Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/PTFSm9m_WHmz196-rxKCxBeqQoY.roa
File: PTFSm9m_WHmz196-rxKCxBeqQoY.roa (raw, json)
Hash identifier: CLDZ4DML1Sri7Ltx/kPanzvohPbSVw4Fm+MX2yr6sfk=
Subject key identifier: 3D:31:52:9B:D9:BF:58:79:B3:D7:DE:BE:AF:12:82:C4:17:AA:42:86
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 052F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/PTFSm9m_WHmz196-rxKCxBeqQoY.roa
Signing time: Fri 05 Jul 2024 15:55:03 +0000
ROA not before: Fri 05 Jul 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jul 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1327 (0x52f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 5 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3D31529BD9BF5879B3D7DEBEAF1282C417AA4286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b1:cd:00:f6:26:dc:a1:4d:86:31:7c:e2:e4:
77:0e:ee:6c:ec:0b:72:78:f8:4e:82:bb:35:c4:e4:
40:9f:29:ea:7e:ff:fe:85:35:8a:ed:4c:f4:c9:57:
16:9d:4e:4c:52:c2:7a:ea:00:e6:f2:f2:55:42:77:
f6:fc:65:84:be:7a:03:10:24:90:90:fa:f6:ac:f6:
41:3d:1f:72:bf:ee:99:b3:1f:37:a0:5e:c2:fd:d3:
d6:98:cb:7e:6c:63:5f:ac:2c:5f:c2:16:6c:2f:50:
7c:c2:5c:16:78:53:c9:a4:12:3d:44:4a:fe:10:6c:
b4:e2:24:f1:bb:c0:07:34:70:ff:34:e8:98:b4:11:
e8:37:4f:50:59:2a:ea:52:04:c8:a0:11:57:e8:b8:
27:2f:c0:cb:07:bf:ae:07:e8:76:b8:9d:53:7d:4a:
42:56:af:eb:38:81:9a:12:97:f7:8b:1b:af:8c:8a:
14:14:f0:70:c8:46:cf:11:c8:ad:98:79:91:63:5a:
1f:ea:42:e6:b5:28:4e:be:38:04:d3:3e:31:91:11:
ed:89:6f:bb:59:46:39:43:95:c5:36:2f:29:c2:e0:
40:59:04:10:39:e3:de:87:f5:0f:33:8d:7f:38:22:
28:08:e1:56:a2:5a:2e:3b:e4:91:62:0e:b4:ea:77:
67:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:31:52:9B:D9:BF:58:79:B3:D7:DE:BE:AF:12:82:C4:17:AA:42:86
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/PTFSm9m_WHmz196-rxKCxBeqQoY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
36:a1:f2:9e:1e:2b:a1:38:47:d4:fd:21:85:28:f9:fd:86:5a:
c4:d6:65:65:c8:e6:34:ff:fa:73:07:1a:2c:e6:f0:f9:c4:e5:
c2:24:49:e9:5c:1a:63:a3:94:27:9f:44:06:dc:0e:36:2f:cd:
ad:85:98:90:ff:61:c3:f1:d0:4a:ec:99:8d:64:19:3d:c6:9b:
e1:29:ea:e6:f7:16:80:d5:6d:f7:28:8a:cc:5a:94:d1:f3:16:
46:a3:3e:63:6e:c2:3a:3d:62:90:90:3d:d2:41:8f:e8:a9:b2:
03:db:bc:d9:0c:c0:fc:e3:68:db:77:22:e0:6e:8c:6c:b6:8b:
5e:e8:94:96:21:4f:c7:41:5a:54:26:98:4a:7d:98:0d:8f:1c:
b0:65:27:e5:b3:6f:e5:5a:17:9f:f1:03:38:26:14:2b:d2:83:
14:c3:f7:93:6a:8f:6c:35:d8:4d:df:2f:d6:4a:43:41:ca:3c:
7a:60:a6:26:ee:de:83:94:26:d0:6a:2f:3a:45:c7:c2:aa:3e:
43:59:26:2e:6f:c9:e8:1d:fa:c3:c4:f8:2b:80:e8:61:98:64:
0f:e7:79:07:04:9e:14:3d:33:bd:1a:3b:d5:97:c4:8b:bb:e6:
b9:f2:7e:e8:34:ea:a5:ec:60:c9:3c:18:d1:45:1b:49:d4:bb:
e0:22:18:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 21:11:58 2024 by rpki-client on console-ams.rpki-client.org