Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/FGx8we-Iqr-LOn40uXmnZuFetyM.roa
File: FGx8we-Iqr-LOn40uXmnZuFetyM.roa (raw, json)
Hash identifier: kl9pzLLHO3rMEKoYUmCZG/f3DTw9sooNcflvSfqkxjA=
Subject key identifier: 14:6C:7C:C1:EF:88:AA:BF:8B:3A:7E:34:B9:79:A7:66:E1:5E:B7:23
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 041B
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FGx8we-Iqr-LOn40uXmnZuFetyM.roa
Signing time: Tue 04 Jun 2024 23:55:02 +0000
ROA not before: Tue 04 Jun 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1051 (0x41b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 4 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=146C7CC1EF88AABF8B3A7E34B979A766E15EB723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b5:21:2b:ff:26:16:b0:18:6e:ae:20:92:cd:
fc:aa:36:22:0e:46:48:7f:34:be:70:81:90:7d:95:
28:74:d5:c9:29:33:8a:a2:1e:87:c0:24:9f:85:47:
4d:4c:aa:9f:51:e8:f5:81:75:8b:0a:7d:43:46:3b:
e8:be:0b:e5:3c:fc:c4:a3:02:56:48:4f:11:6e:5b:
32:06:95:cb:19:e3:05:11:88:39:82:88:0e:08:06:
bd:61:5d:29:c5:6a:1c:89:b4:0a:62:f9:d1:05:9e:
af:32:ec:88:0e:80:d1:cc:d9:72:b9:8b:f6:d4:73:
0d:dd:6e:6c:fc:12:66:8e:aa:3e:b9:16:3c:58:1f:
e3:1d:8a:16:7c:1d:1e:2a:26:1f:8a:61:87:c0:ef:
97:38:50:60:a2:20:fb:e7:8f:8d:6b:a8:0f:88:ff:
b8:71:d8:e4:f5:fd:e4:57:a2:65:f4:56:52:15:2e:
d8:b2:0f:0e:73:87:ed:bd:fd:e2:e9:e4:88:8a:32:
9e:2b:0c:5e:41:b8:a3:9c:d0:81:4f:64:d5:5f:29:
d1:a9:f3:7c:19:69:49:80:e4:8a:1a:4c:1f:9b:26:
03:85:72:e0:09:5f:0d:44:4e:1d:b8:c7:b4:44:d6:
55:3b:e6:f6:e9:aa:9a:5e:f0:51:2d:af:89:7a:e5:
5e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6C:7C:C1:EF:88:AA:BF:8B:3A:7E:34:B9:79:A7:66:E1:5E:B7:23
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FGx8we-Iqr-LOn40uXmnZuFetyM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:e8:ef:0d:5f:c6:33:03:03:08:c8:95:30:6a:af:4d:8a:b6:
3f:ee:a1:b7:df:40:6a:35:33:c0:cf:00:1a:34:50:74:3b:15:
73:ac:c5:d6:71:82:02:88:38:71:01:e7:cd:19:f0:a9:d4:1b:
b6:8b:f0:78:f0:eb:60:ec:ed:a7:be:84:7d:2a:bb:b3:86:e8:
06:4e:38:17:f6:cb:cb:b4:11:a6:c6:41:71:15:d1:c9:5b:06:
4d:58:d2:49:02:e1:d3:27:53:9f:6a:fe:39:fe:49:ad:3e:6e:
8e:cb:e7:af:7f:ba:7a:0a:b9:ec:75:8f:4e:ea:a1:d9:69:ad:
a1:62:42:b1:5c:bb:92:ee:8d:e4:c6:82:2a:c8:d8:a5:45:33:
e6:66:51:a4:3f:8a:d7:01:c4:b6:3b:89:53:1b:dc:e9:93:23:
b0:4d:e6:38:2f:1e:de:0c:c9:42:ea:80:d5:4e:6a:e8:be:9f:
36:f9:35:11:6e:fd:cf:5b:8c:26:f4:de:34:b5:de:a1:5d:5b:
7a:5a:0f:4a:4f:e2:ad:5a:e3:79:d3:ba:dd:d9:30:90:1f:86:
15:a3:09:de:4a:9e:e1:3f:62:b3:70:d1:a0:fc:88:8c:b4:db:
da:8a:6a:c1:f2:e7:f7:98:f5:d9:07:9e:da:29:b2:89:91:da:
85:a7:9c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 5 07:11:44 2024 by rpki-client on console-ams.rpki-client.org