Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Kd2FwnRyVv0-SIPDtGV5Ezyj0yc.roa
File: Kd2FwnRyVv0-SIPDtGV5Ezyj0yc.roa (raw, json)
Hash identifier: bMuvLuQ6NlBWZP5s132ehQqvsMyGkoRm0HuAnogWY50=
Subject key identifier: 29:DD:85:C2:74:72:56:FD:3E:48:83:C3:B4:65:79:13:3C:A3:D3:27
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 039D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Kd2FwnRyVv0-SIPDtGV5Ezyj0yc.roa
Signing time: Tue 21 May 2024 23:55:02 +0000
ROA not before: Tue 21 May 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 925 (0x39d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 21 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29DD85C2747256FD3E4883C3B46579133CA3D327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:54:d5:ba:56:d1:93:c2:a7:64:67:2c:0b:29:
91:08:9c:4a:a8:91:25:7f:75:3b:c3:cd:b9:41:28:
5e:4d:2b:25:13:01:1d:20:56:ef:ba:11:e9:d4:3f:
47:c5:4f:99:21:17:78:9b:1c:85:e3:a0:be:40:6d:
b6:9c:f3:ed:a6:7c:02:5f:ac:48:8b:78:83:fb:84:
05:cb:18:8f:5a:c2:77:46:2e:ae:f7:ff:b1:39:c1:
91:ad:a3:e4:27:13:b0:0f:7a:dc:c4:8e:b9:3b:9a:
b9:d5:4e:8b:cb:92:c6:27:84:ee:b1:a8:2e:bb:10:
38:cc:bc:b4:ca:8a:b3:82:56:92:29:ba:c4:66:f3:
4b:ef:d2:db:37:c1:ab:a8:64:7f:01:b8:d6:58:52:
ce:d1:77:1b:02:5c:81:d5:cd:e1:32:4e:c1:c0:e8:
20:6c:44:bf:93:12:4e:16:0d:6c:66:10:1b:bb:fa:
62:ef:a6:57:37:ec:41:6b:48:ea:59:79:9f:e8:4e:
da:85:d9:f8:07:82:a7:44:03:58:6c:f8:13:4e:21:
61:fb:bf:56:df:ac:a4:e9:69:71:a7:49:47:e1:80:
9d:0c:89:66:b2:4a:5f:6c:2b:20:a7:0a:ef:92:20:
99:5b:00:5a:f4:15:32:47:02:2d:59:61:ab:6d:39:
6f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DD:85:C2:74:72:56:FD:3E:48:83:C3:B4:65:79:13:3C:A3:D3:27
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Kd2FwnRyVv0-SIPDtGV5Ezyj0yc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:6c:7f:76:07:f1:16:53:c7:d1:d9:d2:0d:61:53:98:be:96:
5d:c9:ef:0c:e5:38:a7:5d:c2:a4:ba:60:7f:4b:a1:70:d0:2f:
1b:54:63:b8:e4:83:a2:00:9c:a3:1d:e3:2e:d3:12:94:3f:f9:
08:c8:2e:c3:f0:65:6c:02:b7:ae:21:e5:d3:1f:3a:53:b4:46:
34:32:2d:18:3a:fd:66:ff:ec:b0:e1:19:da:34:2a:5f:6b:7f:
4f:16:11:4d:b0:c4:e2:ee:6b:86:53:da:91:60:5e:6e:78:db:
ce:54:f8:05:a3:2a:bd:3b:85:35:90:79:4e:26:4c:29:3b:d3:
1e:ba:85:89:6f:83:54:66:b8:64:81:26:09:f3:c2:a1:4b:f6:
fc:f2:a4:a1:c0:3b:2f:96:71:5a:16:06:49:de:8b:55:ec:94:
40:8a:61:51:28:1b:d4:3b:e5:f1:e4:75:fb:9d:d5:0b:d1:05:
08:fd:c7:f0:a3:47:4e:b2:1d:9e:63:fe:be:e1:87:2a:14:7a:
30:ce:f6:2d:2c:a5:7b:3b:c7:88:36:df:c0:68:ae:da:96:32:
c1:fc:10:af:b6:f5:73:d1:4e:6a:b1:31:72:6c:c7:50:20:d8:
6f:87:d4:aa:f2:df:23:97:ce:15:c6:cd:44:7a:3b:3c:3b:42:
b4:be:fd:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 06:29:14 2024 by rpki-client on console-ams.rpki-client.org