Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/uXTRrMp-HoOiJXAPLiVctwcNO2A.roa
File: uXTRrMp-HoOiJXAPLiVctwcNO2A.roa (raw, json)
Hash identifier: 4a2HlvntgsTgRM62zXKaYMpm7NjlWaCcII6wZUAc/80=
Subject key identifier: B9:74:D1:AC:CA:7E:1E:83:A2:25:70:0F:2E:25:5C:B7:07:0D:3B:60
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 09E0
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uXTRrMp-HoOiJXAPLiVctwcNO2A.roa
Signing time: Fri 15 Nov 2024 23:55:04 +0000
ROA not before: Fri 15 Nov 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Nov 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2528 (0x9e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 15 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B974D1ACCA7E1E83A225700F2E255CB7070D3B60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f1:96:0a:52:2f:56:3c:85:42:b4:f9:85:bd:
3c:5c:e7:80:fe:83:e6:5a:37:07:4e:66:78:21:2e:
18:07:8a:55:64:e7:0f:32:5e:12:68:cf:65:db:fb:
06:30:11:a6:76:44:e0:09:60:1d:ab:e7:cd:00:6c:
4c:16:4a:c9:b6:7f:d0:45:ed:ae:40:28:e6:da:95:
6d:17:6c:2a:97:ce:72:de:20:c1:72:83:a1:ee:35:
d8:57:a3:f8:37:85:29:e6:4c:a1:1e:dd:9b:c4:12:
b6:0e:07:47:b2:9c:89:9d:42:a2:5a:70:34:8e:de:
20:ae:69:2b:b4:c4:0a:a5:7f:e6:41:f9:77:c2:81:
d3:ab:bb:d2:5f:6b:74:d9:d5:06:81:0e:8f:6a:80:
1f:d5:ab:32:5b:7f:bd:75:6a:0f:3e:ef:06:bd:0c:
01:2b:98:ae:65:f7:0f:7a:99:50:10:bc:f3:68:d3:
a0:70:c2:80:18:c6:ba:ac:10:fb:5f:92:ab:38:11:
7a:46:a1:5c:4a:62:78:44:90:f2:e3:a6:18:41:c7:
a0:1a:23:a6:41:a3:8b:91:48:a5:be:77:87:b9:b4:
e3:f0:43:e0:c0:9e:0e:19:8e:7d:88:2d:1a:90:e1:
a3:3e:67:c9:90:d9:ab:60:0f:dd:1c:f7:00:db:3c:
18:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:74:D1:AC:CA:7E:1E:83:A2:25:70:0F:2E:25:5C:B7:07:0D:3B:60
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uXTRrMp-HoOiJXAPLiVctwcNO2A.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:07:9d:53:d7:3a:08:82:fd:06:37:75:82:a8:db:16:a0:d3:
f9:85:1f:b3:2c:ad:31:3c:d0:b6:0d:9e:49:29:f3:d2:92:31:
88:41:3e:56:b2:87:38:4a:c8:d4:5d:91:9c:b2:f8:7f:d3:c5:
01:84:8a:0c:f5:1d:d3:0b:8e:24:3a:39:1d:ba:a4:22:68:51:
ad:d3:1f:50:09:c0:07:7b:24:43:d7:3c:af:b7:cd:89:80:fe:
8a:d6:99:3f:34:3f:bd:99:38:dc:07:f9:79:79:c8:8f:ca:ff:
dc:e7:b0:86:c3:a3:f2:07:d1:a8:40:e9:97:9e:bb:fe:62:f3:
84:1a:61:cb:5d:85:9f:d3:92:36:c1:0e:07:e9:47:5f:10:b5:
e1:8d:e6:ee:f5:b7:22:03:a5:60:1f:53:07:b5:7b:6a:51:46:
3e:ee:67:39:8f:bc:5f:65:93:ae:8b:fe:aa:ac:a1:3f:2e:c5:
15:42:7b:2b:e2:a3:bd:15:21:82:5f:f0:54:d5:fb:e9:cf:fc:
36:67:05:4b:8c:0d:cc:ef:e6:56:d7:75:19:b6:f5:d4:72:3c:
f7:85:cf:32:45:5f:a4:9a:c6:4e:ab:d5:46:1f:1a:77:1d:43:
03:c9:ff:82:31:39:6f:67:c6:de:d4:e9:8c:b5:15:7e:d2:a3:
ff:1a:63:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 16 06:36:35 2024 by rpki-client on console-fra.rpki-client.org