Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/mLEQMKnBacIAind317hjln8swbo.roa
File: mLEQMKnBacIAind317hjln8swbo.roa (raw, json)
Hash identifier: pFlKk1hK9W4Ua5XD4AMS2CP+Sgl9aqDL9weyGaCAmrg=
Subject key identifier: 98:B1:10:30:A9:C1:69:C2:00:8A:77:77:D7:B8:63:96:7F:2C:C1:BA
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07FC
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mLEQMKnBacIAind317hjln8swbo.roa
Signing time: Mon 23 Sep 2024 07:55:02 +0000
ROA not before: Mon 23 Sep 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2044 (0x7fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 23 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98B11030A9C169C2008A7777D7B863967F2CC1BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1e:3e:ed:0a:1b:60:cc:20:81:e0:54:f2:67:
b7:37:3e:67:dc:14:4d:9b:39:c3:34:90:ba:53:9f:
aa:60:59:d5:bc:7c:a7:7d:53:47:ee:36:53:92:71:
de:17:33:b9:dc:25:7f:1d:58:71:8a:4a:86:a7:8b:
6b:83:87:a8:58:8e:46:41:41:16:41:d5:02:17:6a:
43:1d:ab:b2:29:03:ee:b2:49:84:41:c8:85:ed:0c:
2d:63:4a:02:40:05:c0:29:64:2f:f3:14:91:8b:f6:
93:80:6c:d1:ff:a6:22:8e:be:67:61:f5:8b:a2:4d:
4c:9d:cf:a3:86:39:71:42:f0:b1:a0:c1:1b:49:7e:
59:91:83:47:6a:1a:2d:f2:2e:02:f6:d2:e8:23:72:
1f:fa:99:5e:c3:a1:b3:0c:45:e3:1a:2f:9b:78:38:
b0:4e:5c:4b:7e:08:8e:ad:48:36:a9:e2:a8:f4:ce:
28:f4:3c:4b:1c:b8:07:62:7f:2b:12:7f:c9:1f:77:
b2:72:28:3f:81:02:31:a9:18:f8:77:cd:19:7b:fe:
22:5f:6f:a3:ce:c5:e2:ae:a3:70:56:88:df:b2:1f:
9a:1a:00:8d:e5:4a:75:71:3b:2f:a1:37:13:c1:99:
e1:0c:01:44:e3:e4:4c:7c:23:a7:f9:8a:41:88:e0:
0f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B1:10:30:A9:C1:69:C2:00:8A:77:77:D7:B8:63:96:7F:2C:C1:BA
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mLEQMKnBacIAind317hjln8swbo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
53:d0:ee:38:3e:92:b5:39:a7:24:15:2d:1f:35:46:e0:48:84:
d6:6b:36:20:72:dc:3a:05:05:b6:75:3a:5a:1a:5d:ca:a0:7d:
56:b9:33:d4:41:7a:f6:f8:f8:aa:a2:b9:00:3f:7c:42:c9:2f:
74:8e:e3:0c:08:90:3c:bf:f3:7e:95:5c:c2:7b:bd:39:06:3e:
d1:aa:5f:be:f7:fe:5e:56:de:66:95:15:1e:d5:f1:b7:43:c8:
f3:6f:2a:7f:66:1a:3d:d2:63:f5:ae:f0:0f:58:a9:5a:76:e3:
db:b9:43:7b:bb:92:a6:48:9a:43:14:d2:db:17:b1:2a:15:f9:
c8:d2:51:b3:fd:95:02:5b:bf:97:c2:b2:49:21:64:7c:79:f2:
95:5c:03:8b:d2:81:80:6a:12:11:08:94:0e:b3:0d:aa:25:1a:
96:2e:62:bb:37:24:e9:14:2f:08:e6:08:a0:9e:a4:c3:7e:1f:
2b:54:89:b2:1e:13:df:99:88:c4:c8:0e:ed:81:68:a5:93:fd:
5f:40:11:36:9e:34:07:30:8e:83:a9:7f:83:0b:d6:a2:59:99:
d7:3c:38:dc:e1:ce:dd:ad:f8:0f:28:05:01:3a:d2:d3:20:97:
22:89:20:78:77:a3:a6:e1:92:77:8d:ce:86:12:0b:0d:05:27:
4a:bd:b6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 18:04:03 2024 by rpki-client on console-ams.rpki-client.org