Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/uR6lLhIW_FKfGe-JVzAehhw7ZPs.roa
File: uR6lLhIW_FKfGe-JVzAehhw7ZPs.roa (raw, json)
Hash identifier: 7kgo2O/33XuipmxrH4DBUEr+6DQ7rU4vvFTixwnPojU=
Subject key identifier: B9:1E:A5:2E:12:16:FC:52:9F:19:EF:89:57:30:1E:86:1C:3B:64:FB
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 58
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uR6lLhIW_FKfGe-JVzAehhw7ZPs.roa
Signing time: Sun 18 Feb 2024 23:55:03 +0000
ROA not before: Sun 18 Feb 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88 (0x58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 18 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B91EA52E1216FC529F19EF8957301E861C3B64FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0a:c1:61:7c:11:3d:6a:7c:eb:a4:d7:1e:a8:
2d:81:72:a0:75:95:02:fb:0d:8f:8d:fc:08:57:55:
d7:3e:5c:7e:98:da:28:0c:ee:61:fe:6d:93:a8:b5:
7b:f2:34:35:63:ff:f3:0c:36:1b:05:6c:d8:4b:89:
1f:1e:5e:8f:2d:9f:40:26:c1:6c:2b:86:d5:20:2d:
4b:30:2e:f5:a4:30:89:9a:d2:90:cf:74:fa:65:90:
59:1e:d4:08:30:df:39:29:c2:5b:72:36:3b:3f:02:
22:9a:eb:86:51:4f:0f:7c:18:91:17:40:69:f0:60:
3a:09:4b:b2:9b:39:fd:dd:47:d0:7d:7b:b8:7f:e9:
20:d5:58:1a:09:b6:57:e0:8a:2d:73:a8:4f:33:4e:
60:a3:ed:75:71:93:f7:12:9b:dc:19:06:42:eb:f8:
6d:d2:00:7a:ec:85:f4:4b:b2:aa:1f:bf:2f:8f:18:
e4:df:86:34:39:5d:51:5d:d6:4a:3b:17:0f:08:b9:
d2:d2:92:06:48:80:b4:39:f7:74:2a:0a:f3:46:fb:
2d:f1:f0:52:c3:ac:2f:f9:2f:0b:a7:cb:80:9a:87:
7f:12:59:24:cb:73:12:81:cb:36:e0:80:ef:c7:41:
81:54:41:11:27:5a:b0:7e:e6:00:b8:72:55:61:d3:
b9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1E:A5:2E:12:16:FC:52:9F:19:EF:89:57:30:1E:86:1C:3B:64:FB
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uR6lLhIW_FKfGe-JVzAehhw7ZPs.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
77:4d:f5:f2:91:64:fd:94:5f:3c:21:d9:39:69:08:a8:d2:bd:
23:e0:db:96:82:2d:d2:59:8c:ec:a9:a0:93:29:2f:87:0f:5c:
9e:cf:8f:bf:10:52:6a:1e:f2:51:29:e1:b9:d1:30:ec:3a:10:
30:11:89:45:d9:92:28:b6:c8:1a:8f:cf:bf:06:fc:8e:6f:34:
32:05:aa:81:96:a4:5e:e7:1f:4b:27:6f:01:9b:1c:86:c7:a0:
f5:43:29:b1:46:0b:d1:2f:e4:10:c9:30:0f:f0:d0:7f:55:c8:
67:28:d1:aa:4d:15:51:d0:80:c0:87:91:1d:04:da:46:68:2b:
65:46:1c:8a:e7:57:84:e2:37:16:20:dc:77:6a:57:33:5b:db:
ba:21:70:ff:7c:b7:83:38:6a:2d:01:d4:68:0e:1f:ef:e5:0f:
63:9a:d9:bf:1e:f7:2f:81:fd:83:a8:2c:9f:20:ea:08:81:9f:
c3:68:b2:58:f5:2c:04:bd:73:46:ac:09:41:64:da:16:2f:0d:
89:9b:ee:82:52:c2:14:b2:aa:b2:5f:13:b5:24:c4:c4:b5:16:
45:dd:4e:92:4e:6f:56:2d:aa:17:33:cc:62:2a:79:9a:d1:95:
0b:1c:34:15:16:e6:1f:e5:d7:b2:86:54:d4:f7:ec:83:48:58:
97:e9:a8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 19 06:49:59 2024 by rpki-client on console-ams.rpki-client.org