Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/tF5tIWzW0mpEjce-18OjQrcXcJY.roa
File: tF5tIWzW0mpEjce-18OjQrcXcJY.roa (raw, json)
Hash identifier: ce3mVgYFvJYoHBWwmEIjsjOjgIsimV+V4e0Zij6IrW0=
Subject key identifier: B4:5E:6D:21:6C:D6:D2:6A:44:8D:C7:BE:D7:C3:A3:42:B7:17:70:96
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07DB
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tF5tIWzW0mpEjce-18OjQrcXcJY.roa
Signing time: Thu 19 Sep 2024 15:55:03 +0000
ROA not before: Thu 19 Sep 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2011 (0x7db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 19 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B45E6D216CD6D26A448DC7BED7C3A342B7177096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e5:1a:b5:b4:16:09:ab:3c:89:e4:8b:89:ae:
19:3e:55:02:ab:c3:3f:29:a6:66:75:16:f6:70:dd:
ab:6c:d8:00:d6:8c:1d:49:41:f4:2a:01:fb:38:19:
df:16:6d:f9:e8:da:09:64:e5:e0:d7:95:13:00:0a:
31:6e:53:75:37:cf:ee:1d:a3:a3:d9:93:69:cc:41:
b1:20:c4:a2:23:c3:17:fa:14:31:7c:03:d9:b2:0a:
31:ea:20:47:0c:a2:c0:cd:be:40:84:27:fd:32:bf:
aa:02:97:47:8a:4d:e1:23:d9:2a:17:cb:2e:bb:c0:
dd:ef:7d:e4:98:91:4b:f2:08:e7:3a:24:4b:a3:09:
df:b4:d1:b0:3f:97:5a:7b:53:4e:a0:97:60:2f:57:
2c:e9:35:fb:5b:c7:22:04:44:09:07:cb:57:d6:17:
31:4b:95:e0:6f:7c:00:41:03:da:1c:27:0f:14:ca:
18:0e:71:11:2b:41:7d:48:55:99:99:84:a7:ec:73:
96:bc:55:1e:9f:f0:61:91:9f:31:b4:d5:4d:27:d7:
57:5a:92:c1:d5:fb:bc:c4:3b:0e:7a:d1:86:d9:12:
d0:fe:64:0d:c4:80:8e:91:d2:07:40:6b:8c:f2:42:
40:d1:ff:9e:97:c3:65:36:ee:12:10:95:7a:d3:46:
4e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5E:6D:21:6C:D6:D2:6A:44:8D:C7:BE:D7:C3:A3:42:B7:17:70:96
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tF5tIWzW0mpEjce-18OjQrcXcJY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:8f:09:b1:df:7b:71:95:31:d3:62:69:9c:4e:96:cb:26:b5:
99:c1:86:bd:95:a1:2f:61:eb:a1:65:90:14:ce:dc:cd:05:7d:
0d:55:00:85:8a:11:8f:39:b3:32:49:78:b4:86:46:7d:59:44:
f4:c6:12:ec:a6:d4:8c:7c:4f:bb:ff:fb:a1:8c:d8:af:14:d5:
83:14:ee:9e:bb:89:20:bc:89:a5:07:93:6b:cd:b9:fe:95:7f:
5c:6c:44:61:c3:9c:61:81:f9:18:92:3f:40:67:2e:33:ee:59:
fd:77:7d:88:70:cf:a4:76:25:a5:7f:d9:5c:3b:89:9b:98:54:
9f:de:9a:ef:be:a5:c7:62:6c:b6:67:25:fc:24:8d:46:56:43:
fe:13:f6:54:b2:86:6b:7f:74:4c:58:a6:04:1c:58:65:8b:61:
98:71:11:da:0f:ba:31:99:dd:69:4c:67:c7:01:90:62:90:c1:
38:e7:b2:16:79:92:f5:77:22:c5:c4:3e:4a:9f:fd:3a:b4:6a:
78:9b:1b:b7:37:4e:fc:c7:92:85:1c:4e:22:d7:72:11:8a:72:
60:00:de:71:23:37:8e:94:be:d7:92:91:97:63:14:ea:01:fe:
d8:eb:7a:bf:76:50:32:6b:0a:1a:fb:c1:7a:ca:09:dd:2a:f9:
b5:af:cf:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 00:00:37 2024 by rpki-client on console-ams.rpki-client.org