Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/xG_EJqvwU2olt7lQfRQ3EQHEycM.roa
File: xG_EJqvwU2olt7lQfRQ3EQHEycM.roa (raw, json)
Hash identifier: xnHceQnIu3/XTTy492V9PubZsHSYyAx3OnrHcvsM9A8=
Subject key identifier: C4:6F:C4:26:AB:F0:53:6A:25:B7:B9:50:7D:14:37:11:01:C4:C9:C3
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04D8
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xG_EJqvwU2olt7lQfRQ3EQHEycM.roa
Signing time: Tue 25 Jun 2024 23:55:02 +0000
ROA not before: Tue 25 Jun 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1240 (0x4d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 25 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C46FC426ABF0536A25B7B9507D14371101C4C9C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:6e:d8:95:bd:99:b2:d2:73:a0:f0:d7:40:
02:71:e6:cb:04:96:40:94:64:33:ae:61:f4:04:dd:
a4:3a:3d:f7:46:a6:f8:ff:6a:69:05:78:cc:21:41:
ac:94:2e:00:cf:a6:d2:e8:07:e0:59:d4:8c:a7:96:
61:2e:90:44:f8:16:33:a6:e6:bd:8f:ce:cc:9c:8c:
7b:cc:77:5d:00:fd:dd:23:50:6f:c6:10:2c:16:9c:
76:9a:9c:d0:22:f0:dc:20:24:cb:d0:71:56:70:78:
3a:e7:aa:66:57:07:a2:47:f2:c5:18:c9:17:2f:4e:
9e:d6:35:70:c1:d4:fa:f0:d1:9c:4d:7d:a7:b8:35:
97:62:3e:92:7d:4b:9a:36:84:28:52:f4:0c:7a:14:
6b:74:d8:69:62:ea:5f:80:df:b3:76:98:7a:8a:bd:
d0:72:83:77:65:f0:43:00:04:a9:48:47:df:2c:ab:
c5:cd:09:ac:c5:07:e7:6a:3c:46:c1:c3:d2:aa:0d:
cc:b2:89:ec:99:03:d2:09:c3:d6:00:1b:97:c8:06:
32:11:aa:16:48:1f:d6:e0:68:83:f8:05:1c:56:34:
29:db:be:f5:69:ea:78:cc:dc:c1:17:1e:2c:e3:ac:
81:71:4f:cc:86:04:2d:d5:64:59:d1:92:67:c0:ab:
04:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6F:C4:26:AB:F0:53:6A:25:B7:B9:50:7D:14:37:11:01:C4:C9:C3
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xG_EJqvwU2olt7lQfRQ3EQHEycM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ba:67:36:46:b9:68:41:70:3d:f9:97:98:c8:67:ac:66:c5:
a7:fa:39:c2:93:fa:0f:af:25:24:99:02:a8:d4:4b:2e:93:06:
93:58:28:c1:22:2d:67:7a:89:e3:24:0a:db:09:a0:79:f1:e2:
6e:72:3b:09:d5:b8:7b:ff:1a:1a:d7:71:b2:c1:0f:20:26:66:
79:bc:a8:c1:dd:01:94:2c:41:33:74:23:2a:1a:ff:7b:39:9a:
9d:ce:86:c5:79:7b:5f:21:d3:df:7d:ac:28:84:dc:d5:ef:b5:
04:76:70:2d:44:72:26:97:0c:57:19:eb:ac:4d:dd:b4:81:38:
8b:e6:03:d6:4f:92:9e:93:0c:65:38:5f:bf:5d:ae:de:7a:0e:
0c:36:90:c4:81:ad:d4:6c:dc:e3:e5:42:bd:ad:72:f6:63:a6:
d5:00:2e:1c:c3:04:a2:fd:55:72:67:69:9c:f9:43:1e:3e:6f:
b2:fb:5e:37:c3:1c:29:e5:e6:f2:6f:07:3d:26:a3:13:45:76:
23:2c:99:4b:73:d5:5f:25:e0:df:8d:68:1a:1a:06:47:81:8d:
f6:93:4a:7d:06:41:bd:08:82:0c:27:12:43:0e:57:41:be:40:
e5:43:1e:d0:4f:90:8e:32:8f:a4:32:0a:43:88:be:21:e1:8f:
69:ce:07:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 10:20:58 2024 by rpki-client on console-ams.rpki-client.org