Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/o1UAHZC8sWSwGmhS3ZSZHW6TJJk.roa
File: o1UAHZC8sWSwGmhS3ZSZHW6TJJk.roa (raw, json)
Hash identifier: H36gfPMgN+Ok8ivpAFoFgFdt6f2m2Xj9QXpzlkVul7U=
Subject key identifier: A3:55:00:1D:90:BC:B1:64:B0:1A:68:52:DD:94:99:1D:6E:93:24:99
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02F8
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/o1UAHZC8sWSwGmhS3ZSZHW6TJJk.roa
Signing time: Fri 03 May 2024 15:55:02 +0000
ROA not before: Fri 03 May 2024 15:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 760 (0x2f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 3 15:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A355001D90BCB164B01A6852DD94991D6E932499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f1:61:89:36:c6:c3:c9:4a:af:f1:10:29:78:
b5:c9:e9:43:96:e7:95:02:9d:0a:62:8f:43:07:09:
15:1f:b7:40:26:c8:ae:5b:fe:ed:3c:35:47:60:97:
4a:3d:31:91:6e:04:80:c6:42:48:cc:cc:e9:d8:8a:
13:24:02:e3:91:73:b2:d2:2d:60:b7:7d:84:70:d3:
28:9c:39:04:06:6a:74:ef:ea:c8:f3:2e:15:22:16:
ab:69:b9:e9:34:d8:18:85:15:59:f3:ab:e4:c8:40:
8a:6e:fa:f2:77:a2:ab:25:43:47:48:ac:fe:a3:07:
57:13:1c:72:cb:33:86:01:40:90:c0:bf:24:3e:05:
c8:d1:80:11:e9:35:cf:39:42:1f:aa:a5:23:97:f9:
36:58:81:80:b2:5d:ac:a5:cc:6d:9c:50:dd:c1:ee:
6c:e7:21:56:53:6a:0a:8a:ea:db:ce:52:6c:8c:75:
ee:d7:6d:45:99:a6:9f:bf:c0:53:49:d1:b0:55:64:
58:06:c9:98:1c:07:ca:08:84:04:6c:5c:7f:1e:7d:
c6:90:ee:f1:33:24:3f:21:bf:58:39:54:6c:00:18:
e1:f3:c6:62:dc:7c:f5:65:76:b8:19:b7:1b:70:8f:
48:d3:3a:63:e6:82:d4:73:bc:3f:f0:5a:a9:df:41:
9b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:55:00:1D:90:BC:B1:64:B0:1A:68:52:DD:94:99:1D:6E:93:24:99
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/o1UAHZC8sWSwGmhS3ZSZHW6TJJk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:c7:23:9d:d0:87:ab:16:69:ac:5b:d6:89:98:ce:7f:78:32:
87:a1:8f:1e:81:8c:d6:cd:78:4e:d1:54:cc:93:69:a5:86:c5:
e0:01:91:fe:26:da:41:c6:45:78:1a:95:bb:bd:ed:11:47:70:
c5:76:b1:ec:02:b9:da:14:34:a1:86:06:8b:77:c9:a5:17:05:
fb:c2:8a:33:b1:2c:1d:b0:8a:4f:b8:c4:b6:79:1f:25:e2:aa:
bd:78:f2:d8:6b:cc:5e:5e:3c:5c:11:d7:c5:d6:78:41:9b:6c:
3a:b3:ec:58:1c:28:58:e9:e5:24:e1:e6:40:31:11:60:b3:3a:
9a:8c:cb:5a:cd:ae:ce:2c:d8:fd:d9:5e:b6:76:cf:83:4c:b9:
19:98:4f:ae:ad:36:9f:a7:d4:b2:21:9f:28:24:cf:0c:62:e8:
e5:0e:85:04:ce:5f:8e:e6:ab:fe:38:ef:d0:f3:d2:d7:d0:7b:
0e:2a:8f:df:bb:aa:17:a7:29:91:e6:18:3e:67:82:53:12:9d:
56:13:6e:73:66:2f:b9:5c:b7:4d:c2:ae:b6:f4:38:cb:14:fb:
d7:3b:9d:f6:17:04:08:6f:02:0c:fc:e6:ff:85:7c:a2:ec:57:
96:14:fd:aa:32:8a:91:75:35:8d:42:72:44:b6:6d:5b:d3:b5:
70:cb:eb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:41:53 2024 by rpki-client on console-ams.rpki-client.org