Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/DmNJG0_3Fppmvxh0GH1Mx0HypfY.roa
File: DmNJG0_3Fppmvxh0GH1Mx0HypfY.roa (raw, json)
Hash identifier: ZVDc0voeCMIZRSYYFE5A5yaFKq/j33ychO73dFL+W2k=
Subject key identifier: 0E:63:49:1B:4F:F7:16:9A:66:BF:18:74:18:7D:4C:C7:41:F2:A5:F6
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0211
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/DmNJG0_3Fppmvxh0GH1Mx0HypfY.roa
Signing time: Sun 07 Apr 2024 23:55:03 +0000
ROA not before: Sun 07 Apr 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 529 (0x211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 7 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0E63491B4FF7169A66BF1874187D4CC741F2A5F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:94:fd:7a:6e:71:6b:9d:92:ea:4a:a9:93:d9:
56:d1:0e:82:1b:9c:8c:3b:04:2b:64:d0:37:09:94:
64:52:61:78:b3:03:7f:9a:62:fd:66:0f:a2:c7:38:
0a:18:ea:3e:c7:c7:8a:5e:00:7c:ea:a9:96:77:94:
99:11:09:09:c0:36:70:ad:66:47:bc:92:e0:46:e1:
4b:2f:5d:7f:f8:1c:ff:c4:d5:81:45:2b:82:ca:87:
44:e1:1a:f0:f3:86:16:d7:17:67:8d:97:14:db:b3:
5c:0c:a6:27:66:6e:da:47:b9:bd:c5:26:00:7e:cc:
0c:c3:a1:b2:99:fc:49:89:83:d5:f0:44:91:c3:8e:
cb:27:8b:63:e8:8d:dd:a4:bf:6f:56:21:63:c1:16:
e5:6f:0a:de:21:87:6c:f5:66:71:84:08:e6:26:da:
e4:8d:08:6d:39:53:62:04:cf:26:11:88:11:b6:4b:
b8:1c:21:81:cf:e5:e9:2f:70:a0:a5:db:58:94:7d:
67:1d:ea:b7:c8:6c:7d:5e:e8:d2:fc:06:ff:41:27:
8f:71:08:ed:92:08:41:d8:8c:01:05:9f:e5:b0:21:
9d:6a:37:1f:3e:96:05:fc:9e:bf:ef:cf:82:9b:8d:
57:88:58:f2:43:d8:56:fa:14:ed:50:34:14:fa:72:
a7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:63:49:1B:4F:F7:16:9A:66:BF:18:74:18:7D:4C:C7:41:F2:A5:F6
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/DmNJG0_3Fppmvxh0GH1Mx0HypfY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:3e:8f:ae:6c:d3:1a:0d:00:0a:01:3d:48:24:fe:96:a3:49:
a8:82:94:57:6d:62:2a:d8:17:ad:18:0e:37:c4:59:13:ee:f9:
d9:fb:0a:64:35:41:4b:0c:ec:77:b0:07:7b:d2:bb:49:5c:b7:
32:10:a1:16:30:fe:fb:e0:2a:56:24:dc:da:df:7d:4f:a4:65:
ba:39:01:2b:98:f2:f6:16:3e:12:86:aa:e2:a0:46:42:84:1e:
76:82:f3:f0:2a:62:10:7f:4f:b2:e8:d8:a4:1f:de:a9:6b:62:
ab:0a:f8:27:ba:37:5c:0a:03:07:0b:c2:bb:0d:30:1c:71:d9:
9b:4e:e6:8d:8d:3c:bc:81:97:e7:52:42:7a:42:af:fe:14:da:
a8:6d:2f:e3:41:8a:a0:8a:96:22:e6:45:6c:2a:5a:16:4d:74:
a9:23:68:42:c4:e0:f1:86:a0:15:a2:87:0c:c1:04:04:63:68:
8b:11:fa:74:61:17:f1:44:93:76:6a:b4:ea:a5:c3:a4:21:d8:
86:03:32:f7:ac:1e:8c:dc:49:d4:50:fd:7c:a3:6e:25:9f:ca:
2a:53:f3:ab:57:80:b8:19:05:fc:0a:a4:68:78:ec:44:66:11:
19:85:a2:38:0c:a0:64:08:93:16:ac:94:0b:d3:59:13:67:c6:
17:69:41:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 8 06:20:22 2024 by rpki-client on console-ams.rpki-client.org