Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/BWn5b49tQEbSxIvlb7KUz1MlYAg.roa
File: BWn5b49tQEbSxIvlb7KUz1MlYAg.roa (raw, json)
Hash identifier: RY7t4GSup8jJzx5tYCs/+RMbAgIxwJHaInYpjNCq1Cc=
Subject key identifier: 05:69:F9:6F:8F:6D:40:46:D2:C4:8B:E5:6F:B2:94:CF:53:25:60:08
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06A9
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/BWn5b49tQEbSxIvlb7KUz1MlYAg.roa
Signing time: Fri 16 Aug 2024 15:55:03 +0000
ROA not before: Fri 16 Aug 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1705 (0x6a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 16 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0569F96F8F6D4046D2C48BE56FB294CF53256008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:30:a4:b6:24:b8:d7:bb:5b:2d:15:9c:4d:34:
92:88:d3:1f:d1:da:fe:19:4a:bf:e6:5e:48:d1:dd:
66:43:ac:bd:e6:9a:ad:22:93:28:92:96:83:da:05:
3d:08:16:86:a7:5c:5c:ca:95:d5:00:9a:e2:ba:32:
da:61:a8:a4:3d:34:b5:71:1c:64:50:2c:a2:e4:d6:
4c:55:93:03:14:62:62:eb:6c:06:55:41:4c:79:e0:
ac:c3:b6:a4:9d:50:c9:ea:e9:92:c8:46:28:4a:43:
f0:f6:fe:96:24:f3:c8:d3:8f:b2:66:a8:af:76:10:
52:9f:30:24:11:01:76:3c:48:b1:8e:1a:04:e3:d1:
fe:a1:ad:a5:be:ee:7a:b3:8c:9a:b2:6c:c9:f8:83:
7c:90:b4:c7:3e:5c:25:19:0c:24:87:52:d8:e5:85:
08:8f:10:fc:dc:98:99:5a:63:7e:01:53:ee:44:59:
08:15:04:a4:78:e1:98:98:a4:84:64:fb:e9:ad:11:
4c:e9:bb:ea:b5:f4:83:a2:93:24:a8:88:ae:e9:9d:
60:2f:74:a0:3d:1d:a4:91:56:7f:6f:fb:79:b4:95:
24:92:c5:57:6e:e2:b8:32:b9:95:de:b8:8a:a2:84:
3b:3c:7a:43:67:8e:00:7f:20:f4:e5:c0:06:98:ca:
92:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:69:F9:6F:8F:6D:40:46:D2:C4:8B:E5:6F:B2:94:CF:53:25:60:08
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/BWn5b49tQEbSxIvlb7KUz1MlYAg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
85:0c:02:b4:07:f2:30:e3:f1:49:eb:3a:d5:87:e3:de:98:01:
26:62:4b:4c:e4:4e:48:98:7c:51:15:c5:bd:a0:b4:52:19:5b:
25:1b:69:4e:30:cb:ea:78:8a:a6:42:d9:e3:fa:71:42:27:37:
a9:56:ab:0d:fe:89:d4:a8:33:c9:18:05:5d:8a:68:8c:0b:39:
7d:c0:7e:44:16:58:bc:3b:9d:8b:8f:b3:a4:2c:d1:a1:97:3d:
67:8c:3c:67:b1:74:02:00:1e:f0:7f:24:d2:bd:31:47:00:5d:
a3:b8:8f:c4:ce:bf:ec:f9:b5:cc:ad:2e:a4:8b:62:ca:c4:d2:
d0:97:d6:0d:06:12:33:6a:7c:bd:8e:f2:c0:f2:ca:f3:d6:53:
dd:25:b5:06:b7:4b:5a:c9:77:1e:12:a4:64:55:6a:1e:8d:05:
10:15:40:01:dc:53:59:e3:d5:10:e3:09:2f:06:1a:50:17:85:
62:0d:bc:fb:b8:c7:64:9e:36:c0:89:75:b6:21:cf:db:93:5c:
2e:14:1f:a2:0a:7e:5e:b6:52:b1:b9:b6:6c:7c:7e:72:00:a2:
86:06:33:a8:b0:8f:66:cb:e8:53:ba:67:9e:96:82:25:ec:b6:
b0:67:7e:69:21:47:14:3e:28:a8:db:86:8c:bf:d8:fe:d4:10:
6d:a6:13:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 22:20:33 2024 by rpki-client on console-fra.rpki-client.org