Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/1wZ0k0iSfCq74_e1m7jTg3rOIOY.roa
File: 1wZ0k0iSfCq74_e1m7jTg3rOIOY.roa (raw, json)
Hash identifier: YOwsc8SvqRx2arRfyp+qhJZf3fjsceksFJtPVF0CTEU=
Subject key identifier: D7:06:74:93:48:92:7C:2A:BB:E3:F7:B5:9B:B8:D3:83:7A:CE:20:E6
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 055C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/1wZ0k0iSfCq74_e1m7jTg3rOIOY.roa
Signing time: Wed 10 Jul 2024 15:55:04 +0000
ROA not before: Wed 10 Jul 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1372 (0x55c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 10 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D706749348927C2ABBE3F7B59BB8D3837ACE20E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:95:6f:0b:df:3a:c6:b6:b2:27:55:bc:e9:31:
e7:37:22:3c:b4:e2:44:cc:0d:26:fd:b2:89:23:b0:
c9:b6:99:51:cd:63:56:61:5d:b5:ca:7c:5c:d9:46:
79:e9:0a:60:79:07:27:c9:5d:cf:b0:ce:ec:58:79:
3a:02:ca:c2:f0:f2:48:02:78:4a:6d:e3:f3:e7:c5:
1d:02:a6:a9:7a:68:25:d3:7c:fb:c5:ee:f3:d7:3a:
ef:ab:93:dd:ba:79:6b:0b:46:c9:d2:9f:da:4c:1d:
68:a8:70:b8:e2:e9:5f:be:bf:ea:41:d8:e1:cd:df:
a5:7f:ee:67:36:33:46:cf:1c:42:0c:df:a3:28:e7:
06:c3:d7:74:91:f1:57:db:c8:ae:e3:35:98:f7:74:
8f:4e:bc:49:6f:40:b0:9b:18:8a:8f:65:26:7e:88:
5c:85:bb:67:ca:cb:3c:d0:8b:34:65:da:63:e0:b3:
6b:70:ba:80:e3:aa:5e:6f:23:28:fc:b5:f9:83:92:
71:1b:04:5f:bc:f7:f2:7a:db:2d:66:59:c8:e7:66:
ff:56:e1:39:dc:2c:55:ff:5a:fb:6e:29:71:ef:09:
f1:94:fa:81:82:65:1a:28:77:b5:e0:42:28:98:5a:
49:9a:ed:36:5c:66:57:76:dd:7d:95:39:06:32:8c:
71:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:06:74:93:48:92:7C:2A:BB:E3:F7:B5:9B:B8:D3:83:7A:CE:20:E6
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/1wZ0k0iSfCq74_e1m7jTg3rOIOY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:58:3c:5a:d9:4e:27:1c:7f:8d:27:9a:00:bc:eb:a3:55:61:
04:35:92:fd:45:c9:4d:e4:90:92:7d:00:3a:48:d0:a4:98:94:
39:1e:8b:26:c0:1b:b5:d3:86:e0:73:41:7a:db:39:c4:c6:85:
65:b2:3b:fb:db:6a:0e:f9:63:d0:bc:1d:e8:c3:c1:b9:08:0e:
7e:e4:08:91:91:6c:88:48:8e:25:43:d2:10:a8:86:fe:01:21:
b8:66:d4:b6:da:77:83:93:0a:90:46:c2:3b:a1:94:74:c5:5e:
b0:79:1b:66:8e:87:e2:c5:d7:5d:d9:bf:ad:ec:94:6a:71:ab:
d9:6f:31:40:a7:d3:e1:d7:32:53:bf:70:7a:c9:5c:cb:8b:16:
48:8a:d2:db:37:db:47:bb:3d:1b:3f:d7:0a:2e:3c:1a:5b:df:
84:92:ed:71:c9:3c:a4:86:6f:a5:f9:4a:85:cd:33:55:17:c9:
9e:f7:a1:5b:d3:af:51:16:e1:0d:b7:e3:ff:56:3d:ca:a6:be:
ae:3f:8f:05:ae:34:14:87:f4:03:d8:f8:05:0c:a6:21:e5:55:
aa:c2:45:53:36:a4:d8:cd:c6:c8:39:96:b3:e5:51:98:ab:e8:
37:83:f7:c3:6a:bd:6e:7f:17:91:62:ee:73:a4:62:0f:c1:7d:
a1:b2:24:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 21:22:00 2024 by rpki-client on console-fra.rpki-client.org