Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/H8aP6xOVUN3ycsYIpZNajN2xzOo.roa
File: H8aP6xOVUN3ycsYIpZNajN2xzOo.roa (raw, json)
Hash identifier: 8wkVGDJQtXZUhbW176bxz3j3H91kO5qoYjrgBlqQoeI=
Subject key identifier: 1F:C6:8F:EB:13:95:50:DD:F2:72:C6:08:A5:93:5A:8C:DD:B1:CC:EA
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 012A
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/H8aP6xOVUN3ycsYIpZNajN2xzOo.roa
Signing time: Wed 13 Mar 2024 07:55:03 +0000
ROA not before: Wed 13 Mar 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298 (0x12a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 13 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1FC68FEB139550DDF272C608A5935A8CDDB1CCEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:78:16:fd:07:ba:4c:fc:ac:9e:29:4d:ce:d1:
4e:a4:3c:58:dd:40:43:54:fd:02:a6:14:c5:9e:a6:
7d:29:63:d2:8a:49:0c:93:07:99:77:31:16:b1:bc:
e4:12:a2:36:82:f5:7a:de:ae:0a:11:f0:31:a7:d6:
c4:fc:a7:53:44:a6:ab:d4:4c:5e:f5:4a:7f:eb:36:
40:9e:42:7c:b2:7c:12:ce:25:50:f2:ff:c1:72:e3:
e5:80:7c:55:7d:44:16:3e:30:ab:3b:60:7b:02:6d:
4e:c9:ed:3e:ea:8d:e4:bf:c6:ca:28:f7:01:36:18:
42:9c:a0:4c:fa:e8:57:52:4f:ba:1f:4f:8b:af:4f:
36:81:18:8b:b7:37:c6:95:04:00:1d:e1:ae:14:36:
11:64:5f:54:77:c5:c0:e4:36:f6:08:6f:eb:b4:ec:
b0:30:52:41:8c:83:ce:33:bd:12:d0:c1:76:63:ff:
20:07:8e:e8:76:91:e8:05:e6:30:5e:2f:7e:cd:59:
76:e0:3e:7a:50:7d:3e:1c:73:50:d3:55:7a:cc:ff:
98:c6:32:d9:a5:b5:b1:5d:8e:6f:f5:a9:d1:43:1d:
bf:5b:79:d7:99:c5:b4:13:cd:60:49:0f:b6:b2:d2:
91:a6:85:7d:4a:de:f3:98:e1:70:df:dc:4c:ea:f0:
ea:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C6:8F:EB:13:95:50:DD:F2:72:C6:08:A5:93:5A:8C:DD:B1:CC:EA
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/H8aP6xOVUN3ycsYIpZNajN2xzOo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
75:4e:82:53:ff:89:c9:d9:b5:ad:7b:0a:f1:6a:31:69:c7:cc:
6f:5b:22:5a:56:1c:09:db:41:86:fa:1d:07:a9:f6:6a:cb:8f:
e5:c2:08:e2:df:51:84:a4:70:d6:6a:58:98:e2:0c:be:25:96:
39:dc:b5:2d:14:ea:2d:f4:43:81:29:93:b0:d0:d5:9e:76:cd:
89:01:47:a5:43:47:23:ed:59:8b:b3:5a:2e:99:86:c4:21:f8:
fe:49:45:6c:2e:a9:47:3a:7e:16:be:5b:da:1f:bd:6f:07:10:
32:51:fa:17:7d:2d:53:48:26:96:79:f2:c0:14:1c:84:fa:24:
ea:b8:d6:1f:4e:cb:b9:e2:93:e9:56:1f:89:e1:05:d0:30:61:
41:e3:f6:12:ed:d1:1f:16:54:c6:42:00:73:c0:b3:bf:fe:24:
1d:c8:13:7d:24:9c:bf:a8:e8:d0:91:05:bd:15:dc:65:9b:90:
71:ca:11:f9:47:18:b8:9d:3a:c1:79:fb:ae:3d:e0:52:69:f3:
73:ee:ae:8b:ef:d1:be:c6:83:7c:32:33:93:c7:20:16:b5:4b:
7e:49:00:a8:98:b1:44:68:ed:ec:71:af:44:ed:c9:e9:9f:9d:
ed:7f:b4:28:18:db:6c:52:b1:27:0a:47:be:2e:b9:09:4a:43:
f2:9c:65:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 17:00:24 2024 by rpki-client on console-ams.rpki-client.org