Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/VxFI-8oTEQu0MKv3TAnHjpGiMKE.roa
File: VxFI-8oTEQu0MKv3TAnHjpGiMKE.roa (raw, json)
Hash identifier: uN9dU8WSA14SHmAm0ZdJiPYBAS06iBfgfDqUSA2950E=
Subject key identifier: 57:11:48:FB:CA:13:11:0B:B4:30:AB:F7:4C:09:C7:8E:91:A2:30:A1
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0208
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/VxFI-8oTEQu0MKv3TAnHjpGiMKE.roa
Signing time: Sat 06 Apr 2024 23:55:04 +0000
ROA not before: Sat 06 Apr 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Apr 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 520 (0x208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 6 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=571148FBCA13110BB430ABF74C09C78E91A230A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:32:a8:f4:30:ce:73:b6:99:c2:6a:54:3b:97:
96:e0:73:62:e1:9f:2a:7e:05:6f:af:77:e8:93:9b:
69:fa:20:77:fd:3a:5f:ac:f1:eb:2d:cf:47:75:ae:
23:97:15:91:65:f8:ee:44:00:7a:a3:09:65:40:d0:
db:ce:15:b3:ac:34:4d:42:7f:f5:1e:95:00:d6:f2:
7f:3b:d6:c3:12:ef:4e:4b:f4:e1:5f:9f:c6:b5:0b:
77:e6:da:d8:f6:19:a7:93:de:21:1d:ae:bb:11:13:
40:a6:e1:4f:b7:24:2a:00:af:a9:31:37:74:f7:7f:
cd:58:50:ce:4a:1a:dd:cd:3a:01:ed:fa:27:c7:a6:
55:5c:f1:98:58:e0:95:9b:3b:3b:c3:16:95:84:8d:
a9:79:f3:9b:dc:36:e6:5b:c7:03:e2:b3:a9:6a:ec:
74:b3:9c:2f:63:4a:de:76:f8:91:aa:bb:1d:30:c4:
4c:09:80:ea:25:f6:cb:dc:36:55:cc:2b:4a:0e:3b:
e8:2d:f4:2b:01:e4:85:7f:81:e2:f6:ec:96:ac:b1:
5f:df:ed:b5:3b:da:09:2a:4e:70:a5:dd:ed:8b:10:
ab:99:1c:96:75:10:46:83:36:ee:10:25:9c:49:9b:
1f:da:79:66:7d:ef:6d:c3:7f:10:a7:3e:fd:f7:38:
0a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:11:48:FB:CA:13:11:0B:B4:30:AB:F7:4C:09:C7:8E:91:A2:30:A1
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/VxFI-8oTEQu0MKv3TAnHjpGiMKE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:f0:d4:aa:3f:db:e8:4e:42:2e:ec:50:ac:07:f6:a8:ad:ee:
74:44:83:76:44:8a:64:97:a8:c0:a9:4b:9d:08:99:41:84:8f:
55:7f:7b:3d:34:88:82:e5:e5:0e:f9:79:8e:1c:d6:02:47:f9:
57:24:6c:8b:3b:7e:25:c9:f9:df:84:8b:fd:4f:47:34:93:0a:
0c:e7:cf:54:08:e1:d0:68:35:8a:2d:e8:4a:0c:6a:cc:31:e6:
d5:ee:f5:73:22:f6:03:91:c5:5c:b7:29:a7:29:d5:46:bc:38:
78:f7:01:c8:d0:3d:03:a1:d0:c7:44:3b:6f:77:b6:ad:57:4d:
81:9f:2a:3d:d9:75:85:27:8f:59:68:bb:1f:fd:23:31:27:1c:
f1:17:9d:ef:60:a6:08:6b:b0:bf:00:d6:c7:5d:aa:a7:c6:f3:
59:02:1c:49:09:2d:9a:61:05:1f:9a:dd:46:67:f2:23:75:a7:
9c:2a:19:d6:0a:dc:7d:e6:72:2c:66:e4:17:0d:dd:ea:98:ff:
3d:f7:8a:53:fb:70:0a:07:79:97:d1:ee:5c:d9:6a:3c:72:1e:
73:84:94:91:6b:85:e2:35:1f:84:54:6b:9c:9e:f4:9e:2d:ca:
f9:cc:de:9f:77:53:91:30:de:6f:18:cd:b5:f4:7c:93:0f:79:
3b:4a:1b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 7 07:53:18 2024 by rpki-client on console-ams.rpki-client.org