Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/igGQm0MjBgfIpzCTs9v7qpuDdEY.roa
File: igGQm0MjBgfIpzCTs9v7qpuDdEY.roa (raw, json)
Hash identifier: FtpYcadIJ9fP0/htWuxWBXL2Tz/hSHxnBUrCxCgGbUY=
Subject key identifier: 8A:01:90:9B:43:23:06:07:C8:A7:30:93:B3:DB:FB:AA:9B:83:74:46
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 040C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/igGQm0MjBgfIpzCTs9v7qpuDdEY.roa
Signing time: Mon 03 Jun 2024 07:55:03 +0000
ROA not before: Mon 03 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1036 (0x40c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 3 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8A01909B43230607C8A73093B3DBFBAA9B837446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:03:a7:d6:8c:b5:71:4a:6b:e8:52:7b:5e:a9:
61:d2:b9:ef:c4:cb:51:f5:d4:80:d1:50:15:c8:c8:
28:2c:56:76:8f:93:a1:03:f4:89:48:9d:51:4c:5e:
37:2f:a5:45:14:83:9c:92:6c:70:3f:79:56:87:35:
2d:56:5f:01:3b:05:39:d8:9f:29:b3:b9:70:fb:1b:
96:23:1c:dc:5f:df:86:7a:9f:e3:70:30:3b:6f:1b:
29:15:f5:ca:0c:d1:af:26:f8:b0:92:59:d4:b6:c8:
35:f0:65:38:52:86:57:10:da:2c:f5:02:db:7d:85:
a7:b1:b0:4d:e7:34:7b:f3:13:bf:86:3f:b6:58:3b:
a8:91:9c:a0:ed:da:53:ce:fe:cd:8a:0c:11:bb:cd:
ba:cf:aa:df:f7:ea:8b:21:24:48:e8:a7:a0:1b:68:
57:84:c0:b9:9d:8b:45:4d:9b:5a:4f:53:25:61:8d:
4e:56:86:3a:34:a5:39:89:e3:8d:21:bd:46:77:4c:
4e:19:bb:8e:2b:e5:cf:ef:3b:54:ce:7f:7b:5c:c9:
58:ef:b8:2b:f1:60:cf:a2:13:e0:e0:91:28:39:de:
e4:e7:6d:b3:ee:26:5e:52:f3:ac:47:22:8e:0d:1d:
be:c8:47:88:09:01:0d:6f:e9:85:6b:72:f0:a8:30:
8a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:01:90:9B:43:23:06:07:C8:A7:30:93:B3:DB:FB:AA:9B:83:74:46
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/igGQm0MjBgfIpzCTs9v7qpuDdEY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:b8:05:1d:2a:e8:be:ee:f5:cc:1f:d2:fa:04:d2:46:93:d1:
73:9e:03:55:79:8a:4a:ec:30:c9:44:e9:a8:90:3b:c7:5c:2d:
ee:1e:40:a9:03:2a:8f:10:18:75:f3:bf:fe:1d:94:17:24:8a:
7e:6b:d7:1c:6c:18:82:e6:2a:fe:6b:3d:b0:da:a4:46:f7:04:
95:96:43:66:d8:17:13:0a:2a:55:5b:72:9a:2d:c2:15:bb:4a:
88:b6:e8:2d:ce:6a:53:34:bb:85:44:f2:41:c1:e1:cb:23:dc:
d4:c0:72:10:e7:50:3d:93:82:17:92:b3:1e:fe:30:54:2a:41:
30:af:f9:d5:b8:ef:62:45:87:27:43:f5:f4:10:55:e5:e1:1f:
40:34:4a:7c:62:a0:54:64:4b:b3:f5:f3:6f:12:c8:29:84:6a:
1d:e2:64:32:3e:74:a7:61:af:3c:35:8c:97:c0:7b:ab:a7:5c:
cd:53:bf:23:18:32:73:d0:29:0f:78:a2:29:6c:0e:98:73:b9:
63:77:f8:28:97:a3:04:d1:3d:b8:ff:37:40:ba:09:be:d0:5d:
2b:7d:ce:a1:63:40:5a:f1:4c:79:19:05:f7:59:5e:ab:7a:18:
d4:2a:07:b6:f1:9e:c6:6a:4c:5d:29:8d:9f:7a:5e:a1:a2:a9:
ae:c0:33:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 15:53:10 2024 by rpki-client on console-ams.rpki-client.org