Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/2LeCGa7Mmw5ROT9XBOjH7yEMefI.roa
File: 2LeCGa7Mmw5ROT9XBOjH7yEMefI.roa (raw, json)
Hash identifier: 3yFc18ewqrKz9Vg+qJEn1WJ4lvQetL0BFFFTMAZ0LTA=
Subject key identifier: D8:B7:82:19:AE:CC:9B:0E:51:39:3F:57:04:E8:C7:EF:21:0C:79:F2
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04C6
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2LeCGa7Mmw5ROT9XBOjH7yEMefI.roa
Signing time: Sun 23 Jun 2024 23:55:03 +0000
ROA not before: Sun 23 Jun 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1222 (0x4c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 23 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D8B78219AECC9B0E51393F5704E8C7EF210C79F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2d:1e:ff:7d:ed:70:5d:f8:f1:72:65:cd:f0:
33:59:e0:13:13:8c:be:ac:2d:77:58:b2:8f:25:90:
9f:bc:2f:d0:12:0f:a1:fc:a5:4b:e4:c5:e4:4a:5e:
da:70:32:67:16:1a:e7:b8:8b:de:f4:48:bc:a2:82:
08:6b:41:54:ab:a1:16:f2:0a:7a:7a:8e:8b:6b:c0:
70:f4:6c:87:53:56:43:19:08:91:d6:9a:65:f3:7b:
63:19:fe:a0:ea:7c:31:d7:a7:cc:7a:a1:62:36:15:
31:87:ff:f7:3e:ae:3c:6c:d5:00:b9:88:14:14:ee:
c2:53:63:fe:6a:8c:d4:c8:2a:36:cb:02:20:cb:a8:
d3:ae:f8:6c:2c:ae:31:26:c1:e5:b7:52:bf:bb:4e:
fb:6a:23:28:35:9b:a4:25:d1:35:e0:da:09:65:d2:
81:e4:54:47:80:d1:0b:a3:e9:2b:1f:9a:d0:d7:a8:
72:8f:3c:d1:43:94:ad:bd:f9:29:d7:b6:a8:c7:cf:
d1:33:01:9c:79:e0:91:e3:1e:10:5b:01:1a:20:3f:
af:9c:df:66:70:61:0b:64:b5:43:f7:4c:2d:d9:8f:
b5:4c:83:fb:67:c1:cb:04:97:e3:71:b5:b2:58:4b:
63:f9:07:b9:4a:2f:4c:8f:59:e7:83:a1:0e:03:7d:
b4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B7:82:19:AE:CC:9B:0E:51:39:3F:57:04:E8:C7:EF:21:0C:79:F2
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2LeCGa7Mmw5ROT9XBOjH7yEMefI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:e7:ad:8e:17:3f:3c:b1:99:f4:cc:56:ae:3a:a6:75:ab:5a:
e7:b3:56:75:7a:36:4a:62:fa:1e:24:1a:47:a7:7b:7a:86:31:
99:50:2f:4f:9d:21:8b:96:36:ab:82:1d:47:07:35:34:c0:49:
7b:2c:cc:ae:78:8a:02:3b:93:5d:81:b0:9f:4d:2b:5b:3a:e6:
4c:7b:c9:08:7a:43:d4:da:5a:26:31:87:20:b1:b8:72:60:a7:
27:54:65:58:c1:dc:88:77:b5:74:a1:e5:5f:5d:5c:73:f2:6f:
df:e3:3c:db:ba:64:fe:6b:40:52:25:71:a2:d9:f5:41:4c:19:
2a:03:65:a7:f0:be:2f:95:71:9a:7b:23:e2:44:52:b9:bf:ca:
35:31:a1:49:5f:26:ed:1e:6a:b3:f7:be:9c:69:67:d5:aa:3f:
b2:a6:36:c9:33:dc:22:6b:93:55:6d:f9:13:cc:d8:62:fc:0e:
68:9a:64:27:35:2d:d6:59:7b:61:48:d3:a8:b5:15:09:63:f7:
c6:7a:51:cc:81:0e:6e:b4:d9:e9:4c:06:16:93:bb:54:79:2b:
d1:c3:a2:5e:77:93:c9:48:61:38:d7:72:f4:74:5f:84:67:c9:
01:de:ce:cb:38:96:3c:ec:cc:ec:01:fb:7b:f6:54:00:5a:cd:
20:43:72:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 06:25:46 2024 by rpki-client on console-ams.rpki-client.org