Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/wcXPP0TJpF-ywf_R28kNm53zbTQ.roa
File: wcXPP0TJpF-ywf_R28kNm53zbTQ.roa (raw, json)
Hash identifier: ceTQRB7j4uEyaE5z4gMlzycWLNvuIFmnkeJKIKz2lCU=
Subject key identifier: C1:C5:CF:3F:44:C9:A4:5F:B2:C1:FF:D1:DB:C9:0D:9B:9D:F3:6D:34
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 03D6
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wcXPP0TJpF-ywf_R28kNm53zbTQ.roa
Signing time: Tue 28 May 2024 07:55:03 +0000
ROA not before: Tue 28 May 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982 (0x3d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 28 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C1C5CF3F44C9A45FB2C1FFD1DBC90D9B9DF36D34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:95:7a:b9:71:c8:60:79:1c:47:73:84:2f:7e:
fe:fc:41:96:fb:eb:ce:66:5c:93:e5:73:d6:78:6b:
bb:78:85:c1:b4:43:37:97:6b:2c:f1:f4:1c:0e:d5:
fb:ce:3a:86:a4:f3:fb:24:1b:ac:05:b6:ed:84:2c:
d1:d6:ed:c6:1e:11:85:10:74:20:24:29:1b:79:93:
0d:51:a1:c8:4c:ee:97:db:2b:d3:fb:b5:64:0e:56:
49:fe:92:fc:6c:7d:c8:10:86:df:b6:51:27:6d:8f:
39:6d:b0:84:04:0c:44:04:ff:c2:de:d1:4a:3f:b7:
01:4e:14:f4:fd:f1:b1:a0:11:48:a6:68:df:e2:e8:
7b:4d:60:5c:21:a7:bd:bc:20:c2:7f:81:dc:1c:87:
a4:8e:d8:0c:f5:ff:74:d9:f2:95:c7:a5:f3:4e:f4:
05:67:33:07:1b:95:d5:86:e8:91:64:e4:3e:17:3e:
f7:87:d7:1d:9e:cb:2a:48:37:fd:24:75:91:78:71:
c1:29:c0:29:de:7a:d3:10:e9:b3:5a:71:a4:10:ad:
f4:23:94:32:70:03:f6:db:79:9e:68:8f:5e:51:c6:
ae:81:a0:dc:4b:da:f2:27:00:3e:35:69:60:5a:12:
fe:74:58:80:46:e3:92:f1:55:16:70:c9:47:49:0b:
8c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C5:CF:3F:44:C9:A4:5F:B2:C1:FF:D1:DB:C9:0D:9B:9D:F3:6D:34
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wcXPP0TJpF-ywf_R28kNm53zbTQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
db:ba:3d:9d:a7:9d:16:b0:75:e2:8c:8b:c0:fb:c3:d7:a0:10:
a6:a4:06:a1:89:cf:0f:e3:cc:e7:ad:e7:05:9d:5b:95:72:30:
ae:64:75:68:3b:d9:4f:24:2c:85:e8:a7:aa:9a:05:f5:35:77:
e1:93:96:45:b6:9d:9f:cf:72:53:ac:41:38:be:24:e4:1a:8e:
34:c5:cf:c1:14:2f:c0:60:76:27:72:40:13:61:8c:41:ec:9d:
29:4f:75:b5:a0:58:bd:ab:96:64:ea:b7:b8:6e:9f:2a:c2:8b:
d9:b3:a0:df:38:06:29:bf:27:d0:d5:26:76:5a:26:33:4d:9b:
ef:a3:60:dd:55:6f:df:5c:2a:5f:33:34:9a:95:9d:40:14:fe:
52:a6:28:3c:c2:7f:fa:51:2a:36:37:b2:9b:14:a9:4f:66:23:
fd:da:d0:fd:51:dc:f7:96:cf:8b:54:2c:4d:d4:fe:62:d6:c9:
2d:8d:1c:41:d5:fb:66:94:6d:90:27:61:29:06:95:e9:d4:c0:
5c:e3:f9:7d:c2:39:43:53:62:a4:69:14:57:cd:d0:66:10:a0:
6c:c8:bc:10:98:78:6f:95:56:09:a5:8c:2c:8e:5c:02:2b:48:
ad:70:0a:bf:d7:d1:31:5a:6b:91:5b:de:e6:b9:b1:20:79:b6:
bb:38:d5:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 18:07:10 2024 by rpki-client on console-ams.rpki-client.org