Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/g0ADZv3b_6qsc2NSw8cQIZayDfc.roa
File: g0ADZv3b_6qsc2NSw8cQIZayDfc.roa (raw, json)
Hash identifier: Yq2GZsE1E5HekZii2Wjel7Z9dQHJ/ZJSbMNVwhAZW4I=
Subject key identifier: 83:40:03:66:FD:DB:FF:AA:AC:73:63:52:C3:C7:10:21:96:B2:0D:F7
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 34
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/g0ADZv3b_6qsc2NSw8cQIZayDfc.roa
Signing time: Wed 14 Feb 2024 23:55:03 +0000
ROA not before: Wed 14 Feb 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52 (0x34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 14 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83400366FDDBFFAAAC736352C3C7102196B20DF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:32:69:0d:ef:79:4d:61:6d:6d:f4:5c:33:ae:
6a:83:45:ea:f8:e7:45:33:58:25:8d:94:8d:f4:cb:
4c:3c:da:4d:3e:6d:09:35:31:e9:ce:6c:8f:28:2b:
70:b5:a3:2e:dd:68:21:e3:c1:ad:4d:6d:c6:da:cc:
c2:3e:84:19:49:0a:30:b0:82:f3:dc:d6:ff:15:21:
a0:cd:59:ba:d8:28:33:24:f0:90:c9:50:a1:00:1a:
6e:cb:fc:be:93:2f:97:0f:20:85:73:e1:89:eb:88:
06:72:36:73:38:62:17:2b:75:ed:4a:af:b4:17:63:
8d:87:e4:6f:26:f8:d1:47:4a:bf:82:2f:f8:0f:f2:
62:3d:69:98:5f:97:ea:58:ef:5f:80:30:c5:e8:92:
27:82:4a:eb:78:bb:d4:24:44:71:d0:2a:f7:29:60:
02:93:0d:ce:8c:66:0a:56:71:47:03:d2:12:df:ed:
45:ca:53:9e:58:db:16:30:c5:87:7f:d5:43:c6:c5:
90:cc:4f:88:c9:b5:90:68:4b:93:de:97:db:2c:42:
21:91:4a:59:39:d2:d7:f4:c0:c1:57:58:1a:bc:05:
00:95:a9:c1:59:9f:68:9d:b3:6c:b4:fe:f0:f0:72:
b2:99:85:bd:41:37:36:b0:dc:3e:cb:44:c2:19:ea:
f2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:40:03:66:FD:DB:FF:AA:AC:73:63:52:C3:C7:10:21:96:B2:0D:F7
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/g0ADZv3b_6qsc2NSw8cQIZayDfc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:9b:3b:70:6d:b8:f4:88:e6:d7:a4:cf:58:8f:1e:34:66:58:
06:27:2c:80:64:31:5e:0e:bd:52:cf:83:2d:9b:2e:df:f0:a8:
ed:66:0c:0e:ae:21:d1:d8:f4:64:e9:2c:86:af:cf:bb:98:3f:
0a:0b:24:94:aa:68:64:ed:4a:d6:3a:96:07:3a:2f:28:72:42:
6a:ac:48:8d:64:6d:74:3a:54:cf:f8:39:d4:c7:d2:e6:84:04:
97:dd:ef:94:9e:d9:73:e9:14:01:1f:33:e8:54:2b:8b:e2:22:
c2:9d:7c:97:06:81:a5:b4:0e:1d:90:c0:8a:bd:af:be:a0:4f:
d5:2f:de:ba:35:5b:01:67:e6:6e:78:3f:40:31:e6:2b:6e:c4:
e5:00:96:5d:2d:f8:62:3e:7c:97:44:b6:80:a0:47:e9:b5:28:
7d:ed:ad:5e:ae:7f:8d:f5:c9:8f:ca:01:40:3d:3a:fa:21:b7:
c7:33:c0:68:3e:7e:d2:b3:e7:5c:07:75:19:c1:94:49:ed:81:
f2:42:ba:e3:21:01:48:32:37:ea:b3:a2:4c:33:f1:51:3a:97:
06:16:78:88:ad:a5:77:47:ef:bb:e3:64:ff:88:79:34:0d:b4:
6b:da:45:5e:7b:99:7a:d3:a8:0c:86:fc:1b:e5:f8:b4:15:79:
1d:8a:a3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org