Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/rUn9daqVmCmkiYM9j9iyFHv4SAU.roa
File: rUn9daqVmCmkiYM9j9iyFHv4SAU.roa (raw, json)
Hash identifier: WSzGznUjW9E7DYz+2iVp8D1lM7kSeDOUpY9tycRgOw4=
Subject key identifier: AD:49:FD:75:AA:95:98:29:A4:89:83:3D:8F:D8:B2:14:7B:F8:48:05
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 052C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rUn9daqVmCmkiYM9j9iyFHv4SAU.roa
Signing time: Fri 05 Jul 2024 07:55:03 +0000
ROA not before: Fri 05 Jul 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jul 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1324 (0x52c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 5 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AD49FD75AA959829A489833D8FD8B2147BF84805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a4:e5:bb:01:e0:90:40:36:49:2c:de:25:e2:
5d:b9:d2:db:8d:39:3c:7c:91:71:a5:2e:dc:34:27:
50:66:3f:24:a2:69:dd:c9:9b:44:ea:93:28:80:73:
69:02:78:61:aa:8f:27:9d:a2:e2:b2:de:b0:0d:e6:
03:7d:04:85:41:b9:10:c3:39:8e:88:67:d1:58:96:
f9:13:29:1a:e0:6c:c0:4d:7b:1f:b3:86:89:de:a1:
07:48:cb:ae:09:23:fb:9c:71:20:d4:b7:8d:8b:a0:
89:a1:f6:c2:8b:e4:f3:64:80:d7:43:ad:4d:19:db:
f8:aa:d7:fd:7b:e0:78:dc:f7:c3:fc:8a:ea:d8:90:
05:2a:fe:06:70:70:14:30:c3:ee:2e:f1:1f:9f:01:
66:2d:9f:3a:da:ea:83:46:fd:97:64:5f:55:2b:90:
c6:92:54:10:18:a7:a1:4d:7e:9b:c1:45:bb:3e:c1:
0f:f1:79:06:bc:85:cd:84:21:69:da:27:69:f7:7e:
26:97:4d:94:ed:bd:5e:76:fb:ee:b9:71:14:6c:b4:
74:ee:b6:cc:44:e2:03:85:e6:23:12:81:8b:58:06:
a2:d4:1b:c2:9e:cb:86:7b:18:06:88:26:f9:1d:2d:
94:71:d9:58:19:d5:c1:5a:95:77:fe:b4:89:14:0d:
49:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:49:FD:75:AA:95:98:29:A4:89:83:3D:8F:D8:B2:14:7B:F8:48:05
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rUn9daqVmCmkiYM9j9iyFHv4SAU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:a2:9a:1d:9a:f8:61:09:8f:f9:4b:f5:0c:19:12:d2:5c:6b:
95:bd:06:49:02:14:d5:7f:1d:b2:7f:76:d9:0f:01:f9:7c:be:
da:6d:f8:54:57:ac:27:42:9a:6f:35:ec:37:7d:90:5e:5c:54:
1f:43:17:f4:ed:0b:68:86:a8:90:97:7d:91:77:0e:78:dd:f4:
b8:ce:49:68:9b:50:98:b2:d1:73:18:86:65:f8:e5:0f:a2:15:
4e:55:f9:0e:81:8a:3c:b9:a3:f7:48:94:0e:ad:0f:aa:a7:02:
fd:cd:4e:66:fa:d2:c6:56:9e:fb:f0:d5:b4:95:a3:21:55:b2:
5c:f4:6a:6c:85:27:e7:14:52:b9:33:7b:24:6c:fb:c8:8f:f1:
d2:62:fc:1e:eb:b0:0c:cc:17:5b:bb:09:c3:ff:2f:d8:d8:88:
41:b6:7c:98:94:98:65:4a:66:da:61:df:71:44:98:d8:f8:f6:
af:67:c3:c4:bf:51:a2:2c:4d:d3:b6:72:be:0e:94:28:12:f4:
b4:78:bf:b7:98:a2:e1:33:73:67:4b:42:3c:7a:53:d6:03:c1:
2a:8c:e0:9e:9a:10:fc:c3:ec:41:26:57:32:33:6f:e1:49:08:
7c:82:bb:b7:f2:2b:01:87:f5:ca:73:0c:f6:9a:58:e0:cf:25:
d6:5f:51:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 13:49:18 2024 by rpki-client on console-ams.rpki-client.org