Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/FpBHKD2xeaQEx2-U8Sl9Jm6toBI.roa
File: FpBHKD2xeaQEx2-U8Sl9Jm6toBI.roa (raw, json)
Hash identifier: aQoM/H7HIoFrOcceWPIBtWPL5IQdPSyhgBaM8lanh64=
Subject key identifier: 16:90:47:28:3D:B1:79:A4:04:C7:6F:94:F1:29:7D:26:6E:AD:A0:12
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 026E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FpBHKD2xeaQEx2-U8Sl9Jm6toBI.roa
Signing time: Thu 18 Apr 2024 07:55:03 +0000
ROA not before: Thu 18 Apr 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 11:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 622 (0x26e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 18 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=169047283DB179A404C76F94F1297D266EADA012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:de:25:6f:47:ea:8a:2d:32:c5:2b:51:b0:0f:
5f:44:4e:9f:e8:af:4a:5c:cf:df:06:26:34:dc:f7:
d0:88:7b:80:f9:88:cf:9b:60:53:fc:2e:b1:80:1b:
54:fb:e9:09:0f:d2:57:4c:51:fc:ff:fe:44:d6:63:
cf:57:51:8b:66:af:ed:5e:95:99:61:c0:27:7c:88:
37:63:78:38:3f:86:f9:11:18:0a:16:36:29:0b:5d:
e0:03:ab:2b:8d:bc:46:ef:9d:3e:a3:99:05:4e:53:
53:79:86:03:27:92:57:b9:6c:92:2c:90:e2:03:e6:
e5:18:10:9b:68:cd:e8:7d:f9:8e:c8:51:89:98:c6:
b8:05:75:f9:86:d8:bd:99:44:d6:ac:8a:d5:cb:0c:
a9:cb:a6:48:8d:c0:35:4a:87:30:bc:1e:8a:60:eb:
a9:5f:df:c3:85:57:ed:e7:0b:ba:f6:77:cd:bf:1c:
41:97:bf:85:9f:f1:7a:7a:a4:44:8b:c2:8d:a8:68:
0c:0b:5b:8b:e4:2d:93:be:57:ac:26:97:06:84:c5:
33:dc:30:a7:41:75:c3:b1:ba:4c:b1:77:f2:7d:81:
06:35:c1:4b:5c:22:d9:b6:16:ca:1d:e8:7c:b7:c5:
f5:9f:b5:ae:e1:c9:24:d7:9b:0e:0d:c1:95:73:37:
c6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:90:47:28:3D:B1:79:A4:04:C7:6F:94:F1:29:7D:26:6E:AD:A0:12
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FpBHKD2xeaQEx2-U8Sl9Jm6toBI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:c0:78:7f:45:5b:79:48:9f:fa:17:1d:5d:8d:cc:8b:07:84:
01:27:82:aa:6c:b5:0f:52:6c:a4:96:cd:3f:b4:1a:4f:8f:9e:
15:40:6b:14:ee:b2:6b:fb:a4:dc:f3:12:70:1a:8c:79:af:d3:
f8:d2:e6:a5:2c:51:55:26:b9:08:f4:ef:90:6d:78:c8:6a:c9:
a0:ed:33:2d:2e:10:41:1e:d6:71:09:7b:03:09:d1:2b:03:b5:
46:91:0a:6b:0a:41:0a:b8:fa:3f:1f:36:53:b9:78:84:d9:39:
6d:75:02:bb:a0:68:43:2e:e0:bc:06:81:9a:92:d5:46:fc:3f:
b0:25:38:7f:0b:ee:54:40:4b:5a:c3:80:c1:f9:6d:53:9f:a2:
1b:d0:f7:40:7b:0c:0e:6e:da:94:dc:0c:b7:30:81:a6:a2:0c:
c7:f5:8a:b9:1f:bf:9d:c5:07:4c:60:de:1e:f5:25:e3:2c:7b:
a2:06:c4:ea:43:c2:3b:d1:6d:02:d2:d5:51:da:20:dd:b6:fa:
22:85:c9:f7:30:13:b2:84:95:87:8f:7b:51:0c:09:71:a8:2d:
7a:f7:03:af:86:f5:a4:f3:da:ca:af:01:77:91:12:02:76:dc:
d3:80:16:fa:84:0c:17:92:1f:45:1c:e7:aa:a3:d4:2f:d0:7e:
60:e7:b4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:08:26 2024 by rpki-client on console-ams.rpki-client.org