Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/DGplOJUxHVnmbsbd0NLPGnMfPJI.roa
File: DGplOJUxHVnmbsbd0NLPGnMfPJI.roa (raw, json)
Hash identifier: diweb5juGUp6I3eEvrlwGoeYH0b3YVuoucYwUIgk944=
Subject key identifier: 0C:6A:65:38:95:31:1D:59:E6:6E:C6:DD:D0:D2:CF:1A:73:1F:3C:92
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0625
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/DGplOJUxHVnmbsbd0NLPGnMfPJI.roa
Signing time: Thu 01 Aug 2024 23:55:04 +0000
ROA not before: Thu 01 Aug 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1573 (0x625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 1 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0C6A653895311D59E66EC6DDD0D2CF1A731F3C92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9c:4b:35:f1:6a:83:f7:bb:de:b6:b9:f2:94:
c8:94:13:43:24:47:a9:ab:d5:da:ca:71:b1:8c:08:
41:d6:9b:44:66:00:88:26:38:90:ab:b8:1c:02:36:
95:e8:99:b0:f4:d3:f6:cf:07:cb:eb:3f:01:7e:aa:
e6:a4:fc:e5:ec:ba:45:5f:21:9f:45:f5:45:62:b3:
50:bb:33:17:de:6f:d0:c4:44:db:d7:a8:bd:d5:04:
6b:0a:36:d5:e9:96:db:75:54:bb:bc:f2:e4:0b:a5:
ab:b0:7d:2a:f0:7d:9f:ea:40:e9:17:ae:b0:c8:a1:
d0:bf:cf:1a:f5:b3:55:21:4e:c8:0f:bd:4d:f5:13:
ea:76:79:e1:8b:df:de:cd:46:4a:3b:3f:ca:fd:cb:
b4:10:70:6f:3b:56:8e:5e:bd:89:72:9e:fe:ad:62:
fc:10:97:a8:5a:ba:2e:04:f4:45:86:fe:f2:b2:a4:
87:02:78:47:79:9d:63:ee:74:2b:98:92:5c:0d:01:
05:e2:e5:75:bd:7e:2c:48:c4:eb:59:97:e4:4e:06:
a3:de:f7:b9:b6:35:ab:22:15:7f:97:c4:c6:ff:db:
d5:37:ad:8a:25:31:21:6d:37:eb:53:c5:a8:9e:b8:
2c:f1:23:01:3a:96:e5:10:04:26:e3:c6:8b:75:79:
84:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6A:65:38:95:31:1D:59:E6:6E:C6:DD:D0:D2:CF:1A:73:1F:3C:92
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/DGplOJUxHVnmbsbd0NLPGnMfPJI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:0e:1e:ca:a2:e1:d3:35:a8:34:96:8a:b5:a0:e1:c3:2d:d1:
c3:b7:50:17:5a:1d:80:af:4d:16:f4:82:e6:e4:82:48:7f:d6:
9f:70:1f:c2:7b:6b:9c:12:df:37:06:0a:c7:df:45:80:2b:ba:
3b:1f:00:21:ef:95:b4:e6:f9:2a:4d:91:47:50:eb:fb:6d:85:
ed:4f:40:1b:cb:45:ec:3f:6f:be:19:d9:70:56:77:f8:b3:9e:
11:06:47:2a:76:d3:42:32:55:fa:68:13:a0:da:eb:73:36:58:
2e:ea:0b:cd:68:21:55:4c:53:2f:5e:52:bc:a9:ea:70:a5:ad:
4f:65:19:ee:7b:eb:7e:d3:92:37:59:7e:ad:66:40:02:da:0d:
ac:4f:f0:51:d8:03:a5:55:be:fa:cf:29:eb:28:ee:6f:1f:d4:
42:84:cd:67:f0:1c:3d:c1:d6:5b:e3:f5:96:01:9c:5e:87:99:
0d:04:e3:c8:59:d8:1a:86:32:89:dc:c9:7c:20:6e:41:2f:7b:
4b:40:97:10:35:3b:40:a7:2a:02:dd:56:9c:66:91:e7:5a:35:
b3:f0:56:54:4e:19:6d:3c:1b:57:be:cd:fa:62:9c:b6:62:a2:
e3:dd:3d:b7:ca:32:87:61:ee:5d:42:58:84:e2:f2:16:31:78:
3a:43:72:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 05:16:58 2024 by rpki-client on console-fra.rpki-client.org