:5c:cc:59:23:67:2b:ac:08:22:49:ac:1d:c9:d6:
fa:d3:06:10:97:b6:62:fa:d4:ef:31:14:dd:4a:4e:
c7:b9:e7:26:bc:53:e3:3f:1e:cf:65:70:cf:94:9b:
95:7b:00:08:e3:07:84:9b:fa:5c:01:3f:71:22:1b:
46:5c:25:25:34:89:8e:36:c7:24:70:cc:f2:3d:6d:
4c:77:81:7d:2d:78:4a:48:d5:11:32:ff:7d:1c:77:
d7:77:53:f1:06:fe:b6:d6:49:d3:24:81:4d:cc:08:
dd:80:a4:cb:8c:f9:9e:61:52:87:6a:0f:75:2c:05:
81:b6:c1:47:dc:e2:83:53:c5:c1:2b:6f:88:da:13:
86:d6:36:11:9a:1a:36:fb:65:b2:87:ae:fa:00:e1:
c9:80:74:bb:83:d7:54:2b:34:47:9b:fc:0f:4d:f8:
1e:9b:cd:da:f0:d2:34:aa:32:54:7c:d4:a3:6c:3a:
c2:cb:14:f6:4c:3b:80:00:82:56:be:bc:ea:45:e1:
b1:ac:23:cc:c4:e0:7f:69:2d:44:ce:de:06:dc:2d:
e9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:82:70:7F:CC:13:5A:F1:EB:C0:B1:79:26:CA:37:B6:2F:87:E5:07
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/9IJwf8wTWvHrwLF5Jso3ti-H5Qc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
02:53:2d:0e:59:35:89:0d:03:a0:ba:f2:4f:a7:5d:9c:8c:4a:
ca:c5:d7:6b:5a:01:95:6d:e2:70:7d:52:f6:02:97:29:fe:01:
68:93:76:9d:43:95:3b:14:00:f5:b8:b2:ba:57:bc:c4:d8:13:
50:47:21:53:d1:69:22:29:ab:c8:e4:d9:db:04:be:51:77:29:
1b:66:9c:ff:60:19:79:34:b9:ba:55:32:a5:c0:31:89:8c:9f:
6f:3f:b9:79:ae:0b:98:93:8c:25:51:a7:35:36:5b:33:3d:3d:
6c:d4:02:1a:59:74:da:3e:cd:ab:e0:3f:66:b4:31:ec:f2:70:
af:a2:85:15:69:d5:5f:c9:b6:5c:49:c6:bf:33:d3:76:cd:ba:
80:c6:39:27:37:a6:e5:3d:48:f4:ab:e2:60:17:12:91:a1:53:
35:a7:90:a5:63:b9:ba:07:c5:b7:48:8f:99:12:fb:8b:e3:0e:
fb:c6:c5:50:ec:44:d6:bf:24:c8:01:40:4d:8f:49:a4:26:e5:
b5:03:69:d1:07:20:2f:91:7d:71:24:18:10:e8:5b:88:29:5e:
f6:16:f8:49:19:18:a5:4b:d4:9e:dc:ab:9c:f7:98:b2:c4:e5:
ed:63:c3:b2:e1:96:18:77:3d:d7:f5:f5:55:48:b4:5b:28:9e:
06:c7:bb:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 25 07:34:17 2024 by rpki-client on console-ams.rpki-client.org