Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/pQkFuF_FJHc98ypUk4iI0XMDgNo.roa
File: pQkFuF_FJHc98ypUk4iI0XMDgNo.roa (raw, json)
Hash identifier: nU+eGoFKWSjoBYI22v/Oqd6DhJAt97z0dl+SbmERBJU=
Subject key identifier: A5:09:05:B8:5F:C5:24:77:3D:F3:2A:54:93:88:88:D1:73:03:80:DA
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 01EA
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/pQkFuF_FJHc98ypUk4iI0XMDgNo.roa
Signing time: Wed 03 Apr 2024 15:55:04 +0000
ROA not before: Wed 03 Apr 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 490 (0x1ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 3 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A50905B85FC524773DF32A54938888D1730380DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b4:70:0a:7e:8c:ac:5a:d6:3a:45:3a:5e:60:
4a:42:91:5d:0f:72:4d:85:09:28:3b:a8:da:9b:18:
cc:f4:e4:c5:ac:57:42:fe:a7:d1:a8:a9:34:e3:43:
fb:94:3a:b2:be:da:84:5f:3c:3c:92:cb:cc:a9:d5:
a0:d7:d9:24:a6:f3:92:f4:67:1e:6a:69:68:e8:ba:
1a:1a:12:63:6d:59:35:37:c9:a2:f2:57:e4:e3:cd:
fa:62:4d:2a:b0:58:3e:ce:34:d5:7c:6f:c5:6a:5f:
3e:a3:cb:14:2f:40:4b:15:48:58:cd:03:cf:55:1a:
b6:45:03:54:09:4d:66:e5:49:bc:15:b1:e3:c9:48:
88:23:09:56:4c:85:d1:0c:25:48:88:9c:8a:b9:62:
b8:fb:a9:55:78:26:f7:67:89:8a:8b:f7:4d:e3:89:
cc:3f:92:fb:63:0a:77:21:cf:79:5a:cf:c8:05:77:
a9:cd:68:97:58:81:e0:0f:59:59:6f:2c:37:a6:ec:
83:78:67:65:6b:47:27:49:0e:53:77:97:d6:72:6d:
9a:d8:9b:63:80:2e:34:c2:6e:4f:ae:2b:0d:13:af:
e8:5c:54:0f:9a:b1:30:38:2f:76:c7:8b:57:9c:b6:
7a:13:a3:37:d9:86:98:64:2a:7e:79:1b:72:d2:28:
eb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:09:05:B8:5F:C5:24:77:3D:F3:2A:54:93:88:88:D1:73:03:80:DA
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/pQkFuF_FJHc98ypUk4iI0XMDgNo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
06:49:12:34:c5:7f:35:9f:6e:0a:b3:60:eb:e9:44:df:3e:c7:
1d:cd:b7:80:9d:da:b3:59:c3:74:7d:44:f8:86:ef:97:88:99:
bf:af:6a:a5:52:e1:a7:a1:45:b5:e2:00:6f:03:78:8c:4a:c2:
dc:f8:63:33:eb:5a:3f:57:98:6e:ff:0e:22:b0:99:f3:dc:e0:
4f:da:78:05:56:41:ac:92:81:8d:67:22:07:03:95:ff:d0:65:
3a:88:47:ef:c6:39:59:ef:6d:38:9a:53:9b:b1:5d:dc:ba:75:
21:11:f5:63:d3:10:23:0e:6b:5c:f6:8f:80:28:f7:cf:a2:5d:
cd:7c:ec:0b:f3:b4:a4:de:a3:59:da:12:7d:39:d4:90:e1:a1:
96:dd:aa:40:14:12:ea:85:d2:2b:2b:96:bb:88:ae:b0:0d:91:
cd:d3:e5:5f:c3:5b:f5:5b:2d:97:de:42:9b:b7:57:f3:99:38:
7e:e2:d6:8e:bc:b8:96:ab:f5:95:b0:05:7b:75:f9:0b:65:7c:
d5:5a:60:d8:2e:58:c1:e5:c0:3b:28:42:8f:05:65:7c:54:7c:
ba:62:11:5e:fe:35:a8:7a:fc:8f:9b:56:4b:dd:25:25:48:f3:
bd:5c:56:0d:77:f3:79:a1:ca:46:8f:fc:e2:2c:63:f4:62:3a:
02:77:6f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org