Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/tivNdQNt5Uh2RjNTE8DpuosS0AY.roa
File: tivNdQNt5Uh2RjNTE8DpuosS0AY.roa (raw, json)
Hash identifier: l2Q7bKxWZXrOELLIEsOtUPA/WyYorN0hz2UGWAv3Pkw=
Subject key identifier: B6:2B:CD:75:03:6D:E5:48:76:46:33:53:13:C0:E9:BA:8B:12:D0:06
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: B8
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tivNdQNt5Uh2RjNTE8DpuosS0AY.roa
Signing time: Thu 29 Feb 2024 15:55:03 +0000
ROA not before: Thu 29 Feb 2024 15:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184 (0xb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 29 15:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B62BCD75036DE5487646335313C0E9BA8B12D006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:a5:66:6d:cb:eb:36:4d:a4:79:6e:20:d8:
ce:ae:c7:b2:17:f2:1e:42:c8:a8:1c:17:06:58:5e:
cd:06:d3:f9:bb:fd:b6:6a:86:cb:79:c0:14:0a:ef:
dd:8c:50:2d:e1:c2:6e:3b:63:a5:fa:7c:00:0c:b4:
42:ce:24:52:4a:ea:56:4c:45:de:3e:36:54:bb:75:
42:ef:bf:ea:60:ef:4c:74:2f:b0:f4:3f:20:e7:f4:
77:99:8c:95:37:52:9e:aa:56:4f:8d:eb:eb:da:9e:
3e:53:54:5e:30:f5:da:f9:52:8d:0d:92:e8:6f:78:
6b:1a:48:f1:68:11:cb:2d:bf:7f:e8:49:72:6e:6c:
a1:79:ed:5d:f2:17:aa:d6:d1:64:0c:5d:74:f6:77:
1c:77:73:f8:ed:f1:12:c4:0e:cc:6f:67:a9:2a:8a:
8d:2f:96:a0:20:ee:db:d0:d0:64:f7:8c:94:28:81:
fb:33:38:d0:01:97:1e:94:69:df:c6:43:aa:e1:7e:
54:bc:b4:d0:88:b4:d9:da:f4:88:68:61:9c:66:e6:
06:4b:e5:a4:05:76:5b:71:79:2c:1d:1b:de:6d:fe:
c0:72:67:68:cb:de:cd:8f:99:47:59:f2:1d:d7:ae:
7b:27:92:a6:6e:34:9c:fd:e3:b6:f6:38:4b:87:b9:
0a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2B:CD:75:03:6D:E5:48:76:46:33:53:13:C0:E9:BA:8B:12:D0:06
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tivNdQNt5Uh2RjNTE8DpuosS0AY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:eb:75:18:6a:37:2a:da:2f:0d:45:2f:11:5f:3f:2b:8c:45:
9a:56:70:76:90:98:9d:65:58:b3:57:a9:f9:77:c0:e2:d9:8d:
74:0b:ab:a9:2d:13:89:c3:1f:68:30:51:a0:0b:09:71:a4:45:
ee:9f:21:7e:6c:19:46:b0:5b:5c:47:23:1b:ef:f1:14:ce:85:
5a:74:95:fd:c1:36:a5:07:73:5f:89:dd:b9:94:78:6e:82:20:
59:93:3f:13:77:1c:29:da:49:81:e3:c7:d2:bc:27:e7:e4:19:
53:81:38:37:53:76:e3:42:03:38:53:99:42:3b:52:03:30:6f:
6a:9c:df:3c:04:f9:fd:5a:a9:b5:95:dd:76:52:55:24:24:e4:
b5:39:d4:dc:f6:1c:c5:85:f5:e9:99:46:73:67:09:43:fd:6d:
61:7c:3a:95:b1:9a:97:35:cf:19:76:5b:b3:80:9c:c0:14:cd:
85:25:7d:96:df:8a:82:43:bf:75:f1:23:05:3f:ee:38:19:84:
b3:13:9a:e3:e3:d6:fa:9b:8b:8a:a5:4a:ff:16:f1:65:e1:f2:
89:a4:a9:29:e5:38:f7:fb:e9:8c:24:9f:21:79:e7:66:a0:fa:
0b:89:f2:09:59:fe:d3:bd:d5:18:77:77:e0:e8:2d:61:f0:ca:
a2:59:47:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org