Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/S_O0TC3bW2cpx_vdYRuqd4VqNAI.roa
File: S_O0TC3bW2cpx_vdYRuqd4VqNAI.roa (raw, json)
Hash identifier: DHLOFo7lbfE2jBoI9IRclT3y82OX25SHex+Z7imzONc=
Subject key identifier: 4B:F3:B4:4C:2D:DB:5B:67:29:C7:FB:DD:61:1B:AA:77:85:6A:34:02
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06AC
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/S_O0TC3bW2cpx_vdYRuqd4VqNAI.roa
Signing time: Fri 16 Aug 2024 23:55:03 +0000
ROA not before: Fri 16 Aug 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 03:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1708 (0x6ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 16 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4BF3B44C2DDB5B6729C7FBDD611BAA77856A3402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:08:74:f4:55:67:3a:d7:7b:95:7b:dd:69:
0e:9b:ae:17:85:74:a0:e0:21:57:39:eb:f7:36:b5:
55:19:01:20:07:2c:3f:d0:37:0d:7d:f6:37:8e:8d:
ac:5d:7b:32:d7:2d:12:a9:e4:f8:c4:73:02:63:28:
77:2e:22:2c:97:b6:c2:83:73:08:ef:7f:34:70:97:
83:fe:5e:b8:49:cf:2f:14:7e:7c:a7:e6:cb:83:5b:
80:6b:20:5e:4f:f6:bf:99:36:89:03:32:d2:95:90:
00:ef:40:04:05:8c:e0:41:9a:8a:9e:fa:93:9e:bf:
7a:37:12:3d:85:1e:17:db:46:62:41:4d:f9:7e:74:
ad:e1:61:c9:d5:5b:04:24:3c:e6:9b:37:c6:5c:88:
df:50:a2:19:0a:11:7e:d7:ba:c9:cf:c6:c9:b5:29:
12:f2:b2:f2:ce:e1:a6:a7:f3:c7:8a:84:9c:24:b1:
06:ab:ee:40:b7:38:01:c9:32:37:c9:bd:48:8e:fe:
74:e3:33:a4:0f:81:5a:06:77:47:7d:50:ff:8c:7b:
f9:55:57:db:54:77:fe:da:e5:90:c7:80:6e:a4:00:
06:53:1c:3b:69:89:ae:fc:6f:fb:d7:f3:b8:a2:61:
1c:c3:45:14:94:1a:fc:45:8c:66:6b:76:eb:3c:9e:
54:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F3:B4:4C:2D:DB:5B:67:29:C7:FB:DD:61:1B:AA:77:85:6A:34:02
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/S_O0TC3bW2cpx_vdYRuqd4VqNAI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:0f:8e:75:e4:6f:42:5a:f7:5f:31:a6:f0:f6:b9:bb:c2:c9:
bf:ff:c5:fd:b9:da:18:20:d8:4c:a0:29:0c:3f:fb:6e:84:97:
f0:98:5b:ba:a7:66:bc:a1:c5:3d:da:dc:29:fa:47:75:4b:7f:
d5:a2:a0:87:08:ee:02:2b:03:b3:31:a2:51:2c:d7:96:f0:06:
7f:2d:1b:b3:14:a0:21:1a:27:81:ee:04:cc:3c:db:98:e0:1a:
00:03:8f:25:5e:2a:2e:49:8a:c7:84:e8:cc:df:37:58:69:c1:
85:42:37:c4:aa:61:f3:0e:5e:a4:92:ff:12:81:28:bd:8f:b3:
ae:d2:f4:33:fd:e9:e8:03:d2:55:4c:87:a5:4f:e8:92:86:af:
ae:b5:87:b3:6c:23:3b:e4:67:ee:f1:e4:6d:14:ac:14:fa:30:
75:5f:fb:3b:81:21:33:3d:a8:cc:35:1e:d6:83:3b:ee:7d:e9:
0e:64:36:e1:d2:88:54:f1:12:93:a9:3b:4d:4f:1b:c4:03:e3:
a1:44:f1:c1:b2:88:93:59:9f:6e:6a:2f:f9:e1:0f:bd:d1:07:
1d:ec:41:e2:a5:ba:4d:16:19:58:57:d6:70:70:2f:1d:62:db:
7d:b2:08:b4:ab:05:6d:56:bd:9a:d1:93:7e:10:13:28:99:3c:
ea:af:b0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 05:47:28 2024 by rpki-client on console-ams.rpki-client.org