Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/OxVgJkcxshSSCQRhRKk5uBGX4mQ.roa
File: OxVgJkcxshSSCQRhRKk5uBGX4mQ.roa (raw, json)
Hash identifier: zwzpB7jmC/6J9oav1NHEZ+YHGZqmqicdviaESkoejuU=
Subject key identifier: 3B:15:60:26:47:31:B2:14:92:09:04:61:44:A9:39:B8:11:97:E2:64
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05BF
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/OxVgJkcxshSSCQRhRKk5uBGX4mQ.roa
Signing time: Sun 21 Jul 2024 15:55:04 +0000
ROA not before: Sun 21 Jul 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1471 (0x5bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 21 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3B1560264731B2149209046144A939B81197E264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5d:99:e4:2c:72:50:d3:3d:fe:6a:df:7e:9f:
c9:d8:0a:a1:20:cb:8d:58:94:7d:9c:80:13:04:a6:
8a:68:5a:81:75:02:df:0f:d8:0a:64:22:c3:d5:0f:
69:12:bb:37:ef:b6:ab:a8:62:1a:3e:ed:42:24:ff:
55:44:c9:be:55:4b:43:82:41:10:4d:17:0b:11:d6:
e9:76:a0:ab:ae:5d:ab:ca:9a:42:04:90:fc:37:2f:
92:e4:8d:11:d7:f2:61:af:8c:f6:d7:6b:27:74:96:
4a:f4:84:3d:20:2b:cc:f8:3d:e0:5d:d0:52:32:a9:
42:f2:0c:cf:a6:f3:bd:88:0a:1e:98:ec:96:9e:1d:
5b:98:77:43:c3:00:8f:cc:70:b5:ca:9f:c4:0e:3a:
98:18:4b:67:41:0a:42:3d:c6:02:07:de:84:61:1a:
2d:fc:75:72:94:27:0c:a9:d0:00:c9:45:b2:2a:94:
f2:97:a3:2e:59:38:13:6f:d9:b0:73:9f:26:8b:2d:
ee:05:15:7e:10:18:db:5b:08:49:0c:28:32:0c:49:
9b:d2:4a:93:d7:46:39:64:5a:46:5f:6b:3f:ba:39:
b5:fe:3a:13:36:8f:44:23:8b:c9:e5:b5:86:1d:76:
37:ac:51:7c:6e:d6:2a:18:6d:ea:d6:10:39:f9:a0:
95:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:15:60:26:47:31:B2:14:92:09:04:61:44:A9:39:B8:11:97:E2:64
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/OxVgJkcxshSSCQRhRKk5uBGX4mQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:84:10:a0:36:e2:91:59:d5:99:e9:46:cb:8f:f7:aa:60:58:
4c:9f:f2:21:83:8f:5a:c7:af:47:f1:c9:e3:20:e7:28:35:9d:
7e:8d:6b:f8:b9:44:5c:29:0f:72:50:4f:66:72:8d:7e:ee:7e:
57:60:c1:27:9d:98:79:53:87:fa:dc:70:f4:6d:05:b1:d8:4b:
70:7e:aa:fc:8f:8a:4f:8e:05:52:fc:a4:1e:2a:00:f3:9a:23:
ac:65:29:d9:12:cc:3f:da:97:af:63:5c:b3:a3:2b:a8:7b:01:
59:93:30:e6:01:d6:bb:73:fa:b2:da:3e:e3:5e:86:78:7d:80:
61:55:e4:ad:c5:44:93:2a:a3:da:5b:e2:01:9a:80:b6:54:f7:
36:ac:3e:eb:2e:51:38:e9:13:f0:75:a9:90:d6:2d:4e:ac:79:
6e:99:ee:07:48:61:51:7c:15:bd:cc:d9:85:fe:fd:fe:b2:02:
37:e0:6a:06:6b:ae:12:0f:c8:8f:c2:8c:18:71:1d:dd:36:3a:
45:4a:18:62:2b:62:01:63:c9:b4:aa:76:b4:d9:8c:39:6b:19:
db:63:06:9b:f0:f1:43:11:09:d5:ba:bc:e6:39:38:e2:94:ea:
72:b4:68:a5:08:fd:84:d8:f9:5a:98:24:35:d4:5e:ad:84:5a:
60:94:e8:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 22:28:01 2024 by rpki-client on console-ams.rpki-client.org