Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/BFhHIEyAoC3tPYci39fTZ4Mtl0g.roa
File: BFhHIEyAoC3tPYci39fTZ4Mtl0g.roa (raw, json)
Hash identifier: eJ2LOMqBJxA74pI1XtSnfBAsCmrAQMj9H2OhBlY5kkw=
Subject key identifier: 04:58:47:20:4C:80:A0:2D:ED:3D:87:22:DF:D7:D3:67:83:2D:97:48
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07F9
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/BFhHIEyAoC3tPYci39fTZ4Mtl0g.roa
Signing time: Sun 22 Sep 2024 23:55:03 +0000
ROA not before: Sun 22 Sep 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2041 (0x7f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 22 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=045847204C80A02DED3D8722DFD7D367832D9748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3f:54:9e:4d:89:21:5f:d1:07:40:0c:4c:87:
94:98:7f:9a:f5:90:94:40:25:d0:8d:49:d7:54:26:
33:23:45:24:c9:b1:fc:cf:8f:95:e5:97:7d:07:7c:
6f:97:73:12:e8:55:60:85:16:33:c4:0e:1c:98:4e:
3f:3d:b0:a7:28:70:64:67:64:31:da:49:39:56:be:
84:3e:03:4e:8b:6c:33:3f:49:dd:e7:a2:0f:3b:8b:
b9:2c:96:94:89:fc:3b:bf:dc:14:b0:52:b3:39:66:
7e:08:88:d3:03:f4:31:27:78:43:a3:fb:12:4b:27:
25:fd:89:9e:86:91:ad:6b:7e:74:8e:aa:29:d2:0f:
f3:36:0c:d7:45:1c:f3:a8:5c:ab:49:c7:c9:38:5f:
c1:6e:54:45:65:cc:67:a0:e1:68:3d:65:d8:bf:e7:
9d:6b:f0:73:6b:d6:ca:26:0f:9e:67:04:a2:ad:5e:
55:6e:7f:37:05:0b:59:9a:53:3b:c5:ee:06:a0:c6:
35:10:94:e1:95:32:31:03:cf:72:80:1c:dc:b1:24:
3d:b3:c3:d0:22:34:c3:47:25:1b:a0:54:58:b4:38:
20:d5:97:e5:b5:5d:ad:ef:ac:4f:9b:b7:f1:80:c0:
b9:27:8b:a2:5a:2f:80:b2:28:51:df:a0:aa:04:c9:
e5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:58:47:20:4C:80:A0:2D:ED:3D:87:22:DF:D7:D3:67:83:2D:97:48
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/BFhHIEyAoC3tPYci39fTZ4Mtl0g.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f0:52:a8:c9:03:1c:a0:fd:2d:e2:af:d2:d7:ca:ea:e7:53:
aa:a9:0d:27:a9:f0:93:b9:d9:a8:2e:28:ee:e9:be:17:c5:4a:
8e:ce:57:7d:e1:69:43:8c:56:9a:5e:61:46:35:e4:f9:ae:ef:
43:08:f1:38:7a:6e:ed:92:e2:9c:b6:f9:5a:b5:af:d0:03:f4:
b6:0c:a5:b6:41:6c:77:eb:03:f3:51:df:93:3f:aa:f1:84:4e:
95:e3:08:ae:1f:dd:12:9e:55:16:37:ed:44:e5:b7:0f:1b:a2:
4f:ff:f0:8f:db:cd:ab:fa:cf:96:bf:3e:e9:dc:16:bc:10:a2:
97:2e:76:3f:58:b8:4f:ca:99:aa:99:3c:f0:fe:6f:56:c7:10:
60:33:d0:86:87:eb:31:33:37:1f:e2:cd:b2:1d:3c:be:6b:d8:
a1:33:bf:84:85:fc:52:b4:0d:a8:05:2f:59:76:25:9b:99:ba:
c5:47:e6:60:34:68:90:cd:66:44:af:39:bf:c6:6e:6f:cf:e2:
1c:b1:8d:65:ad:35:01:b0:f4:f2:04:63:40:5d:b6:9b:c3:8d:
ff:80:74:35:a5:ca:c8:8a:ba:2f:d6:ef:4c:0e:f4:2c:52:62:
98:e6:09:28:ac:b7:4f:f1:27:59:cc:ec:49:8e:c8:46:63:1a:
bb:69:7c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 06:26:20 2024 by rpki-client on console-fra.rpki-client.org