Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/F2QTa4WC34JUG3Ktg9Y0hvxFVUU.roa
File: F2QTa4WC34JUG3Ktg9Y0hvxFVUU.roa (raw, json)
Hash identifier: WD/qokRMaAaHJasARhqhmToR6XKiBkdO8nWMSPMl188=
Subject key identifier: 17:64:13:6B:85:82:DF:82:54:1B:72:AD:83:D6:34:86:FC:45:55:45
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 09CB
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/F2QTa4WC34JUG3Ktg9Y0hvxFVUU.roa
Signing time: Wed 13 Nov 2024 15:55:04 +0000
ROA not before: Wed 13 Nov 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2507 (0x9cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 13 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1764136B8582DF82541B72AD83D63486FC455545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:73:39:82:e9:9b:ec:6e:b5:ce:0a:0e:a2:02:
28:a4:6d:5a:ac:e4:40:a2:2d:f4:f8:c2:d9:03:0a:
df:f7:fe:6e:5c:12:88:a6:ce:b7:ba:f3:60:05:83:
00:15:51:cc:07:ce:0d:dd:28:8a:09:e0:4a:03:f7:
f4:3e:8e:3a:84:ba:73:4d:64:a0:ef:8c:ca:26:8b:
9e:73:90:d2:4e:73:6f:8a:3a:52:a8:63:c7:25:dd:
4d:c3:4c:92:08:06:55:3a:ec:be:f7:9c:25:8c:48:
48:a1:b3:ab:62:60:3a:c6:9d:2f:18:6d:68:47:cc:
9b:5f:96:ae:8c:f1:62:86:33:56:8f:49:c2:d2:55:
62:8a:e4:09:ef:28:d2:f5:47:c0:56:b7:b6:ca:d7:
30:8a:d5:72:cf:47:6e:2d:5f:2f:47:79:2e:4e:10:
f9:fa:43:76:2d:cf:c5:e8:92:53:71:97:fc:76:2c:
71:b2:f0:d2:02:81:76:60:bd:12:cc:83:6c:7e:4a:
42:92:8c:ef:d2:b3:7c:8d:e7:bd:e3:55:54:c4:0b:
d4:ef:af:7f:a0:8e:ae:70:a0:d6:e6:f2:c1:0e:c7:
41:82:f1:b2:11:9c:6c:3f:8d:d1:d6:a9:7d:2e:80:
ec:1c:52:d6:d3:af:82:83:76:4a:23:58:cb:00:3e:
45:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:64:13:6B:85:82:DF:82:54:1B:72:AD:83:D6:34:86:FC:45:55:45
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/F2QTa4WC34JUG3Ktg9Y0hvxFVUU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:9a:e6:53:34:f9:d5:2e:45:0b:9d:68:ef:65:46:18:bd:c8:
09:c5:01:6b:66:92:12:fb:3d:17:d6:1d:1c:fa:15:47:76:a6:
32:e1:53:be:9d:96:22:64:db:d0:57:c2:63:f7:11:4e:c5:c8:
59:b1:40:4b:c1:19:af:58:34:2b:e7:41:14:a7:99:f8:9c:13:
f6:76:64:8d:05:af:b6:49:dd:39:a7:11:00:0e:5f:ca:e6:c6:
bf:f4:03:9d:5b:c6:de:bd:c2:72:37:35:1a:5a:c4:3e:a8:59:
c7:4a:7f:b2:cf:c5:57:90:15:6c:8b:85:36:15:2b:9e:2d:55:
39:d1:0a:08:47:67:82:bd:ec:32:28:62:be:4e:56:4c:1d:2d:
50:35:a0:95:fa:3a:61:9b:f3:c1:04:bb:76:ce:23:7c:4f:0a:
10:7f:bd:42:fa:a9:f8:a1:0a:0b:62:af:aa:d9:63:7d:99:9b:
41:62:a4:92:07:da:a5:c1:52:fd:f1:86:0d:b8:0d:af:9b:c5:
4c:20:3b:75:88:cb:68:a1:b5:e5:53:84:a2:e9:2a:7f:c4:50:
67:51:91:ac:b7:cc:49:58:7a:d3:45:b5:b2:d1:d6:9b:06:46:
19:ae:04:f0:27:7d:50:e2:ea:a3:1e:c8:4e:42:e2:21:9f:90:
be:1b:87:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 21:37:56 2024 by rpki-client on console-ams.rpki-client.org