Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/R5gS8HG0RESrKC0EsgC5votTCkQ.roa
File: R5gS8HG0RESrKC0EsgC5votTCkQ.roa (raw, json)
Hash identifier: seBWoCzyoEFwZKYdmxIdUhBzRxsPSqDvufeEjutzHnA=
Subject key identifier: 47:98:12:F0:71:B4:44:44:AB:28:2D:04:B2:00:B9:BE:8B:53:0A:44
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 03B8
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/R5gS8HG0RESrKC0EsgC5votTCkQ.roa
Signing time: Fri 24 May 2024 23:55:04 +0000
ROA not before: Fri 24 May 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 May 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952 (0x3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 24 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=479812F071B44444AB282D04B200B9BE8B530A44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7d:c6:0c:64:3c:74:e8:49:a5:9a:ea:53:a4:
7e:0a:6e:d1:71:38:41:ba:25:47:40:ad:6a:48:f6:
1e:e2:1c:13:59:83:8e:c2:14:75:f6:77:9b:e4:b8:
69:1a:8d:62:ea:f4:93:f7:07:bb:23:ea:3f:8a:6e:
9c:0c:67:4a:b5:cb:e2:ff:02:79:86:78:f2:45:74:
11:cb:61:29:c1:9e:26:a8:b7:b9:0e:9a:14:a5:7f:
59:11:ff:4c:94:76:70:3c:ee:eb:57:80:d5:71:72:
61:1d:cb:a3:87:38:cd:af:1d:3c:66:80:b5:e0:2e:
4b:df:b2:42:19:bd:8b:e6:63:89:25:84:b2:63:43:
22:84:44:3f:fc:77:89:7d:0c:c5:08:e7:07:d8:48:
f3:ab:41:6a:e5:1d:f3:1b:71:62:3f:0f:30:7d:28:
28:c9:12:7e:cd:ef:1d:7a:fb:4e:69:39:bd:aa:18:
66:fa:1d:9b:42:0b:a0:5e:40:be:14:a2:d8:25:26:
5d:4c:59:e7:e3:e9:1a:72:b3:f4:91:62:cb:a4:c9:
b5:0e:63:7f:78:97:eb:30:c3:a1:14:48:e6:c7:d8:
e5:86:24:41:f7:22:fd:55:01:5b:34:9d:76:b0:25:
a8:f2:49:27:01:34:63:68:2c:93:36:3b:fe:bf:62:
f8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:98:12:F0:71:B4:44:44:AB:28:2D:04:B2:00:B9:BE:8B:53:0A:44
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/R5gS8HG0RESrKC0EsgC5votTCkQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:c9:67:c5:75:be:a8:e4:47:87:fa:96:6c:79:41:2f:cb:ed:
cd:6b:70:f0:2b:16:cd:f6:3f:55:4a:67:44:dc:07:d9:40:7d:
74:e0:0c:dd:fa:86:24:9e:65:4b:f3:ef:3f:82:c6:56:84:0b:
9f:e8:c3:49:22:1c:0a:7e:b6:3c:22:39:a7:f5:79:cd:73:e4:
1e:cd:ce:b4:38:32:4c:5e:0f:fc:a6:51:2f:97:70:52:b9:5a:
95:56:cc:6b:1c:37:e0:9f:e4:77:db:b3:e8:78:c3:16:ef:62:
f0:1c:77:a1:fe:1f:a4:3e:1e:36:30:24:de:98:31:81:29:8e:
2b:70:75:80:d9:0c:01:49:d5:96:72:14:87:06:59:7c:5e:8f:
fa:b0:2a:42:ed:87:e7:d3:12:21:8a:b5:21:4a:80:45:d6:96:
c8:6f:ab:b7:f7:1b:fa:b5:b7:47:e9:16:7f:b3:3d:53:2d:3c:
20:bc:5c:49:8e:a5:36:ac:be:85:2f:62:10:d8:2c:b9:cc:83:
bd:49:eb:81:ba:e5:63:b6:64:cd:3d:3d:92:21:ae:8e:d4:58:
bb:d5:13:6f:a9:b4:53:a1:cf:62:e2:d1:3c:cf:43:71:eb:95:
65:7f:66:5e:24:1f:7f:c7:19:4c:32:af:0e:ac:87:14:ca:d0:
3e:2b:ff:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 06:32:55 2024 by rpki-client on console-ams.rpki-client.org