Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/ASus3SklIuE0TkgLlb-3Nrfqkgo.roa
File: ASus3SklIuE0TkgLlb-3Nrfqkgo.roa (raw, json)
Hash identifier: x9vE4BYe5TpwmIF7j8fH6C7bR4jkkJLJDHTDnRUmK60=
Subject key identifier: 01:2B:AC:DD:29:25:22:E1:34:4E:48:0B:95:BF:B7:36:B7:EA:92:0A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 01B7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/ASus3SklIuE0TkgLlb-3Nrfqkgo.roa
Signing time: Thu 28 Mar 2024 23:55:03 +0000
ROA not before: Thu 28 Mar 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439 (0x1b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 28 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=012BACDD292522E1344E480B95BFB736B7EA920A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c7:8a:c1:0b:80:2d:b6:a5:27:94:f4:18:c1:
38:58:0a:9a:e6:76:33:a9:d4:03:ef:96:0f:e1:db:
48:58:e4:6a:25:38:26:c4:82:a8:c5:24:06:3d:be:
10:0f:27:98:d7:6f:a9:bc:5e:02:f9:98:b3:85:79:
34:41:89:f2:92:58:98:c6:eb:ba:4e:0e:d7:4f:aa:
16:7f:c6:1c:b4:aa:c7:f3:f2:87:02:2a:11:37:47:
e1:02:f1:36:f0:14:51:cf:c1:1c:3e:36:35:91:97:
e3:8c:ff:62:2c:0e:5b:05:88:a2:07:f5:0d:1c:b5:
e5:89:48:35:d1:ac:47:d9:64:8b:ea:af:eb:f9:0a:
02:49:e5:93:9c:dc:8c:e5:5e:d9:fd:90:b3:c7:5f:
b1:33:97:6a:e9:0e:e1:75:77:8d:ce:42:45:f1:55:
64:b0:88:c1:1a:eb:8a:5c:4b:8a:d8:f2:a1:b4:0e:
b4:4a:83:14:e8:80:4e:2e:f0:3b:1c:6b:94:ac:b8:
ae:99:13:e9:a8:22:69:4e:27:56:e6:ca:54:9a:3e:
08:7a:82:43:a4:8d:91:9f:22:02:98:7e:d9:c0:d1:
f1:cf:02:0d:40:1a:a4:a2:99:04:8d:bf:2b:43:08:
45:b9:fd:b7:fe:50:05:fb:94:4f:8d:bf:ab:b9:13:
8f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2B:AC:DD:29:25:22:E1:34:4E:48:0B:95:BF:B7:36:B7:EA:92:0A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/ASus3SklIuE0TkgLlb-3Nrfqkgo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:f6:09:ae:a5:b2:07:c0:1c:b5:b0:22:71:0e:80:db:d5:84:
ee:75:40:a3:21:4f:52:12:d5:9b:a0:c3:4c:70:0b:eb:76:d4:
ed:8c:37:e7:ff:5d:6a:f6:8f:b5:e6:ac:97:83:61:5b:18:10:
b9:fa:6c:5e:ee:84:45:ec:d7:5c:00:61:84:17:73:68:8c:69:
a6:fb:be:d3:21:65:13:56:32:38:a7:f1:84:1b:d5:cc:8f:13:
27:8d:20:d0:c7:a6:4f:87:50:94:c5:bf:56:65:48:07:f4:63:
22:72:f4:3c:f2:3d:69:79:97:ee:87:ef:84:ed:46:48:89:fc:
1d:c2:41:91:92:b2:d9:c0:3c:79:10:20:c8:45:71:0a:7d:1b:
b4:5f:71:7f:1f:a9:08:37:03:83:09:a0:3c:e9:c0:cc:de:d4:
1d:58:c4:41:0e:2e:5e:4e:d9:1c:a0:ea:df:fc:aa:2c:b8:9a:
b4:9a:3c:20:15:09:1b:77:41:6b:f2:2b:9d:b4:5f:aa:a5:4d:
48:b7:71:31:7f:ad:63:25:14:f5:48:dd:28:8a:fe:f8:b5:cf:
f4:8e:82:11:00:dc:d7:e8:a7:c0:68:d6:99:d5:82:7a:9c:2f:
13:40:91:14:91:d8:dc:17:ae:36:10:76:0e:f2:38:98:19:1f:
03:5d:14:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org