Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/bXF1_21vcI3atDyjnEVIqMsxUPM.roa
File: bXF1_21vcI3atDyjnEVIqMsxUPM.roa (raw, json)
Hash identifier: fobBc9hnjTWcGa5qoh36GAbuHScGTP+EJLrfGGcNrsw=
Subject key identifier: 6D:71:75:FF:6D:6F:70:8D:DA:B4:3C:A3:9C:45:48:A8:CB:31:50:F3
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0523
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/bXF1_21vcI3atDyjnEVIqMsxUPM.roa
Signing time: Thu 04 Jul 2024 07:55:04 +0000
ROA not before: Thu 04 Jul 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1315 (0x523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 4 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6D7175FF6D6F708DDAB43CA39C4548A8CB3150F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:78:14:3b:8c:5e:1f:30:5a:63:90:d4:0a:
e2:5d:e9:66:3a:84:92:9f:60:0e:58:29:cb:f2:d5:
23:00:af:1e:0e:b3:82:64:39:7f:ac:1e:33:63:9d:
3e:26:79:c4:e9:9a:a6:6a:6b:ef:3d:4e:3c:b2:da:
53:19:8f:7c:75:6f:63:93:ad:a4:8e:42:73:d1:72:
9a:b2:85:ce:08:74:36:46:04:cf:eb:ac:6e:5b:1d:
c8:c3:e5:e8:fa:63:d7:18:f3:ae:3b:aa:24:c3:81:
81:f0:45:d7:b8:0a:f3:5a:fe:f5:39:11:9b:7d:fd:
15:80:6a:16:db:ce:01:e4:1d:c0:16:7b:96:a3:3a:
a1:31:4b:e2:92:2f:e6:98:c8:d6:70:6b:a7:0b:19:
02:2d:5d:96:0e:c9:80:62:e8:49:53:0a:13:0e:2a:
1c:06:0d:c5:47:4d:ea:a5:72:26:79:5b:15:23:10:
b4:11:23:0b:75:86:55:57:6a:97:ed:a7:41:42:e0:
30:a5:42:8f:ca:35:9e:14:7b:93:76:5b:40:e6:1f:
9b:69:da:4c:32:91:17:f6:79:3e:6c:cd:31:9b:d2:
a8:d6:31:0a:d4:99:f6:77:f4:3a:f2:d6:46:2f:85:
f0:1d:93:32:ad:41:d0:90:52:18:54:5c:29:26:f2:
37:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:71:75:FF:6D:6F:70:8D:DA:B4:3C:A3:9C:45:48:A8:CB:31:50:F3
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/bXF1_21vcI3atDyjnEVIqMsxUPM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
28:10:ac:fd:ff:53:97:90:3b:d7:11:dd:ea:43:44:50:3b:0f:
a6:5f:28:d5:f7:4e:4f:cb:71:39:32:a9:7d:b6:f7:29:b4:fa:
f0:8b:a2:23:0d:ff:ac:e5:bd:b4:ee:04:c6:34:b0:09:66:fb:
24:af:53:85:88:49:57:40:26:fe:27:72:8d:48:78:55:22:60:
3e:cf:b6:82:24:d5:d3:bd:be:1b:06:fc:30:c6:bb:62:f7:9e:
16:e9:02:54:9c:95:36:a3:fd:52:71:34:7a:b4:97:41:cc:f4:
83:e9:84:da:b9:f2:03:1e:69:0b:84:ca:60:6a:52:01:30:ff:
46:5d:7c:7f:1f:43:aa:e6:90:72:89:d0:c6:6c:bc:49:65:08:
db:ef:cf:d1:e3:1e:08:ec:ac:32:0c:2d:41:91:9b:52:4a:92:
0a:fb:5c:6b:31:56:d6:ee:81:e4:2c:27:8f:18:25:c4:64:a3:
ab:02:d9:1d:e7:da:6f:62:7e:2d:8e:db:7f:33:40:e6:96:95:
0e:1f:7a:7c:3a:ef:78:b3:ab:cd:56:10:ee:4f:9f:82:68:d5:
dc:e9:cb:19:7b:3e:53:3d:d7:67:92:d2:ae:c2:d0:26:6d:ad:
66:4a:cb:ff:cb:f9:58:3a:e9:a4:f5:09:bf:b6:af:b7:03:c0:
e0:2b:a8:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 13:47:28 2024 by rpki-client on console-fra.rpki-client.org