Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/NLR-0qj_SDZuR1Vl1bY-Fxl2dqg.roa
File: NLR-0qj_SDZuR1Vl1bY-Fxl2dqg.roa (raw, json)
Hash identifier: TfTQLTmDoUeHamAdFFvrNPEhT2iebMfKl9otJzpOoSA=
Subject key identifier: 34:B4:7E:D2:A8:FF:48:36:6E:47:55:65:D5:B6:3E:17:19:76:76:A8
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02DD
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/NLR-0qj_SDZuR1Vl1bY-Fxl2dqg.roa
Signing time: Tue 30 Apr 2024 15:55:03 +0000
ROA not before: Tue 30 Apr 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 733 (0x2dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 30 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34B47ED2A8FF48366E475565D5B63E17197676A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e8:ba:a4:7e:0e:01:a8:ee:d0:7e:dc:15:c4:
f5:25:a9:f6:63:90:ad:d0:a9:a0:d1:c3:e9:1c:e2:
44:93:7d:2c:07:01:7d:7a:f7:71:99:77:3a:f0:5e:
23:09:c6:06:d4:30:ad:79:fd:af:79:b4:4a:0a:bb:
bd:55:f4:78:8c:46:e7:3f:dc:54:27:6e:37:75:b7:
9b:be:d7:44:34:c0:9b:46:d1:95:1e:52:f6:77:59:
95:07:26:ed:ee:c8:18:70:62:37:3c:1c:34:83:0d:
dd:1b:57:c0:27:ac:84:96:d0:c6:95:79:e7:a9:cf:
0e:70:d9:c7:1f:20:77:ce:69:fa:6e:ef:1b:f8:6d:
ee:03:db:93:8d:ad:7d:80:13:f6:d5:d1:54:d0:63:
b7:05:18:2c:ca:d8:11:30:ca:7c:ce:49:90:26:1b:
a1:0c:b7:8f:f5:43:01:ea:28:2a:29:22:82:4b:1a:
34:e3:b7:53:2c:80:f5:0e:b7:ae:04:de:88:37:70:
5f:6d:5d:14:77:c2:22:a5:a6:a5:bb:ca:a2:cb:6f:
77:70:57:17:ef:40:f6:61:cd:52:c8:06:9f:ae:38:
3b:cf:9a:86:ec:5f:db:40:f4:0d:cb:6e:dc:d4:a6:
43:ff:3f:0a:c7:d0:d7:ed:24:3c:bd:4d:a1:2d:92:
9b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B4:7E:D2:A8:FF:48:36:6E:47:55:65:D5:B6:3E:17:19:76:76:A8
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/NLR-0qj_SDZuR1Vl1bY-Fxl2dqg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:2b:80:cc:a3:4c:49:33:f9:e9:31:35:43:5a:3e:7c:ed:c6:
61:f5:9b:f3:85:39:9e:74:d8:b3:91:23:6e:58:9f:a4:1f:17:
26:d3:72:5d:04:9b:36:dc:5e:a9:37:8b:9a:06:f9:fe:f7:e8:
ec:f9:e2:d2:d3:6d:29:08:05:61:32:30:c2:d8:a7:32:ad:55:
e9:b9:41:5c:b6:b9:77:5e:d7:14:22:a6:45:4b:ca:91:f0:6c:
20:d9:9f:14:1b:99:87:5c:81:a1:30:e4:1e:59:4c:89:e8:e8:
79:a5:6c:ab:86:36:d2:41:ec:b7:59:c4:80:9d:e3:a1:13:e6:
fe:c0:0d:fb:28:21:20:d7:f6:ab:53:d6:4b:61:fe:41:3b:2d:
d4:29:43:d4:35:de:20:ad:8e:44:2d:46:ba:9a:b1:ee:fa:f3:
1e:1a:a6:2f:b3:15:fe:19:4f:de:8d:e4:94:e4:11:7f:a4:e8:
eb:d7:92:1b:1a:9b:21:3d:b5:65:1b:5c:0d:4a:b6:dd:c4:29:
4a:51:24:c3:49:fe:8e:c3:d7:45:97:84:38:43:8e:02:e6:f3:
e6:e1:5c:2d:83:3b:f3:23:21:ba:bc:9c:a2:28:00:44:47:fa:
cb:eb:c7:3c:8e:7a:9e:b7:33:0e:97:8e:58:f5:28:2a:c6:3a:
67:49:ef:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org