Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/SdvVbMnj464xSsqSUyLpXtQTKxY.roa
File: SdvVbMnj464xSsqSUyLpXtQTKxY.roa (raw, json)
Hash identifier: vOOwNRwH8VAYUthvYRhD65xM4xeES59w9RI7TYAhIuo=
Subject key identifier: 49:DB:D5:6C:C9:E3:E3:AE:31:4A:CA:92:53:22:E9:5E:D4:13:2B:16
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07F3
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/SdvVbMnj464xSsqSUyLpXtQTKxY.roa
Signing time: Sun 22 Sep 2024 07:55:04 +0000
ROA not before: Sun 22 Sep 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Sep 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2035 (0x7f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 22 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49DBD56CC9E3E3AE314ACA925322E95ED4132B16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:47:71:1e:33:7d:7e:97:ed:c3:d5:8b:de:c8:
b5:b7:a3:2a:5b:e1:dd:51:7e:08:2f:8c:0d:00:11:
7e:7a:37:cc:d0:bd:b4:4a:b4:cd:5b:40:3f:8d:7d:
a9:c3:3f:37:f8:09:65:7b:42:d7:78:69:75:1c:5e:
b8:8d:3d:61:6b:1b:9e:b0:37:e2:5f:3a:df:fb:cf:
8b:64:d0:4f:e1:ba:de:da:f2:71:c6:7e:b0:63:9c:
78:60:c0:ea:b9:5e:9f:25:8a:43:89:31:a6:07:d1:
4b:a7:22:28:cd:56:62:d4:28:08:f6:1a:77:e5:1f:
86:74:70:10:9e:9e:6a:bc:22:d8:ed:e6:06:ae:f2:
e8:2b:ed:ed:f7:5f:ad:c2:be:7a:49:8b:63:d5:89:
77:85:08:05:99:c7:34:ff:77:18:32:d4:8f:09:9c:
84:09:d8:80:57:73:51:9b:10:5a:71:0b:d0:d7:78:
3f:aa:fe:36:ee:df:22:11:27:8d:86:e8:95:a6:93:
c7:4d:89:ca:f9:84:33:42:35:6b:cb:5a:4b:34:2e:
f4:e8:09:17:f7:1e:95:ab:1b:d6:0e:44:e5:94:68:
26:5d:9e:9d:bf:4f:b8:fe:dc:82:66:0d:95:25:ae:
27:77:92:b8:a6:f0:86:0b:69:cf:28:3c:b9:ae:84:
13:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DB:D5:6C:C9:E3:E3:AE:31:4A:CA:92:53:22:E9:5E:D4:13:2B:16
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/SdvVbMnj464xSsqSUyLpXtQTKxY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:dc:41:95:72:1b:12:c8:34:b8:0b:c6:22:8a:5d:ba:32:7c:
6f:df:98:1d:bc:e4:6f:fc:51:3a:70:c0:ca:dc:6c:41:8e:f5:
c7:9a:c2:b4:82:26:6a:f9:71:f6:8c:d1:0e:e5:61:5c:cf:10:
4d:d1:44:85:23:a5:6f:8b:57:76:9e:7c:40:4b:23:08:cb:35:
4c:cb:03:36:32:9b:dc:c4:25:ae:91:b4:64:3d:7e:cc:b2:eb:
2d:49:43:16:b6:3c:dc:93:a1:46:2a:3b:56:50:6e:3e:dd:84:
4e:68:76:8e:ea:ed:7f:45:fc:62:7e:67:b5:3f:ad:bd:ea:17:
63:23:74:02:69:3b:dd:84:87:52:cc:2f:01:5a:fd:67:ba:07:
cd:49:b0:ec:64:07:26:8d:c0:55:66:3b:56:b9:8f:fe:ee:49:
fc:d5:51:03:f5:08:1f:7e:94:d0:45:46:87:00:06:55:28:12:
25:67:3c:85:c2:0e:db:f3:c7:1c:9c:e7:6c:92:ea:76:af:51:
92:2e:64:8e:5b:42:b1:5a:d2:f8:e4:32:e2:65:d7:dc:2d:50:
e5:c7:b6:8f:3e:4e:60:7c:23:3b:e4:11:ef:26:14:f9:ce:98:
fa:cf:a2:3f:7d:f0:e6:92:af:98:fc:ea:1e:4a:97:d0:64:11:
ab:7c:a0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 17:54:37 2024 by rpki-client on console-ams.rpki-client.org