Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/wLieCjEfzBIkQbn4PXdOnj9BV78.roa
File: wLieCjEfzBIkQbn4PXdOnj9BV78.roa (raw, json)
Hash identifier: tInuNVFEKzdNde/wJQWQA+GfjkqNIRT/rYkiUV1C+6s=
Subject key identifier: C0:B8:9E:0A:31:1F:CC:12:24:41:B9:F8:3D:77:4E:9E:3F:41:57:BF
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0911
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wLieCjEfzBIkQbn4PXdOnj9BV78.roa
Signing time: Wed 23 Oct 2024 23:55:02 +0000
ROA not before: Wed 23 Oct 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2321 (0x911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 23 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C0B89E0A311FCC122441B9F83D774E9E3F4157BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:19:ad:a2:fb:8e:e1:a8:e7:87:66:db:90:a2:
b8:97:86:bc:38:e9:3f:13:4b:b3:dc:1e:a9:ba:63:
6a:82:b7:4e:f3:29:f0:c1:57:16:aa:97:43:ce:d8:
fa:ce:01:59:c9:95:db:2d:2b:ab:70:cc:f1:28:70:
72:19:3d:ed:ae:49:88:c8:d6:c3:3f:6f:ff:d4:d8:
ec:04:5b:e5:a2:ce:21:82:b1:36:5d:e4:55:9a:45:
1f:6e:4d:5c:cd:4f:54:3d:31:fa:65:ba:7f:fa:86:
e4:86:30:fa:1f:7a:fe:8d:45:4c:e4:43:6b:73:1c:
1b:4a:62:67:dc:14:28:ff:0b:3e:e4:ca:c4:21:6b:
0b:5e:a8:69:0e:00:f4:80:f7:94:41:96:1a:d3:7c:
34:91:d8:cd:2c:3b:75:16:1a:eb:53:15:02:4a:b1:
6e:4e:ef:9f:b2:0d:a5:18:b8:e6:55:1f:ec:8e:99:
b4:42:41:67:f1:1b:38:f7:e5:ec:86:71:20:fa:63:
37:b2:0a:5a:48:1c:a3:79:f6:c4:61:86:42:82:af:
6e:da:1f:01:65:8b:ee:e2:cb:d2:98:b2:51:0b:2c:
ac:77:a8:c8:82:cd:c5:e2:3f:3e:39:af:a5:36:f4:
47:e4:4e:1c:44:25:94:1c:62:62:e0:b8:5c:dd:2e:
30:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B8:9E:0A:31:1F:CC:12:24:41:B9:F8:3D:77:4E:9E:3F:41:57:BF
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wLieCjEfzBIkQbn4PXdOnj9BV78.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:15:8f:23:ef:5c:f5:38:77:a5:73:29:36:be:5d:15:7f:c7:
9a:45:ad:f5:3b:59:9f:fd:35:93:1c:ea:87:e0:55:dd:f1:15:
dc:ca:7d:52:d3:74:dd:0f:44:54:a6:f5:33:73:f3:8d:db:bd:
49:4c:94:25:67:fd:02:48:a1:29:93:3c:a4:da:10:32:7c:d5:
6c:4a:70:bf:76:c7:42:04:c9:f8:89:9b:7e:29:ac:79:08:40:
4d:8d:aa:b0:05:6b:13:f6:b2:c7:68:6d:9d:16:9a:13:5f:bd:
6d:a3:cd:ac:6e:e1:78:3c:b1:14:2e:d2:49:ca:1d:5d:71:ba:
02:30:f6:34:11:ba:69:fa:43:86:d4:9b:6a:6d:87:aa:47:21:
a6:f9:81:fa:3c:76:ff:cd:2b:e7:87:27:41:07:b5:b1:27:95:
cf:0e:30:e1:4f:98:e7:50:2b:24:ac:7e:40:81:a4:9c:70:15:
c3:20:81:d7:5b:f3:31:ad:fd:ab:0a:4d:bb:d0:82:0c:31:61:
7b:be:7e:51:28:e0:60:96:c9:56:4f:87:12:81:01:8c:b5:5d:
a7:07:67:09:a5:18:1b:a0:1d:28:ec:a3:78:30:5c:7d:61:7b:
cd:15:3a:97:20:c6:30:8a:bb:83:24:63:06:39:d4:b1:19:3d:
65:e0:ed:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 05:37:37 2024 by rpki-client on console-ams.rpki-client.org