Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/RArYz5EF5UPXKoNJC2pPaTqN9b0.roa
File: RArYz5EF5UPXKoNJC2pPaTqN9b0.roa (raw, json)
Hash identifier: LAAeNthwlVrqVEkePY2KD65OANprvOqj1rXo5UinFHI=
Subject key identifier: 44:0A:D8:CF:91:05:E5:43:D7:2A:83:49:0B:6A:4F:69:3A:8D:F5:BD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 73
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RArYz5EF5UPXKoNJC2pPaTqN9b0.roa
Signing time: Wed 21 Feb 2024 23:55:04 +0000
ROA not before: Wed 21 Feb 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115 (0x73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 21 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=440AD8CF9105E543D72A83490B6A4F693A8DF5BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5e:34:88:23:99:06:e8:b3:9a:71:59:24:fd:
29:a4:72:09:97:7f:02:cd:f2:1f:51:b7:6c:6e:16:
29:9c:4c:7d:33:f3:2d:b7:d3:5c:a4:a0:83:b7:49:
53:cf:e9:11:20:85:0b:7d:d9:e5:05:67:f8:4e:84:
69:06:11:51:38:fd:86:b9:3f:ad:be:d5:d0:d1:b4:
29:68:60:8d:e1:53:e4:f4:d3:6b:be:36:5a:ff:ce:
43:19:1d:ce:df:96:06:3b:6d:d8:62:0a:ba:07:22:
c1:51:8e:8c:c5:4b:b8:ff:b5:6f:bb:d4:f0:74:1f:
fc:b8:fc:f4:9c:68:2d:c4:43:a1:9e:8c:f9:db:56:
b2:23:dc:1a:5b:95:3d:6a:a5:f5:4e:b6:1b:7b:6a:
01:b7:36:44:aa:89:59:6b:66:9f:17:f9:7d:82:5c:
8c:40:0f:41:41:e2:69:76:04:ed:91:43:a8:62:0d:
3e:d7:6f:8c:3d:a7:d5:75:f9:33:b7:64:97:6f:05:
12:60:27:28:37:51:d7:8c:fb:ac:d8:51:52:39:9d:
5a:5c:69:00:25:bc:b9:cd:1c:d6:51:74:df:7a:bd:
06:8b:1c:10:b7:9f:1f:33:01:da:ac:97:87:4a:be:
89:6a:39:65:a7:84:68:a9:77:b2:97:28:69:74:2f:
38:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0A:D8:CF:91:05:E5:43:D7:2A:83:49:0B:6A:4F:69:3A:8D:F5:BD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RArYz5EF5UPXKoNJC2pPaTqN9b0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:4f:23:c7:ef:c9:2a:d8:95:03:96:c1:3d:8c:5a:74:3b:39:
2c:46:35:ee:18:a2:1e:a6:e9:c8:ee:2d:78:43:df:f2:92:f8:
3e:e6:8d:82:0d:c9:f0:94:43:88:87:2a:e2:fe:1e:f1:c6:be:
0c:16:47:63:c1:96:90:cf:32:45:fe:b4:4e:cd:94:99:32:14:
0f:da:f8:b2:a3:f5:ff:91:78:d5:62:d9:64:e3:89:55:06:51:
92:f0:38:7b:7e:35:ff:ed:1a:dc:38:a5:ee:70:31:6d:ae:57:
ab:34:a0:72:70:23:8c:aa:92:85:2d:06:d9:73:f9:c2:62:b6:
4c:c6:f0:54:bb:5e:e3:e6:42:bd:06:76:de:25:33:8f:25:37:
54:d0:6d:58:64:70:4b:a5:33:c5:e5:cc:a5:09:74:c3:03:8e:
fd:4c:a3:c9:44:56:00:71:60:f5:20:dc:1e:90:cd:09:ba:64:
d2:fd:16:96:29:81:78:c6:e9:fb:e1:ff:e9:07:ac:9b:e8:0a:
55:0a:7a:e8:bf:3c:7c:eb:22:f6:2b:2c:89:ba:19:f8:f1:cb:
d7:e4:6f:9f:d6:68:03:a0:3b:72:89:8d:6d:9e:8f:60:95:74:
14:b9:03:a2:c2:04:bb:61:e0:c1:2d:2e:f5:9b:6d:6e:90:e1:
62:f5:8b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org