Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/UjDXz1cI0aKmxTeSYvzSJpDC0q4.roa
File: UjDXz1cI0aKmxTeSYvzSJpDC0q4.roa (raw, json)
Hash identifier: uRLH9d58NborWitIp/mv2SNUs+8PEswOw2BaVwNLqm0=
Subject key identifier: 52:30:D7:CF:57:08:D1:A2:A6:C5:37:92:62:FC:D2:26:90:C2:D2:AE
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 25
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/UjDXz1cI0aKmxTeSYvzSJpDC0q4.roa
Signing time: Tue 13 Feb 2024 07:55:03 +0000
ROA not before: Tue 13 Feb 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 13 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5230D7CF5708D1A2A6C5379262FCD22690C2D2AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:43:aa:95:f2:4b:30:19:1d:b3:cb:bc:17:2e:
ab:ed:d5:95:5f:bf:a5:2a:63:81:3f:71:ab:21:61:
f9:36:53:91:1c:28:8e:8d:ca:94:9b:3d:8a:bd:bc:
fd:30:54:4a:e8:ad:c8:66:4a:a8:88:4b:63:39:d7:
38:6c:b6:fa:50:22:e4:7f:11:d6:c2:cf:0b:7f:a7:
e3:3d:b7:54:6c:fb:e4:15:6f:06:1a:f6:8b:56:c3:
3b:68:d3:80:40:d6:bf:00:a1:8a:f4:03:e2:39:8b:
cb:4e:79:0b:92:69:4f:58:b7:7d:ce:2d:ee:b4:fa:
10:c4:49:91:59:6e:b1:3f:7c:50:2d:e4:aa:57:32:
2e:d1:9f:f4:3f:8e:cc:3f:95:02:db:c4:e6:29:2d:
58:1a:82:b3:0b:f5:51:f0:43:e6:74:30:9e:1e:b0:
06:71:57:f4:fb:2c:dd:6c:c5:d5:de:b6:cc:60:9d:
21:2c:4e:c9:4c:b7:fe:d2:79:c1:15:ad:0a:7a:d8:
f0:79:33:e9:25:38:e4:a9:8d:88:a4:0c:a2:f1:3a:
8f:9f:76:7d:5e:57:70:d0:2f:ab:b0:bc:03:1c:93:
44:14:8b:eb:cd:52:d7:97:95:c0:b2:e9:87:6f:2a:
d8:b6:8a:92:3e:d4:1a:cd:66:13:a5:33:32:a1:fb:
48:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:30:D7:CF:57:08:D1:A2:A6:C5:37:92:62:FC:D2:26:90:C2:D2:AE
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/UjDXz1cI0aKmxTeSYvzSJpDC0q4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
95:dd:c4:85:fd:ac:f6:3f:1a:db:53:cf:c5:5c:a8:4d:f4:af:
5d:83:d6:e9:c3:b1:7f:b0:f7:cd:41:28:9a:24:80:0c:80:97:
0d:91:2b:cc:55:39:b9:e5:be:cc:3d:6d:91:06:5e:59:c7:6d:
99:01:bf:9c:b0:56:da:42:2b:7b:d2:78:74:f9:92:a5:36:c1:
3f:2a:f1:57:13:e5:75:50:d5:bf:fb:0b:e5:3b:04:5b:85:da:
7a:89:96:a0:45:3c:cf:9d:b3:bc:c2:68:b8:74:e2:42:7c:53:
af:d2:8a:b1:86:59:f0:14:c3:60:2d:92:5c:fc:c5:c4:44:4d:
76:fe:81:75:0f:81:f8:81:21:69:a0:a5:0e:9b:5f:36:23:ee:
78:8e:ea:5f:e6:2f:35:9b:ce:16:8e:3c:c6:57:49:4c:52:5b:
4e:ee:a4:eb:aa:ff:44:81:38:43:1e:c0:6d:8e:f2:ee:54:2d:
a5:a3:f9:c7:26:b3:8d:bd:f8:cf:46:5e:6b:01:0e:5f:04:06:
dd:b9:1f:86:bd:74:87:e6:8e:29:da:03:4d:c5:61:ed:ea:78:
7d:0c:ff:1e:f1:bf:fa:19:98:4a:c7:6a:5a:f2:e8:78:bd:cc:
12:68:09:e9:c2:c0:c0:16:76:d2:bf:ee:88:39:05:4c:30:16:
bf:53:14:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 13 17:39:31 2024 by rpki-client on console-ams.rpki-client.org