Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/U5PGgBQM7UC26s30vhEoFrBCOuU.roa
File: U5PGgBQM7UC26s30vhEoFrBCOuU.roa (raw, json)
Hash identifier: 0MjED6z85auNAGI6Vhh7qH6KpiREHVfLqfKZOkd6Lm4=
Subject key identifier: 53:93:C6:80:14:0C:ED:40:B6:EA:CD:F4:BE:11:28:16:B0:42:3A:E5
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 038B
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/U5PGgBQM7UC26s30vhEoFrBCOuU.roa
Signing time: Sun 19 May 2024 23:55:03 +0000
ROA not before: Sun 19 May 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 907 (0x38b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 19 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5393C680140CED40B6EACDF4BE112816B0423AE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:84:b5:05:c1:45:27:f7:bc:b1:76:cc:b0:fe:
96:b8:16:13:a6:9b:f0:09:a2:43:56:14:4c:63:28:
b1:0d:fd:c3:22:5b:f4:36:f2:42:e8:f8:0d:6c:b8:
02:54:91:a6:30:63:2e:a2:68:43:38:97:57:14:78:
e2:39:de:6f:0b:de:6e:20:ef:b6:d3:a2:ee:ef:53:
46:1e:83:67:79:10:c1:cd:09:c7:be:20:c8:27:8e:
19:b0:a0:69:0a:3a:99:fd:8c:92:6c:37:e0:77:03:
34:d0:09:df:cc:c5:aa:e7:24:f1:d6:6a:2f:22:e2:
95:b6:1a:bd:8b:92:51:3c:3b:30:8c:10:c6:a9:d4:
90:39:c5:24:17:9c:dc:65:b4:bd:32:17:4e:23:30:
5d:54:70:d7:bb:b6:07:f4:31:e7:98:57:71:3c:04:
2e:6e:12:10:dc:b0:de:6c:64:e2:93:1b:08:7b:de:
f3:12:5d:74:b5:17:d2:df:00:82:d7:ef:8e:0d:98:
39:7d:ed:81:a4:50:b2:e0:56:77:16:08:e8:ae:08:
25:4f:f0:79:d0:db:62:fa:05:d4:ea:31:2d:9b:ba:
7b:55:43:42:e9:50:34:8e:2a:a0:51:84:07:9d:fc:
d0:18:24:50:21:67:55:dc:88:68:dc:70:fc:c0:0a:
f9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:93:C6:80:14:0C:ED:40:B6:EA:CD:F4:BE:11:28:16:B0:42:3A:E5
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/U5PGgBQM7UC26s30vhEoFrBCOuU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:b1:bd:43:c9:db:aa:c5:67:c7:55:24:ca:c1:90:82:18:89:
49:b3:f4:81:2e:2a:d6:a6:d5:3b:47:c4:1d:49:d2:e2:7c:fa:
7a:64:90:50:ba:f4:65:c0:46:30:8c:d5:ab:89:88:b6:d1:e6:
de:3d:59:ed:99:89:20:59:47:8d:82:46:24:bc:72:32:f9:f9:
65:cc:ef:6e:c3:36:07:4a:5e:ac:63:24:ce:ad:50:bd:69:d9:
d5:e2:92:0c:76:2f:c7:bd:1c:b5:53:b8:e9:3b:90:89:02:1d:
ee:27:9f:7a:64:b5:aa:29:a7:5a:c2:91:d7:a7:03:91:86:40:
47:ea:d4:8c:cb:00:dd:d6:17:23:8d:c7:24:63:52:6b:75:66:
dd:96:03:95:7c:64:af:3b:24:4a:37:df:6f:16:ae:81:70:42:
46:db:48:d2:91:11:4e:83:a1:cd:ce:ce:ed:b9:be:9a:a7:0f:
c5:39:84:ad:f7:bb:98:f8:65:95:c0:9b:2c:9d:cd:8e:ba:4c:
80:c9:a8:7d:93:3d:45:6e:4c:50:ac:b1:ea:c7:37:0a:c7:a8:
08:16:19:45:95:7a:b4:d9:d2:ab:de:b1:84:53:a1:2a:45:b5:
d9:8f:42:29:95:1e:a3:ec:21:70:6a:c0:ab:b6:3e:b5:38:dc:
4f:61:37:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org