Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/j897lYL7G5LpelhqJ3Y1tBqJ8UA.roa
File: j897lYL7G5LpelhqJ3Y1tBqJ8UA.roa (raw, json)
Hash identifier: B8FXPn40qjFWFppv/sIRbYuJjrj1lvn2cyPz2b23ooE=
Subject key identifier: 8F:CF:7B:95:82:FB:1B:92:E9:7A:58:6A:27:76:35:B4:1A:89:F1:40
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0385
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/j897lYL7G5LpelhqJ3Y1tBqJ8UA.roa
Signing time: Sun 19 May 2024 07:55:04 +0000
ROA not before: Sun 19 May 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901 (0x385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 19 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8FCF7B9582FB1B92E97A586A277635B41A89F140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:06:44:59:7e:6f:61:db:a9:79:70:d8:9f:bd:
3a:38:02:0d:f7:bb:23:09:ad:2b:74:2e:32:41:74:
c2:5c:3d:90:e0:e5:89:1c:ae:2e:e0:50:0c:c2:58:
52:3c:ce:2b:fc:b5:49:c8:5d:c4:b4:35:ea:f0:5f:
40:e3:83:19:c8:5b:12:b7:12:75:2e:74:6f:c8:45:
5c:6e:74:b3:d5:44:dc:4a:d0:19:83:74:45:ad:2a:
d9:37:10:1c:c0:02:37:15:18:e5:91:12:be:12:a7:
4e:87:3a:1e:e5:3d:db:70:ce:2f:58:9d:3e:b7:30:
b8:19:fc:38:c1:ef:7a:73:52:47:dd:07:74:df:ed:
26:51:f0:8f:72:fe:03:6e:0b:1d:90:f2:80:e1:c8:
5e:ed:4c:fe:ef:56:13:7e:98:5e:86:47:be:d1:52:
23:99:52:d0:b7:b1:21:6f:30:0b:7f:dd:14:3e:ae:
4a:ff:31:90:61:83:1b:cb:59:76:1b:b7:c8:ee:2d:
d3:5b:ba:4c:04:01:a9:d4:6b:2a:b6:c3:a0:62:c3:
99:36:b9:4b:01:ec:51:35:c1:46:3d:93:85:cf:5d:
17:12:94:14:bb:a6:30:2f:b9:45:ed:ec:95:16:a3:
68:0f:a9:c0:77:e6:36:50:7d:5e:fd:64:aa:f6:03:
ed:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:CF:7B:95:82:FB:1B:92:E9:7A:58:6A:27:76:35:B4:1A:89:F1:40
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/j897lYL7G5LpelhqJ3Y1tBqJ8UA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:f5:97:7f:02:06:90:bc:11:44:15:6a:89:61:4f:e3:18:0d:
d6:f1:be:37:f2:77:e2:5a:8e:7e:7f:8d:4f:09:6b:a3:50:82:
96:30:aa:27:e5:04:0d:2f:09:95:1a:5f:0a:87:b0:74:aa:dc:
f4:38:cd:29:ea:96:0d:98:cb:6e:78:f3:2f:fe:44:77:ea:c1:
63:67:96:a7:18:5e:01:54:70:58:8c:e0:60:78:7d:dd:33:69:
8f:44:36:2f:6a:69:6c:9c:a3:05:98:dd:cd:75:37:58:82:e2:
99:02:7c:44:b9:73:9a:77:af:7a:38:4a:14:fe:f7:35:63:ec:
e3:4b:e1:60:4c:51:b5:03:a3:e3:6f:99:d4:2d:ea:50:4b:28:
7a:4c:b9:a4:4a:83:bc:c1:15:e8:9f:ce:ec:d3:00:4b:38:0f:
46:e0:72:78:fb:18:3e:fb:0a:e1:6e:3b:1b:58:9f:2e:a3:02:
fb:8b:2b:b7:e6:b4:6a:4d:78:ea:c6:3f:34:ea:15:d7:72:95:
49:86:43:82:dc:10:48:ff:3b:a5:c4:06:a2:a9:e8:14:45:cb:
b6:e8:70:90:05:98:24:01:24:00:3f:a1:ce:22:19:c4:10:2a:
d5:43:db:19:4c:85:6c:92:8d:a5:27:3a:b6:d8:30:46:99:ed:
8f:fc:f9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 12:36:52 2024 by rpki-client on console-ams.rpki-client.org