Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/DrcRSWFoTb0tP1MGkSCg2U7_H4I.roa
File: DrcRSWFoTb0tP1MGkSCg2U7_H4I.roa (raw, json)
Hash identifier: 32FszthmuMtrzuSXhFU0lAWc4Tgf4b/0JZeXdlHja5s=
Subject key identifier: 0E:B7:11:49:61:68:4D:BD:2D:3F:53:06:91:20:A0:D9:4E:FF:1F:82
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 080B
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/DrcRSWFoTb0tP1MGkSCg2U7_H4I.roa
Signing time: Tue 24 Sep 2024 23:55:03 +0000
ROA not before: Tue 24 Sep 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2059 (0x80b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 24 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0EB7114961684DBD2D3F53069120A0D94EFF1F82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:98:72:b3:d9:5f:d6:28:60:cd:98:b1:37:1e:
73:eb:4b:63:37:b5:3d:ef:73:21:29:bd:b7:fc:94:
7b:8a:38:7c:5a:38:a9:a8:df:52:7a:49:44:ff:c0:
c5:73:3a:02:ff:b6:e5:4e:9b:af:0d:a6:84:ea:f6:
02:46:43:92:cb:fe:e7:55:90:b2:27:16:70:6e:30:
76:d4:16:5e:64:f0:30:c0:8d:e0:c5:07:e8:6f:a7:
e7:4f:1a:e9:8b:9a:90:fb:81:eb:a8:c4:80:4b:54:
9e:33:7c:bb:64:6e:09:d7:14:36:93:41:4e:c0:b1:
8a:81:59:85:71:70:00:48:3f:49:ae:0d:ea:aa:db:
a1:c1:49:cb:e0:1f:d7:b0:b0:c7:f4:28:3c:ee:6c:
cb:3e:84:8c:9f:55:0b:9f:c7:22:e1:9f:b2:54:94:
8d:ad:f8:50:f5:ca:8e:dd:8b:51:47:24:5f:0c:55:
46:da:e0:a1:20:8a:a1:fa:92:24:8e:6f:80:2c:9c:
58:90:89:99:43:15:95:36:91:42:97:9d:87:e1:e9:
3e:96:2c:dc:6b:6c:d0:87:d6:3a:8d:c5:cb:eb:ce:
66:36:e7:cb:eb:02:ea:7b:91:6a:b8:e3:54:6b:98:
4f:bb:ce:71:31:de:3f:b4:7d:ab:8a:62:b6:e6:86:
28:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B7:11:49:61:68:4D:BD:2D:3F:53:06:91:20:A0:D9:4E:FF:1F:82
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/DrcRSWFoTb0tP1MGkSCg2U7_H4I.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:44:e6:00:40:78:5e:cc:d8:db:58:f8:74:46:a0:0f:9b:b7:
dc:b1:38:0d:dd:82:30:bf:38:86:c9:b5:77:27:01:b3:df:0a:
af:25:6e:ce:77:ab:99:c8:56:4f:73:18:3e:96:9a:cc:1b:d6:
8d:7a:ac:64:6c:51:51:c3:0d:b1:17:eb:cc:90:0f:ac:6d:55:
6a:1c:36:1c:49:72:57:37:dc:11:96:6b:35:b2:f4:24:3d:77:
51:7d:60:fd:5a:d5:3e:18:85:d7:14:38:7c:9f:a2:e6:8c:71:
0c:b3:98:cc:4c:62:2e:9f:96:5b:03:ed:a4:42:64:5d:dd:4f:
a5:b7:ad:06:ba:10:a1:2e:91:16:5f:9c:10:46:e9:04:57:3e:
44:39:5c:c3:c5:18:bf:8d:b9:50:fe:43:72:56:a2:01:51:c9:
69:61:96:38:c5:a6:41:09:17:3a:0b:4b:be:db:6b:ac:2c:e8:
5a:68:2d:36:b3:39:99:d5:c5:28:04:e6:38:93:24:3b:ae:72:
17:cd:39:10:9c:ee:6b:48:84:ae:5e:37:85:a9:ac:6b:f1:5d:
ac:22:4a:b7:ff:68:4f:14:13:82:5f:29:4f:71:56:83:e9:39:
9e:b0:9d:09:67:6f:dc:74:5a:33:33:12:7f:d2:42:3f:6a:3b:
3d:7d:96:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 05:04:42 2024 by rpki-client on console-ams.rpki-client.org