Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/gv1mhH1NM_MB-sJgq0fgnETpmlk.roa
File: gv1mhH1NM_MB-sJgq0fgnETpmlk.roa (raw, json)
Hash identifier: 2t6pVMBqEUrWkVbQwIa3LcaoLpiz53GMkBn/V2G2ubg=
Subject key identifier: 82:FD:66:84:7D:4D:33:F3:01:FA:C2:60:AB:47:E0:9C:44:E9:9A:59
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0394
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gv1mhH1NM_MB-sJgq0fgnETpmlk.roa
Signing time: Mon 20 May 2024 23:55:03 +0000
ROA not before: Mon 20 May 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916 (0x394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 20 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82FD66847D4D33F301FAC260AB47E09C44E99A59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:77:84:2a:9d:44:38:c0:29:37:fb:d2:f2:1e:
f2:6d:14:90:1a:ad:af:9b:95:66:c7:a3:76:a6:46:
3e:81:e4:73:fc:65:c3:f5:60:4a:42:bb:e9:b7:f4:
3f:e9:25:58:29:ff:cc:54:bc:35:d7:f6:7b:c6:92:
62:06:73:36:fc:43:b3:5e:47:71:b0:a2:4c:b3:6b:
04:e5:4d:c4:6d:f7:fe:8d:96:fd:a9:f1:d7:d0:33:
47:e1:9c:36:a5:ce:28:b2:aa:e8:ac:4d:7d:27:f2:
28:a0:68:33:d6:4c:80:01:d6:7e:33:cd:05:a9:72:
45:53:5e:fc:bd:eb:a7:e2:0d:95:45:fa:85:7f:1b:
90:f2:ca:a3:f7:0e:d9:81:7c:5b:70:05:f6:c7:4b:
44:ef:42:e4:97:ea:28:2a:4f:bf:0e:13:d8:b8:db:
33:81:e9:c9:34:12:a0:53:9f:11:7c:a6:b8:b3:a2:
2d:d9:56:cd:80:82:46:95:53:d9:ea:c5:15:ca:e6:
b0:66:1b:50:ce:4b:7e:f8:5b:d0:44:b7:42:8a:f5:
0e:2d:a9:df:0e:32:15:20:b0:4d:e4:62:a6:dc:28:
86:df:bc:97:08:4a:b7:59:68:8d:24:b2:92:aa:47:
6e:5e:1c:1c:14:ab:c4:37:05:39:fe:7b:97:d3:ba:
71:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FD:66:84:7D:4D:33:F3:01:FA:C2:60:AB:47:E0:9C:44:E9:9A:59
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gv1mhH1NM_MB-sJgq0fgnETpmlk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
64:7c:c2:7b:84:bf:01:06:e4:ec:15:f4:49:4f:e2:52:24:e1:
87:4e:31:14:1c:e9:9e:a2:04:e2:d3:47:e0:19:a7:70:ce:3f:
51:25:3b:b7:20:33:02:36:45:a6:8e:10:c1:60:3d:e7:93:97:
7b:77:2f:17:d5:6e:45:16:48:b8:99:da:aa:eb:39:53:ba:e0:
43:c9:81:67:9c:a9:b1:4e:66:bf:cd:93:52:c6:26:0e:1d:56:
38:25:05:00:c2:1d:00:f9:28:72:b6:f8:60:6b:9d:25:a1:68:
c2:8c:39:b7:b8:20:5d:ac:a9:1f:c3:17:2e:fc:24:b3:a6:d1:
74:68:35:45:24:5f:fc:12:c2:11:2c:e7:cf:6d:35:a5:f0:08:
d6:36:3a:cf:2f:c5:3d:3f:93:36:9b:7d:fe:4a:ba:66:38:c7:
ba:1e:c8:a4:16:6e:ec:40:50:2b:be:63:a2:97:40:1c:01:53:
d1:14:90:b9:4c:c3:7e:eb:4d:f1:85:c7:a5:97:9a:c2:03:bd:
9c:6c:49:e3:55:59:f3:3c:02:a2:a8:ff:2d:f3:d9:ab:70:86:
ce:77:89:f5:d5:06:8f:d4:50:11:2e:9f:7f:86:8e:23:ce:b0:
e0:30:bb:72:58:8c:25:18:f0:33:3c:51:46:40:01:1c:d8:57:
64:f7:c4:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org