Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/RsW94dpF76vq5hGBL0XJurDbVUE.roa
File: RsW94dpF76vq5hGBL0XJurDbVUE.roa (raw, json)
Hash identifier: udag/XO9ssh06RC5uHZjjLdqHlkxGJqEOZaDq1CoVis=
Subject key identifier: 46:C5:BD:E1:DA:45:EF:AB:EA:E6:11:81:2F:45:C9:BA:B0:DB:55:41
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: D9
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RsW94dpF76vq5hGBL0XJurDbVUE.roa
Signing time: Mon 04 Mar 2024 07:55:03 +0000
ROA not before: Mon 04 Mar 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217 (0xd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 4 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46C5BDE1DA45EFABEAE611812F45C9BAB0DB5541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8e:80:a6:ad:bf:97:0f:4a:7b:e8:a3:37:e8:
82:b7:4f:3d:28:cc:23:de:14:18:34:d5:b4:5c:f0:
f6:db:10:03:54:05:98:79:82:4c:48:36:c7:f9:16:
3e:8c:96:a6:2b:aa:e6:e7:1d:bc:86:43:95:d1:ab:
5c:4c:a0:f8:f2:7d:e1:ac:a8:f4:32:b6:b7:00:c5:
bc:69:84:60:95:0f:bd:2b:4d:5b:a1:8c:d3:2a:46:
94:99:c7:ac:ba:a3:a0:9a:0a:74:55:24:94:26:f9:
b0:31:dd:b8:7a:6d:5c:ef:bc:4a:32:f6:93:1e:59:
cc:40:c3:cb:61:fc:f8:ad:7c:9d:19:fc:ea:f3:94:
bb:4b:80:37:83:66:a5:2f:dd:c1:25:79:8a:7a:02:
11:9c:c7:e7:8b:5a:cf:3b:b1:f6:fa:a5:e2:30:cf:
7c:d2:f8:1c:c7:dc:c8:e0:8a:1e:af:2a:54:83:d5:
68:8d:e4:1c:a0:4b:6b:da:88:43:13:80:3e:b5:b0:
a9:d4:3f:d7:24:99:2c:94:5f:f3:44:b8:0e:ba:0a:
d3:cf:ce:07:7e:7e:4c:42:9f:b0:0f:7e:29:c2:6e:
96:93:1f:a4:ff:a0:39:50:11:87:82:d8:af:e7:aa:
cb:3c:2b:92:64:a2:2c:3a:61:91:09:fd:a3:de:01:
16:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C5:BD:E1:DA:45:EF:AB:EA:E6:11:81:2F:45:C9:BA:B0:DB:55:41
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RsW94dpF76vq5hGBL0XJurDbVUE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:23:b6:76:2a:35:5d:b0:d4:34:78:2b:a3:15:c8:88:b8:c1:
b7:5f:e1:69:0d:dc:58:13:36:63:58:0d:ac:49:2d:59:be:d6:
1e:0e:aa:e7:0d:ab:0c:90:77:d1:99:56:02:77:5c:07:6f:a6:
df:65:ac:57:1e:8d:55:68:49:29:ac:cc:84:a7:2f:2e:b7:de:
a3:02:4f:10:4d:00:5e:da:19:ba:8f:b3:64:eb:fe:66:b9:15:
3d:1d:23:5a:b7:c9:4c:41:62:55:29:c3:9c:66:51:ac:b7:0d:
78:db:85:75:c4:c5:6a:e3:30:2b:6a:53:df:1d:34:f1:9b:a8:
13:3d:94:89:c7:eb:22:46:6d:8a:89:8f:10:d5:8d:dc:19:63:
76:18:a2:ff:0b:ae:25:84:96:33:a5:c2:2b:e9:1f:f8:69:76:
9d:16:7b:2e:9d:df:80:b3:d9:03:21:e7:02:84:cf:6d:66:be:
a4:10:d8:2d:6b:06:0f:4c:5c:bc:37:eb:dd:ac:ba:d9:78:6e:
aa:4e:b9:6c:0a:4f:a5:96:00:67:4b:dc:f0:84:8a:af:a2:87:
b4:27:fa:67:e7:37:7b:a1:5d:61:7a:52:30:db:b3:02:f6:38:
30:40:55:aa:70:87:27:d9:e6:b8:42:df:7c:06:8c:81:9b:63:
3e:74:b8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org