Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/rgbvYkQwTtFr-eVBOYhZZr2Mdh4.roa
File: rgbvYkQwTtFr-eVBOYhZZr2Mdh4.roa (raw, json)
Hash identifier: 5cTFJ5pfYC6n003BBlNHYo3bfKG+tsUWiyvXISYoYoo=
Subject key identifier: AE:06:EF:62:44:30:4E:D1:6B:F9:E5:41:39:88:59:66:BD:8C:76:1E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 01A5
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rgbvYkQwTtFr-eVBOYhZZr2Mdh4.roa
Signing time: Tue 26 Mar 2024 23:55:03 +0000
ROA not before: Tue 26 Mar 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421 (0x1a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 26 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AE06EF6244304ED16BF9E54139885966BD8C761E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dd:4c:5e:f3:0f:03:41:93:fb:a5:3c:17:07:
ad:fb:18:72:7f:21:d1:f8:fa:d3:71:38:6f:ba:24:
e4:9f:1c:d5:82:3c:3a:1b:7c:1d:f4:30:01:9a:c2:
71:07:1b:c7:3f:12:a5:d7:06:2f:52:54:ab:1c:67:
b1:f1:c5:44:37:ad:96:76:78:d7:f9:b0:6d:c6:77:
2c:48:c2:27:d3:31:9b:c5:9a:b5:78:33:c1:86:11:
ed:89:6a:fe:de:b4:33:e6:0e:43:37:70:43:1a:eb:
97:40:47:19:67:5f:5a:2f:f9:f6:e4:b6:46:6c:3c:
c3:79:f7:b6:24:2b:e0:41:46:b8:23:0e:20:b2:b2:
3c:17:f2:79:73:53:60:b9:49:ad:49:a0:a8:06:75:
c5:dc:3f:b6:cb:a5:e4:61:6c:6a:a7:0c:61:ba:b8:
84:42:67:ba:eb:19:5d:fe:36:57:c2:d2:d0:04:6d:
32:76:64:cd:de:fe:6a:dc:19:e7:77:66:0f:79:61:
c1:ea:72:39:4c:80:00:c5:06:81:67:22:26:5f:53:
8f:c1:55:bd:e3:36:df:7c:8f:90:f0:8c:79:b6:21:
db:b5:2f:10:cf:f0:ee:ab:6f:df:91:61:08:73:5e:
e1:fe:f8:dc:ec:8f:cd:25:27:be:35:db:e1:3f:03:
e4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:06:EF:62:44:30:4E:D1:6B:F9:E5:41:39:88:59:66:BD:8C:76:1E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rgbvYkQwTtFr-eVBOYhZZr2Mdh4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:3f:66:eb:ec:3b:99:4d:0b:34:f1:3e:48:2f:c3:a6:c6:7b:
e2:fc:48:31:31:88:9b:d1:60:33:29:7b:86:88:ad:94:08:a7:
f9:f4:b7:4f:87:35:5e:d5:f3:53:be:22:73:89:86:ed:a1:bd:
24:35:3b:f0:a1:31:57:99:04:2d:c0:6e:c9:67:48:c3:c2:65:
18:f3:bf:36:58:33:06:52:8c:fb:33:22:f3:11:95:2d:06:99:
90:36:2b:00:7e:9d:b3:bf:26:09:a2:e1:6c:7e:e9:62:dc:20:
ce:5e:6a:d3:79:6e:06:ce:d0:13:72:51:22:90:71:9b:83:4a:
61:7f:8d:12:e2:76:76:09:ac:1a:f8:b7:23:8f:79:7f:13:95:
30:23:40:be:4c:66:d1:e2:8b:ac:25:10:ba:56:97:e5:0d:6e:
86:e6:14:fe:8f:f3:36:77:ac:09:1b:6e:d8:33:37:5d:fd:77:
dd:2e:f4:9f:da:af:e0:0f:28:68:b1:63:f1:19:6c:75:6e:b2:
64:c6:b3:14:6d:bc:2f:d7:b0:1a:16:31:fd:8a:8f:71:c3:12:
88:58:7b:c4:01:6d:e6:05:a4:1f:ad:db:94:52:d3:63:3b:fb:
f2:24:a9:c8:91:07:04:10:f3:66:66:4a:d2:3f:8f:8d:79:cd:
4a:c9:3a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 06:29:05 2024 by rpki-client on console-ams.rpki-client.org