Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/SOYRiJhAwpByiHLTVmQavmYN3mE.roa
File: SOYRiJhAwpByiHLTVmQavmYN3mE.roa (raw, json)
Hash identifier: hTSW8wQze85eC+bey8CmeuiYZCmVUuik8OUq7QAjyYQ=
Subject key identifier: 48:E6:11:88:98:40:C2:90:72:88:72:D3:56:64:1A:BE:66:0D:DE:61
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 08D7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/SOYRiJhAwpByiHLTVmQavmYN3mE.roa
Signing time: Thu 17 Oct 2024 15:55:03 +0000
ROA not before: Thu 17 Oct 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2263 (0x8d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 17 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48E611889840C290728872D356641ABE660DDE61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:60:95:ea:1e:9f:da:0c:41:e8:a3:e0:9c:46:
64:a6:19:86:c0:13:18:20:ff:fb:9a:3f:d7:3a:b5:
6f:3d:f9:db:59:3c:0b:d4:0b:e9:c2:c8:54:99:4b:
0a:18:f3:69:ef:51:eb:7a:b6:8b:ea:83:60:1b:da:
69:1a:7c:06:58:3d:dd:89:1a:17:b9:7c:15:dd:cd:
51:f5:0b:d1:31:5c:10:9e:d4:60:68:e9:93:97:a8:
a7:80:05:1c:b6:37:3a:d1:b6:11:43:f5:13:82:ea:
2c:fd:69:f7:d9:f4:7a:44:99:12:ce:e1:dd:ce:55:
77:c7:9b:4e:08:4e:b9:47:30:f5:a9:83:5b:34:35:
6f:fb:df:09:fd:bb:a8:95:90:b3:5a:7d:5c:99:f3:
37:03:e3:4a:22:38:f5:47:33:66:7d:91:88:76:d3:
dc:89:e3:7b:8f:ea:68:49:7f:9c:52:38:e2:4c:02:
35:b0:38:2c:44:5b:10:c4:be:4d:0c:fa:e6:99:14:
35:2f:0f:5c:5a:9f:c7:47:c0:8c:31:dd:6c:40:8f:
9d:90:f8:1d:14:80:39:3c:9f:55:d9:d9:fe:4b:30:
42:a5:55:2e:8b:ff:c3:b9:65:5f:cb:fa:9b:20:7b:
7c:f6:40:5a:26:87:0d:d3:35:a5:ef:df:12:25:ce:
ca:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E6:11:88:98:40:C2:90:72:88:72:D3:56:64:1A:BE:66:0D:DE:61
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/SOYRiJhAwpByiHLTVmQavmYN3mE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
34:47:aa:2a:12:89:a2:58:40:2b:00:f1:43:fa:1c:7d:08:2a:
1b:37:db:e8:a9:af:42:10:73:ec:75:1d:1b:59:7e:21:63:ea:
4b:0c:ab:77:c2:2a:36:ad:45:55:5c:41:8e:a9:60:3c:af:cc:
c8:c1:af:09:0f:2e:22:86:9d:b4:36:ab:16:30:5c:98:99:d0:
8f:05:35:9b:c0:8d:f4:08:6b:be:5b:51:75:cc:4c:27:af:da:
e3:3e:1f:0e:6a:a6:67:33:83:5b:6e:ad:be:5d:6d:8a:81:a2:
55:6c:5e:4d:88:37:a5:76:f1:94:19:5c:bd:91:ba:1b:0b:92:
15:af:65:1e:46:35:01:15:01:00:a4:e2:a0:3d:8b:2d:24:e7:
15:ea:b2:31:de:2a:71:77:d4:04:ab:71:98:47:70:1b:f8:9b:
ba:ef:38:30:ed:32:ea:78:15:1f:40:74:c8:7b:0f:0e:d3:d5:
0d:3b:34:e7:31:45:aa:b2:82:cb:d4:04:f3:2b:82:a9:6b:16:
81:63:33:a5:42:3c:1f:ee:db:21:72:c3:f3:01:48:8a:09:93:
54:5b:1c:22:f3:e5:c3:c2:1e:63:1f:f4:9d:a2:fd:02:2a:ae:
06:d1:0f:1b:fe:24:f0:ec:08:f1:cf:b0:16:e0:32:87:7e:05:
eb:27:a5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 23:19:43 2024 by rpki-client on console-fra.rpki-client.org