Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/AXV7XZ_zYMqzLbOdZJ2WtQArUiE.roa
File: AXV7XZ_zYMqzLbOdZJ2WtQArUiE.roa (raw, json)
Hash identifier: CzN74GvXqhaq7WTO2espsHcpDAV9nC11q2JsoREils8=
Subject key identifier: 01:75:7B:5D:9F:F3:60:CA:B3:2D:B3:9D:64:9D:96:B5:00:2B:52:21
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04A8
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/AXV7XZ_zYMqzLbOdZJ2WtQArUiE.roa
Signing time: Thu 20 Jun 2024 15:55:04 +0000
ROA not before: Thu 20 Jun 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1192 (0x4a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 20 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01757B5D9FF360CAB32DB39D649D96B5002B5221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:52:2e:ca:29:9e:56:51:a8:9f:30:2d:23:
75:63:6d:8f:4a:9d:56:7a:43:24:ba:78:0c:5a:cf:
e7:79:6c:bf:d1:98:68:63:44:11:0d:dd:14:37:2c:
6d:be:54:0e:ac:63:0b:9e:7e:75:d9:25:ea:41:ab:
43:b9:d9:07:31:98:ef:40:b6:50:53:97:1b:ed:f4:
68:23:31:09:f3:1b:bb:0c:55:c6:68:d0:c0:31:f1:
07:ce:57:8d:9a:ba:81:83:21:25:dd:04:4e:a4:a8:
15:36:45:73:d1:68:ec:15:87:ab:a1:c7:c3:90:19:
94:aa:55:ed:dc:e8:22:20:66:af:c3:ba:47:a0:cf:
57:55:33:76:82:83:10:24:17:c3:2b:1e:6b:fa:f9:
01:99:a7:42:2f:3c:73:0b:b6:a9:84:49:b5:99:90:
9f:32:f6:ec:d9:1d:0e:24:1b:34:75:54:4c:22:61:
fd:73:69:25:49:72:cd:59:2f:c6:76:23:fa:b4:f8:
2d:ac:22:9d:66:14:2f:4d:54:1f:3d:91:96:89:e4:
e4:aa:9e:93:29:1d:d7:31:10:ca:1e:4b:88:ad:c6:
fe:67:fc:e5:b5:51:09:63:11:ae:ac:87:df:0d:e3:
e0:ad:89:c8:37:f1:24:ff:8b:17:41:c2:31:f1:8d:
b1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:75:7B:5D:9F:F3:60:CA:B3:2D:B3:9D:64:9D:96:B5:00:2B:52:21
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/AXV7XZ_zYMqzLbOdZJ2WtQArUiE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:61:de:c3:12:2d:d9:79:d5:7e:f8:25:b9:96:0a:31:9a:29:
ab:f7:21:fe:33:70:19:f2:17:e4:46:a5:7d:dd:db:b0:0e:3d:
f8:45:40:ee:bc:1e:c6:fa:4e:17:6f:f0:4b:57:a2:52:aa:8d:
97:1f:f2:88:f8:e6:19:7f:e1:a9:da:a4:a2:a5:20:d3:dc:31:
b6:75:bc:20:e5:b2:e3:bc:6a:46:9a:95:c6:60:a0:ec:e4:8d:
1d:67:fe:3a:8c:60:93:2e:3e:de:eb:68:64:b2:98:f6:a5:cf:
b3:c7:6f:3d:93:a6:d6:9d:2f:54:90:99:37:a0:90:d8:b4:d9:
ba:d4:9b:db:2c:89:51:0a:d5:98:3c:cd:cc:c5:4d:2b:25:3e:
2f:f8:85:df:9b:bc:dc:02:a4:ce:12:d4:36:f6:65:6b:40:29:
b0:97:54:bc:c7:90:b8:22:00:95:d7:8c:9c:30:71:bb:00:79:
34:52:10:b1:bb:f4:79:76:2d:e5:c4:a6:b3:8f:68:d2:60:c3:
1a:fb:62:d4:4f:ff:f7:fb:1a:52:73:21:f0:c9:80:09:e7:36:
30:51:ce:40:2b:21:db:f6:9b:da:9b:7b:35:aa:0b:b1:ed:8a:
12:6c:65:bf:1f:ea:bc:7e:2a:c6:05:c0:d5:d3:82:09:98:7f:
37:81:95:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 23:23:23 2024 by rpki-client on console-ams.rpki-client.org