Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/_aJ_-U0cIbKItTC8wutYBxQKZiE.roa
File: _aJ_-U0cIbKItTC8wutYBxQKZiE.roa (raw, json)
Hash identifier: vCLFshejdPtrPqgvkxaOlv/bjUwi6vrkvhKc84+6hFg=
Subject key identifier: FD:A2:7F:F9:4D:1C:21:B2:88:B5:30:BC:C2:EB:58:07:14:0A:66:21
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0508
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/_aJ_-U0cIbKItTC8wutYBxQKZiE.roa
Signing time: Mon 01 Jul 2024 07:55:03 +0000
ROA not before: Mon 01 Jul 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1288 (0x508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 1 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=FDA27FF94D1C21B288B530BCC2EB5807140A6621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1d:ca:41:f3:ad:d1:c9:ce:18:53:4d:27:f9:
01:96:dc:f3:92:9f:86:fc:38:63:55:5c:f1:46:5d:
10:cc:d5:bf:8e:73:bc:1b:fd:98:de:2a:af:5b:cf:
20:5d:f0:a9:1b:00:96:2e:96:2a:0c:8b:48:f6:f8:
4f:08:f1:e6:26:6d:65:dc:9d:1b:15:45:f5:ed:23:
7c:0e:87:29:9c:12:3a:dc:3d:92:d8:02:96:37:cf:
bf:92:07:08:03:fb:1c:f5:be:18:b6:fc:90:af:61:
12:81:d8:96:10:bc:fe:ea:cb:0c:e5:fd:1f:5b:f7:
fd:c3:07:37:44:18:24:cb:af:bd:50:c8:85:44:b3:
1d:ec:a9:d1:2c:19:bd:cd:ca:96:71:06:72:7c:ae:
25:eb:83:34:36:cc:ee:51:f1:8f:e7:03:3e:92:12:
7a:ff:62:77:bb:ae:72:0f:cb:21:15:0d:65:e8:cd:
95:16:f1:09:e1:0c:0c:00:62:d2:7e:ff:92:58:62:
34:ca:2a:3f:78:8b:1f:ee:7a:2c:23:17:7f:52:2a:
78:92:6b:38:52:3a:90:53:3d:37:a7:3d:e8:38:3f:
5c:b7:91:24:8d:12:20:02:2f:e8:c8:2d:86:87:e7:
1e:9f:92:59:a1:61:61:c2:7a:ca:8d:8a:5c:9b:32:
aa:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A2:7F:F9:4D:1C:21:B2:88:B5:30:BC:C2:EB:58:07:14:0A:66:21
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/_aJ_-U0cIbKItTC8wutYBxQKZiE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:9f:75:e0:91:fe:ac:c5:08:48:8a:c6:aa:44:91:d5:b6:e7:
5a:0b:d4:cb:27:8a:c6:12:8c:85:8a:93:aa:7c:99:fa:ff:7a:
a6:48:54:7a:63:de:f1:b3:d8:fc:dd:c8:ca:c2:81:59:39:65:
d0:4d:3d:0c:a6:7a:5b:ad:a7:9e:8a:a2:7b:d0:2e:39:2b:e4:
66:0d:24:be:44:99:02:27:c7:67:6b:10:e3:24:c4:3c:b9:63:
7c:b5:b8:3f:05:2c:80:2d:88:28:df:f1:fc:07:39:83:ce:0a:
fb:28:c3:de:4c:ee:34:08:db:3e:af:9a:b4:3e:29:67:ad:d7:
6f:d0:b2:6b:fc:d9:e5:d8:a6:e1:c9:0a:33:89:22:df:69:ca:
e7:68:57:b4:c3:ce:8e:c6:93:5a:72:1d:4e:70:d5:a1:b7:ab:
51:bb:21:e0:f9:98:31:80:c1:5f:87:c1:2a:84:21:6e:45:a6:
91:82:31:57:a0:df:f6:36:e9:c8:81:ed:ad:57:77:2b:2c:71:
6c:e7:d5:f1:57:29:3e:70:35:a5:68:cb:70:c6:13:16:b8:11:
89:b5:0f:71:8e:6b:b4:17:86:55:cb:6c:06:61:60:21:04:3d:
85:a6:19:ff:19:37:f0:3a:e6:1f:75:7b:40:9b:61:45:a4:cb:
7c:da:ed:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 14:21:10 2024 by rpki-client on console-ams.rpki-client.org