Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/ogXeE7Kp6aTgZHYUjTdZyNeySKE.roa
File: ogXeE7Kp6aTgZHYUjTdZyNeySKE.roa (raw, json)
Hash identifier: Q3CJJr8MhN+0mn0VvhZPcB8mVW+MGlZ8tehgQjRBBno=
Subject key identifier: A2:05:DE:13:B2:A9:E9:A4:E0:64:76:14:8D:37:59:C8:D7:B2:48:A1
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0337
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/ogXeE7Kp6aTgZHYUjTdZyNeySKE.roa
Signing time: Fri 10 May 2024 15:55:03 +0000
ROA not before: Fri 10 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 823 (0x337)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 10 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A205DE13B2A9E9A4E06476148D3759C8D7B248A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f7:bf:ad:51:c1:01:00:dd:ff:7f:47:c2:c4:
84:84:5d:fe:6e:41:a2:3a:d6:d5:45:1c:bc:a9:2c:
6c:87:8b:36:2e:7b:16:b6:1d:c2:06:25:c1:1f:8a:
cb:bc:10:12:fa:fd:50:9f:e7:a0:3e:e0:0f:b8:70:
bb:d1:e1:3e:5d:a8:ba:9e:6b:ab:01:f8:30:94:4c:
46:01:8b:78:20:2b:95:56:37:63:b6:27:f4:19:06:
85:63:0f:d5:69:7e:8a:6c:43:a3:aa:e3:a2:21:da:
eb:f8:84:cb:98:d4:25:cf:c9:ef:ce:c5:0a:12:10:
71:45:51:d8:9d:78:19:23:96:ac:22:ee:d8:19:81:
99:0b:7d:54:27:b7:0d:44:3d:a4:0b:27:59:9f:b9:
9b:e9:22:d0:d2:5a:12:af:c0:c2:d2:d9:8d:83:68:
a7:53:4b:72:c4:7b:88:31:78:ba:be:c4:90:c7:b0:
80:d7:12:5d:16:dd:82:a9:5f:62:1c:f0:4c:c3:ec:
eb:be:51:d7:5c:04:b6:0c:9b:a2:45:65:a5:73:6c:
ac:cb:e5:93:73:0b:b4:f2:a8:82:d5:01:28:c5:ab:
5d:c7:aa:76:68:6d:bb:d8:71:02:30:e3:93:77:e6:
72:69:0c:33:b5:a4:2e:14:40:5f:db:8b:12:28:a9:
41:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:05:DE:13:B2:A9:E9:A4:E0:64:76:14:8D:37:59:C8:D7:B2:48:A1
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/ogXeE7Kp6aTgZHYUjTdZyNeySKE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:ee:02:2f:bd:c9:c0:77:3b:26:a4:bf:ba:a1:74:06:f0:37:
27:77:80:40:64:ca:e5:66:b7:45:41:42:82:97:c0:9c:89:d7:
3e:68:74:b8:2f:af:7d:bd:05:d6:c3:db:1c:d8:30:d4:12:9c:
ac:91:ae:f7:88:40:49:1f:88:27:ac:d8:94:65:64:db:9e:53:
eb:bc:0f:3c:e5:1c:43:85:8b:a8:4e:26:7f:c2:f1:c9:fd:85:
28:2e:f8:0e:81:31:92:1b:a3:0f:61:a2:28:52:3f:85:c8:79:
1a:84:87:f5:4b:13:1b:9f:9c:a1:c5:50:3e:b8:f9:e6:c7:ad:
10:ae:dd:e5:78:0f:8b:5f:27:a6:28:64:bd:b5:71:90:00:90:
af:61:53:ca:a8:50:d6:74:78:31:54:a5:35:9c:26:ec:91:74:
6c:84:09:34:79:76:cb:a7:17:58:ab:5d:65:db:a2:3d:36:f6:
d6:ae:02:5f:f2:dc:0e:bf:17:70:cd:f7:3f:cb:ca:14:c1:e1:
85:e9:dd:51:6d:e3:67:e6:4f:b2:a7:c8:e9:cc:94:52:28:7b:
4c:2a:32:58:dd:76:c8:e7:89:e0:d5:87:5c:ec:af:73:49:22:
51:14:89:ba:9c:a0:47:fe:b6:9e:50:01:d7:ef:55:18:fe:2a:
c1:41:4a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 22:18:22 2024 by rpki-client on console-ams.rpki-client.org