Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/GeSOUCjhK8BlPZlqvf-i58kAh5g.roa
File: GeSOUCjhK8BlPZlqvf-i58kAh5g.roa (raw, json)
Hash identifier: P/8c3VbkbCRuVLoejBAGi4jSAuWXAZtiKpLRbUmZXhY=
Subject key identifier: 19:E4:8E:50:28:E1:2B:C0:65:3D:99:6A:BD:FF:A2:E7:C9:00:87:98
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 097D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GeSOUCjhK8BlPZlqvf-i58kAh5g.roa
Signing time: Mon 04 Nov 2024 23:55:03 +0000
ROA not before: Mon 04 Nov 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2429 (0x97d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 4 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19E48E5028E12BC0653D996ABDFFA2E7C9008798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7b:99:4b:50:9a:60:20:27:52:f8:47:59:dc:
a6:ff:cb:f1:c2:0f:92:b5:77:48:10:0c:84:89:42:
8c:e6:9f:f8:cd:f3:c6:bc:78:3c:bd:e1:cf:78:c0:
e6:4c:dc:40:cd:33:83:bf:df:c0:b5:8b:09:42:26:
c8:ca:b7:2e:eb:05:3e:d8:43:ae:c4:9a:f4:8e:fb:
81:be:4d:e2:e7:cc:6c:55:91:51:38:43:da:28:7c:
db:b7:cb:ad:45:20:b0:71:32:cd:72:fa:4e:55:d9:
41:28:53:bc:17:8e:fa:19:7a:10:79:eb:2f:b1:f2:
83:c7:c0:f0:22:a3:54:32:84:8f:f5:24:dc:ea:90:
e2:f7:10:55:cd:34:a3:77:9a:21:12:80:27:d6:be:
63:1d:45:3c:58:32:f9:98:39:4b:13:57:8c:09:88:
27:5b:36:7e:6a:bd:28:98:b2:ba:14:45:89:7a:b0:
37:39:01:a8:cd:2d:4f:bd:b7:96:cc:23:f8:cb:4e:
b7:70:92:0e:ef:ec:d4:54:fb:ba:ff:7a:7e:94:6b:
eb:62:7c:47:b4:8d:c9:59:26:5b:a1:ff:9b:b9:3b:
2a:cb:8d:b5:c3:7f:fe:54:fd:19:ff:f0:08:5a:f8:
b4:da:79:79:6b:12:1d:7e:ef:e8:ea:13:38:42:36:
07:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E4:8E:50:28:E1:2B:C0:65:3D:99:6A:BD:FF:A2:E7:C9:00:87:98
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GeSOUCjhK8BlPZlqvf-i58kAh5g.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:ea:0e:24:b9:83:1f:b3:ae:46:6c:1f:d3:52:d0:54:d6:0a:
e5:22:54:0e:e9:20:3e:87:9d:3f:47:80:bf:05:2d:1e:04:dd:
a8:a9:96:ba:b8:9c:03:e7:1e:d3:8b:0f:cf:19:fa:1c:ce:5a:
50:5a:9c:db:6a:d5:86:23:df:ea:9d:0a:73:95:5d:bc:b3:31:
84:28:d5:de:76:a3:65:a5:ff:8c:02:ed:53:3d:b3:d5:43:77:
87:f9:d4:e7:0e:d2:48:d1:80:e2:10:01:56:1e:d1:01:1a:6b:
c7:03:6e:16:80:a4:1d:b1:9b:b8:18:e5:50:a1:f4:fc:37:38:
66:88:68:1f:98:dd:72:4a:c3:5c:de:76:ee:39:e8:93:dc:c4:
3d:26:c0:51:0b:29:1b:26:72:59:e4:33:76:9a:c3:79:d8:77:
6a:5d:0b:9f:41:0b:6f:ba:8a:2b:b1:1d:a7:5c:12:b5:4c:84:
dc:02:fc:dc:55:ca:d8:21:8f:bd:33:a9:bf:5b:57:93:e8:b2:
b7:24:01:d6:c1:92:6f:bf:df:f4:31:30:f3:87:19:4d:3c:08:
13:37:7c:f2:25:f8:74:fb:8b:eb:65:c9:f1:23:85:c7:0c:8c:
6e:bd:62:4b:c0:83:86:76:61:e8:4d:dd:80:2e:14:b9:d5:39:
3c:59:2c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 07:49:53 2024 by rpki-client on console-ams.rpki-client.org