Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/_0mrAp4ugMNGmPfrjexOF2njPEA.roa
File: _0mrAp4ugMNGmPfrjexOF2njPEA.roa (raw, json)
Hash identifier: 3NoXwHUw5ADf4aa76oIFZibzqghF55Hwi1d8qSdj/dU=
Subject key identifier: FF:49:AB:02:9E:2E:80:C3:46:98:F7:EB:8D:EC:4E:17:69:E3:3C:40
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0334
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/_0mrAp4ugMNGmPfrjexOF2njPEA.roa
Signing time: Fri 10 May 2024 07:55:03 +0000
ROA not before: Fri 10 May 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 820 (0x334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 10 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=FF49AB029E2E80C34698F7EB8DEC4E1769E33C40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ea:88:37:6c:be:5c:0b:b4:74:76:72:e3:53:
15:7e:b2:ee:bd:42:cb:e8:4e:e4:b2:ef:ba:a6:0f:
29:1b:69:a0:5b:d9:f3:f1:31:a8:fa:36:9e:a6:a9:
2e:9e:cb:c4:70:6b:b7:b1:2e:9e:38:18:ae:12:24:
85:b2:4c:4f:ab:4c:9c:b4:99:9f:ee:3f:fd:a7:a4:
d6:c2:69:54:8f:54:d9:14:b3:f5:48:9c:47:9e:73:
47:f8:cb:43:97:72:b2:7e:97:91:77:47:e4:81:8c:
1d:5f:a3:9f:27:0f:47:04:d3:54:65:05:53:32:24:
00:01:da:dc:a2:aa:88:50:e7:57:9e:2d:eb:93:f7:
7a:dd:c9:b8:88:93:bd:17:54:24:2b:34:26:0e:01:
cc:1b:8f:0d:50:86:d9:f6:08:b6:0c:d8:64:90:3b:
f3:3a:4b:69:45:d7:d7:27:d2:ad:0f:a1:0b:43:cf:
87:15:0a:f8:78:f3:d2:98:57:60:28:3b:5d:2d:ab:
01:31:5f:a8:dd:65:22:b3:62:42:3a:0d:de:e6:39:
5b:15:27:e6:01:05:64:6a:cd:f4:c3:ad:1e:77:cf:
22:cd:f1:b9:ba:9d:e9:91:44:04:3e:e1:07:34:53:
a5:bf:e6:ec:14:35:f9:f9:7e:66:40:c0:5c:05:ae:
f2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:49:AB:02:9E:2E:80:C3:46:98:F7:EB:8D:EC:4E:17:69:E3:3C:40
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/_0mrAp4ugMNGmPfrjexOF2njPEA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:4e:04:e7:0f:60:6f:f3:8d:1a:ef:54:6c:e8:97:93:a7:80:
64:6a:9b:90:ed:e5:da:f1:05:f7:af:78:8a:d6:b7:ae:47:bc:
38:68:e6:62:a5:fb:03:b6:50:2c:7a:77:16:fa:26:c8:42:e3:
84:34:9d:cd:8a:f3:51:19:78:c4:c6:b2:b5:99:1e:48:7a:73:
29:93:f4:18:7b:9a:d4:18:00:0e:6a:fe:ab:64:15:b7:9f:7a:
7a:ac:63:59:8a:5f:bd:71:cd:4e:4e:23:a8:0d:48:eb:65:92:
99:3e:13:43:b2:6b:36:b8:55:c6:89:9d:98:47:bb:c3:9b:a0:
a3:e5:2d:69:f4:48:28:15:ee:4f:eb:82:f0:e6:5a:43:af:0b:
26:20:e8:8d:96:7d:67:ec:80:90:14:e0:cb:b3:d3:60:3b:ae:
76:d1:ec:ba:1e:fc:f1:33:38:9e:72:ae:1f:cf:74:83:ec:ce:
8b:11:8e:08:a2:b7:6b:fe:b2:88:a1:05:77:04:4f:ba:87:d3:
e2:b7:85:54:12:f1:50:a9:41:11:60:b0:7b:ad:b1:5c:53:d4:
be:9a:b0:b9:b4:c0:4f:66:15:de:50:55:ee:d8:64:ef:a6:d1:
cb:c2:a5:60:c3:88:fe:b1:a6:83:37:27:3b:05:93:fb:48:37:
70:14:9f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 15:37:40 2024 by rpki-client on console-ams.rpki-client.org