Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/dUXpbl2d42YfgiM6-kdcO0lkNDE.roa
File: dUXpbl2d42YfgiM6-kdcO0lkNDE.roa (raw, json)
Hash identifier: FWbbSBzDyP/mWMY60OF0umcYydE3XkC/+2ctDzsVrlY=
Subject key identifier: 75:45:E9:6E:5D:9D:E3:66:1F:82:23:3A:FA:47:5C:3B:49:64:34:31
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0364
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dUXpbl2d42YfgiM6-kdcO0lkNDE.roa
Signing time: Wed 15 May 2024 15:55:04 +0000
ROA not before: Wed 15 May 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 868 (0x364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 15 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7545E96E5D9DE3661F82233AFA475C3B49643431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:3c:f0:b9:28:1c:a7:22:7a:41:e7:d8:b4:
80:0e:1c:e2:3f:fb:38:c6:b3:4a:e3:53:5c:99:0d:
8d:13:81:e5:ac:5d:94:54:c4:07:59:2e:4a:4c:2b:
f9:29:8d:0d:27:37:a6:33:10:ff:10:dd:85:f6:9b:
5e:20:38:74:74:48:3c:ab:97:d7:11:eb:ac:72:d6:
37:40:02:21:92:82:5a:71:06:e1:bf:a7:5c:36:44:
e4:90:07:3e:19:ab:45:14:ba:e5:7e:50:2f:0b:a4:
37:2b:04:39:07:f8:f0:8f:6d:82:eb:9b:0e:76:ee:
fa:37:a3:01:94:2d:78:fb:84:de:e4:0f:3b:fa:e6:
3f:ff:f3:7c:ad:70:59:f6:67:2d:8c:d9:25:a4:b9:
0b:e1:56:b7:8f:cc:2e:94:ba:cb:2e:7c:d1:94:6b:
8f:3a:70:e8:bc:ab:86:38:ed:7d:69:a4:90:2c:05:
66:10:7b:f9:23:13:d5:2e:59:cd:88:52:46:04:62:
de:3e:b6:e4:d0:bc:f1:f4:ff:91:4e:7a:a1:d3:30:
0e:f9:e9:17:0f:92:d4:e3:3a:b7:07:55:6c:7e:03:
6b:cf:d2:3d:7f:f7:92:8f:03:07:0c:c9:5a:a8:0a:
e9:76:3a:4b:e7:f0:2b:f4:d4:e0:0d:55:45:cd:96:
71:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:45:E9:6E:5D:9D:E3:66:1F:82:23:3A:FA:47:5C:3B:49:64:34:31
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dUXpbl2d42YfgiM6-kdcO0lkNDE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:e1:6c:6c:91:9d:e8:1b:00:55:e6:76:c7:1e:a2:d8:9c:e5:
b1:f5:63:d8:01:87:76:8e:99:1e:1e:f2:4f:7f:de:2c:09:ff:
da:62:88:01:7d:bd:17:60:ed:e3:b1:e6:bf:f3:cd:d8:28:a1:
e4:4d:6c:f1:af:3a:11:7a:d4:0a:6a:55:5b:7c:dc:d3:f4:61:
26:34:f7:cd:5e:59:1c:2c:ef:0e:a2:d1:b6:1c:ca:21:4c:a0:
50:d1:6c:7b:1d:9e:18:ea:76:46:90:c4:2c:58:e0:63:f1:5d:
dc:1f:fa:ec:9e:d5:55:cd:b7:fa:4e:7a:bd:a5:66:dd:dd:e4:
91:35:00:a7:9b:30:30:66:f3:35:f7:55:33:d4:93:db:17:59:
6c:b4:37:0f:be:49:f2:f6:e1:bf:19:46:a0:f1:6e:73:d7:20:
7a:b6:2f:d6:8a:3b:a4:0a:63:53:42:7f:e3:6f:3d:00:1c:41:
7f:db:06:89:6f:7b:59:e9:2d:cf:21:ea:d9:0a:56:e3:9a:b6:
18:c6:13:cf:e8:1c:ab:63:ca:51:7f:c8:e5:b5:26:12:fa:13:
d2:4d:ec:9a:77:1c:d6:66:2c:ef:c3:7e:f9:28:49:6d:c6:38:
34:b2:ac:09:96:26:24:84:30:70:73:f2:bc:12:a6:89:68:6b:
84:99:17:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org