Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Me8TvqtcDE2Xl6ZtFRuDwtUyseQ.roa
File: Me8TvqtcDE2Xl6ZtFRuDwtUyseQ.roa (raw, json)
Hash identifier: dJT4ZVcLS7bBE1Wfvo596ZVWiNWDBAiNRlfbPB2N9S4=
Subject key identifier: 31:EF:13:BE:AB:5C:0C:4D:97:97:A6:6D:15:1B:83:C2:D5:32:B1:E4
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0274
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Me8TvqtcDE2Xl6ZtFRuDwtUyseQ.roa
Signing time: Thu 18 Apr 2024 23:55:04 +0000
ROA not before: Thu 18 Apr 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 628 (0x274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 18 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31EF13BEAB5C0C4D9797A66D151B83C2D532B1E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0c:1f:55:c3:f6:24:ca:75:b9:1f:0b:6f:b6:
cf:be:ab:4b:f5:40:b0:02:f7:1d:02:3a:7f:77:4a:
c7:1a:e1:25:e0:d9:2a:8b:54:a0:a0:76:66:5e:98:
8f:53:09:2a:57:d6:e0:44:de:38:b4:e6:a1:49:3e:
a2:f3:6e:e1:f0:e2:bf:73:24:d0:e5:f7:08:c9:f2:
ff:0c:bb:aa:4c:b4:b6:17:c8:da:62:c0:b2:e5:ff:
dc:f5:b7:c3:78:d6:4a:04:e6:c6:83:29:a4:47:36:
27:29:93:da:14:24:2c:31:b8:6d:d6:53:ef:66:8b:
f5:3b:12:94:0e:4d:4d:85:23:a1:81:ff:7e:85:c4:
f7:79:43:af:82:28:bb:68:9c:36:63:45:3b:1a:3f:
b1:a3:44:a6:d1:de:a3:e9:6e:91:04:80:7d:24:36:
1c:46:b5:29:32:c0:51:21:92:9a:a1:4a:0d:d5:b1:
6f:3c:71:dc:67:0b:1d:71:6b:2a:18:5f:f5:5e:07:
93:ad:63:c1:23:77:25:7d:0c:21:01:dc:70:a3:39:
e1:a3:54:e6:db:4c:79:ea:d2:e7:42:50:70:76:91:
6d:48:17:e6:ab:76:31:7b:db:b6:1a:76:11:3b:af:
22:b2:22:02:d1:b1:ac:a9:93:b9:af:cb:b1:f2:31:
4f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EF:13:BE:AB:5C:0C:4D:97:97:A6:6D:15:1B:83:C2:D5:32:B1:E4
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Me8TvqtcDE2Xl6ZtFRuDwtUyseQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:0e:82:2d:a5:5b:45:2f:67:6d:5f:b8:d5:46:f6:91:b1:e2:
47:64:00:83:72:53:73:5f:f1:6f:7e:39:84:a6:00:c1:17:9b:
87:ec:06:5a:0a:39:ef:a3:90:49:2e:08:4c:33:cf:dd:2f:b2:
f0:0e:e7:10:f9:90:4e:9f:05:e0:d3:31:61:25:c4:7b:d6:39:
bc:41:48:ba:27:bb:79:4d:b7:44:05:93:75:7b:a1:47:81:f2:
7e:c3:06:f3:cd:73:39:fa:96:c6:a3:d7:8d:bb:dd:ef:fd:74:
bc:25:e9:da:c5:52:91:c2:73:ef:c6:b5:ef:4a:6d:19:b4:27:
ba:37:45:9f:84:5f:c2:8b:2d:1d:02:5e:75:cc:ab:7a:48:73:
71:b3:81:fd:b6:7e:95:fd:70:af:31:6a:de:c1:22:82:ca:6c:
a4:0b:50:e3:83:9d:7b:12:78:63:f1:c8:20:96:57:ca:24:41:
63:8a:79:cd:52:89:49:47:3a:ab:fe:69:ca:7d:0a:89:e7:c0:
81:cd:a0:2c:23:d5:33:23:48:80:63:2c:35:00:ec:71:79:fb:
4c:e4:c5:6a:11:6a:51:23:70:08:07:e2:cd:ca:66:b0:49:af:
fc:af:cc:8e:62:c6:3f:ae:5e:89:bf:f6:f9:69:33:9b:e5:07:
9e:db:81:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org