Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/VxKw4le_ykYD44e2x_Wmz87AJOw.roa
File: VxKw4le_ykYD44e2x_Wmz87AJOw.roa (raw, json)
Hash identifier: LjpE4mcXEqkHjIojLsbCuYRexFiuKJC0QWjY8J9SJYI=
Subject key identifier: 57:12:B0:E2:57:BF:CA:46:03:E3:87:B6:C7:F5:A6:CF:CE:C0:24:EC
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0391
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/VxKw4le_ykYD44e2x_Wmz87AJOw.roa
Signing time: Mon 20 May 2024 15:55:04 +0000
ROA not before: Mon 20 May 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913 (0x391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 20 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5712B0E257BFCA4603E387B6C7F5A6CFCEC024EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:64:9b:c6:e6:79:2e:4e:2a:dd:cb:00:b2:5b:
e0:d4:b9:b5:15:20:7e:1d:09:b2:88:7c:a6:de:19:
47:a5:9d:9f:70:b2:84:ba:70:5c:ae:18:26:a5:2d:
7e:77:28:a0:bc:57:94:16:c3:87:28:41:f6:79:fb:
a3:15:9b:d9:2e:5b:b3:bf:5c:6f:70:a7:98:24:fb:
96:75:20:9a:17:c2:c0:da:51:bd:1b:a2:87:1c:dd:
74:c3:ea:db:fb:8a:fb:8a:4e:ee:68:63:67:b1:ce:
49:18:46:59:b6:26:0a:fe:98:d3:27:00:75:6f:d8:
37:99:b7:20:df:2c:f6:a0:64:17:35:fd:d3:18:d7:
9b:02:45:2a:0a:66:4d:c8:58:63:16:0c:7b:42:2d:
be:7e:6d:f7:9c:f4:c5:ca:5f:99:84:81:87:40:d4:
02:3b:94:06:de:41:2f:7f:98:3b:ff:3a:68:9a:0d:
52:12:9f:ea:c7:5e:e5:5b:44:38:e3:84:93:e3:70:
73:e4:e4:a6:b8:0c:1e:e1:4b:a9:82:f2:69:fb:6e:
dc:0d:54:56:df:9d:f4:18:90:ac:ef:c0:9f:55:99:
af:eb:bf:f9:9e:59:f9:88:c7:6c:26:6d:eb:57:bd:
e8:d1:55:98:73:ca:ae:af:01:80:f5:05:13:83:9f:
dc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:12:B0:E2:57:BF:CA:46:03:E3:87:B6:C7:F5:A6:CF:CE:C0:24:EC
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/VxKw4le_ykYD44e2x_Wmz87AJOw.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:05:69:56:5d:48:5a:23:66:e8:36:65:5b:4e:df:17:47:fd:
df:23:5a:02:45:b6:6e:fb:11:1c:42:c9:b1:b7:c1:36:bf:ad:
8c:58:69:4d:95:b8:e4:8c:58:3a:73:4f:ac:7f:d8:fe:f3:48:
e3:a1:f4:7e:53:7e:9e:1a:8b:d0:bd:93:02:38:65:f9:1c:05:
bd:95:2e:c7:e7:88:ea:ec:84:d6:29:f6:22:e7:19:96:52:b1:
24:55:e5:44:66:24:86:f5:f1:28:d9:57:2c:a4:2e:82:7f:68:
13:11:1d:d3:45:0d:0a:e4:6b:f1:1d:5b:f1:b0:fd:b5:c5:20:
58:e4:a6:51:c2:e1:7e:7c:eb:26:f6:f2:44:35:ee:fe:2d:c7:
19:26:5d:75:86:a7:ec:f8:8c:29:f6:b8:bb:ee:0c:72:82:b3:
40:2e:b7:22:2e:ea:72:b2:fe:2c:3a:68:2c:f0:58:fb:8f:64:
83:b9:f8:30:9b:8a:a8:e2:a0:4f:07:11:b2:c8:a5:a2:33:bd:
49:51:8d:1d:b4:94:b6:9d:81:37:6a:0f:84:f0:9f:1c:72:db:
74:b4:6e:d8:f3:07:88:d6:8e:1a:15:68:a4:4c:a9:80:3e:ce:
92:a9:dc:ef:8e:ee:c1:2b:c7:86:1a:d5:f9:15:06:bc:47:56:
e2:74:a7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 21:23:44 2024 by rpki-client on console-ams.rpki-client.org