Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/tPkFl6vlmJTbSxt2iGKp-Ac_UUg.roa
File: tPkFl6vlmJTbSxt2iGKp-Ac_UUg.roa (raw, json)
Hash identifier: Ccbf5jZa1v74S9y8RmsJD3F9HqOluI11BEtcSoghoZk=
Subject key identifier: B4:F9:05:97:AB:E5:98:94:DB:4B:1B:76:88:62:A9:F8:07:3F:51:48
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0166
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tPkFl6vlmJTbSxt2iGKp-Ac_UUg.roa
Signing time: Tue 19 Mar 2024 23:55:03 +0000
ROA not before: Tue 19 Mar 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358 (0x166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 19 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B4F90597ABE59894DB4B1B768862A9F8073F5148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5a:95:3a:f1:1a:fe:77:05:4a:b9:e2:6f:44:
a0:37:2f:31:46:8e:23:51:23:2e:dd:da:f8:f1:47:
11:bb:3e:4f:b6:b5:ae:f0:75:74:94:e6:c3:e4:ba:
5c:a6:6e:b7:29:96:c9:71:48:22:90:f1:f5:dc:08:
6e:65:7a:ed:09:34:70:65:75:c0:f3:a8:44:aa:22:
9b:43:27:fe:2a:d3:de:45:a4:a8:94:23:40:18:7a:
93:51:84:c6:c3:95:a6:e2:82:5a:38:d1:93:51:77:
c4:60:d1:2c:0f:b1:1f:e1:77:8f:89:57:b6:d4:60:
62:68:fc:84:ff:42:7b:df:2b:57:3f:dd:7e:18:94:
12:97:13:55:5f:94:69:5f:3a:73:42:ca:f7:89:b1:
78:66:b0:67:c4:f4:7e:bd:02:90:44:5c:09:17:f2:
30:81:41:d8:6b:8a:e7:a0:69:a2:66:7e:24:1e:e9:
eb:0d:0c:e4:0d:66:db:46:cb:c0:98:23:56:a0:f3:
1b:be:2f:b3:b1:c6:5d:b0:8f:3a:27:fa:3a:c3:56:
f0:7c:b8:ed:2b:2a:f7:d4:bf:95:6c:fe:91:b5:e0:
ed:10:0d:09:b3:23:07:44:e5:46:55:63:01:92:5e:
58:b4:11:c8:c7:d0:e8:4c:11:9f:8f:cc:47:24:2f:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F9:05:97:AB:E5:98:94:DB:4B:1B:76:88:62:A9:F8:07:3F:51:48
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tPkFl6vlmJTbSxt2iGKp-Ac_UUg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
27:e0:c5:2d:fa:7a:6c:42:d5:87:8f:7c:ac:03:18:b9:34:d9:
51:40:27:2a:8a:c9:fd:8e:30:f3:ce:5a:47:b0:12:0b:bf:29:
88:24:53:5e:35:ad:5f:e5:53:d0:3d:a5:3d:89:f7:a0:a6:85:
01:e0:a4:6a:ce:97:5c:74:bd:fc:e0:b0:16:66:53:2b:c2:43:
e6:6d:da:6f:30:4d:f3:86:9b:53:f4:3c:70:7f:4e:5c:1d:3e:
c6:37:12:11:eb:52:13:1d:99:1b:a8:4c:e4:80:4e:aa:06:2c:
75:05:05:c7:f9:b8:19:31:ca:d9:2c:c2:30:da:73:8f:69:13:
19:65:d4:5c:64:3b:c0:3b:55:b3:9c:24:75:ce:b0:5d:c2:f2:
f9:91:4a:76:8d:ab:73:6d:9b:76:7c:4e:a9:f0:50:14:73:51:
a6:9e:1b:0c:c5:e6:d0:b3:97:6a:9d:6a:8a:19:1a:de:32:ae:
77:e4:fa:87:3e:09:3a:f3:8a:2b:23:c5:38:bb:53:33:ed:74:
6b:6c:5f:30:7f:c2:d8:1e:ae:e9:cf:63:38:42:9b:59:1d:2d:
fe:fc:9f:57:73:dc:bb:1d:f5:84:1a:54:e5:dd:03:f1:b6:ad:
c5:14:ef:f8:2c:28:cf:aa:1c:6c:f1:35:93:ad:81:f0:d7:e9:
f4:2f:f6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 05:38:19 2024 by rpki-client on console-ams.rpki-client.org