Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/g0uBlKNTSkwofgCh7GOyGC4dpcE.roa
File: g0uBlKNTSkwofgCh7GOyGC4dpcE.roa (raw, json)
Hash identifier: H4eBNIxUymu/Q8KIEd9dr20vfxHgD9bErr7M776ADH0=
Subject key identifier: 83:4B:81:94:A3:53:4A:4C:28:7E:00:A1:EC:63:B2:18:2E:1D:A5:C1
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0499
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/g0uBlKNTSkwofgCh7GOyGC4dpcE.roa
Signing time: Tue 18 Jun 2024 23:55:03 +0000
ROA not before: Tue 18 Jun 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1177 (0x499)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 18 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=834B8194A3534A4C287E00A1EC63B2182E1DA5C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5e:f0:5a:20:58:c6:00:3c:3c:4b:e4:30:b1:
14:81:ef:d3:54:f0:59:cb:b5:32:d6:90:e6:4b:d3:
e6:e1:e3:91:d3:35:d3:0f:93:90:73:8b:76:b5:df:
23:0e:71:4c:b0:f5:80:a9:b2:6b:15:bd:fb:25:1d:
a9:02:10:83:9f:1f:22:63:cf:d8:cc:69:d6:a7:28:
f8:75:d3:c4:92:01:c4:30:38:68:d7:5a:74:e9:70:
e3:b6:56:2c:33:e3:38:dc:dd:20:e0:fd:1c:13:a6:
00:c1:f1:20:1b:db:66:94:ec:84:db:ae:ae:f9:2e:
b4:1b:7c:3e:00:f1:4f:ec:8e:9f:cc:d6:a0:24:79:
3b:0f:f2:a3:d6:bd:6a:a2:ac:97:02:46:23:e3:4c:
45:bf:03:90:73:11:3b:b0:2b:c8:b1:ee:9a:0c:4b:
1f:0b:68:98:d6:d2:de:2e:bb:19:ad:64:bf:4a:06:
a2:f6:ff:10:b3:46:3d:08:ba:37:cb:99:80:45:e2:
4d:80:b7:66:4e:cc:d0:43:c9:0f:8d:d0:9f:63:fe:
ae:2c:73:bc:92:3a:05:50:7d:42:5d:4b:80:76:10:
e4:bd:cf:ed:72:ac:85:83:5e:c2:41:57:5d:55:9f:
aa:d8:4c:74:f6:10:8b:02:a9:de:0c:9e:ba:db:18:
e7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4B:81:94:A3:53:4A:4C:28:7E:00:A1:EC:63:B2:18:2E:1D:A5:C1
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/g0uBlKNTSkwofgCh7GOyGC4dpcE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
08:2d:ae:c6:92:09:e8:e2:a4:5d:8b:e4:82:32:9e:43:45:45:
9f:2d:32:39:fb:7a:09:39:d4:19:a6:85:e6:30:7c:f7:26:d7:
4d:db:91:b0:e3:98:fa:02:a5:44:4e:8b:c2:f3:9f:15:18:b9:
b6:c2:2c:ba:e0:47:40:99:9a:4b:7f:19:11:4c:0a:6a:7c:68:
fa:b4:5d:91:7c:19:46:c8:dc:ca:f9:0f:f9:bb:36:65:9c:2f:
4d:34:de:06:2c:2e:dd:c8:02:5e:93:5b:da:17:db:2c:78:d7:
dd:02:7f:fa:90:a8:6e:1e:01:78:8f:5b:95:83:be:d4:07:e7:
97:65:cf:78:34:7e:9e:43:21:86:eb:6f:d8:0b:b2:0f:c1:d5:
50:24:a3:8d:ef:2f:f8:24:43:72:71:6f:e0:fd:d6:6a:fc:90:
2e:28:a4:0b:13:a1:6b:04:0c:ab:e9:e2:20:41:78:b8:4e:9c:
c8:9c:99:31:af:49:d9:4a:f4:09:f9:15:04:eb:bc:7f:38:0b:
4a:41:63:8c:2d:21:79:82:a3:b8:64:2a:b1:8e:99:95:f7:ba:
ba:23:3c:48:f5:bb:32:d6:28:c2:f4:e8:9f:d8:dd:6d:cd:26:
ec:ca:ba:f6:80:17:61:3f:82:a7:08:03:55:7e:0f:af:31:58:
5b:ff:d3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 07:20:46 2024 by rpki-client on console-fra.rpki-client.org