Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/4Qo4moK-dw0611Zszcro9X40mjg.roa
File: 4Qo4moK-dw0611Zszcro9X40mjg.roa (raw, json)
Hash identifier: cAsF0/w304kvZOrpJG2Vk3drzquIQjSzeir8aOE7LEY=
Subject key identifier: E1:0A:38:9A:82:BE:77:0D:3A:D7:56:6C:CD:CA:E8:F5:7E:34:9A:38
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0595
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4Qo4moK-dw0611Zszcro9X40mjg.roa
Signing time: Tue 16 Jul 2024 23:55:04 +0000
ROA not before: Tue 16 Jul 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1429 (0x595)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 16 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E10A389A82BE770D3AD7566CCDCAE8F57E349A38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d6:41:78:29:f3:e6:c5:d5:17:c1:e0:7d:49:
87:33:29:01:6a:49:00:bf:82:ee:f9:06:03:40:87:
8f:5c:7b:9c:a2:92:d0:8a:83:71:73:ba:9b:58:f9:
32:4e:29:85:e5:82:9e:b7:54:f4:18:5b:30:35:50:
ea:b5:1f:c1:bb:b4:ff:62:ad:94:20:6f:42:57:87:
3d:0a:10:6a:f2:5c:2a:c9:2d:8a:c7:a1:fe:87:03:
98:95:67:80:31:55:34:c5:39:ee:aa:cd:e8:bb:cc:
2d:c5:1d:2d:c8:44:3b:9d:ce:c0:31:83:40:6b:1d:
56:90:e5:52:35:bb:4f:60:f5:17:87:20:0b:dd:aa:
d5:67:19:7f:6d:75:9d:5a:14:28:63:61:98:eb:80:
32:cb:fe:a3:22:9b:b4:9a:48:00:ae:be:89:47:93:
a0:56:b4:cc:d7:0b:58:ef:ce:a9:d6:a4:ba:8e:1a:
75:7e:4b:60:e6:92:34:c4:63:32:71:8b:65:fd:f4:
b9:04:89:7b:88:b2:6b:1b:b3:78:5e:7e:51:6d:dd:
f4:01:7a:3c:82:7e:5d:63:24:36:dd:b4:d4:e2:63:
a1:37:aa:2a:26:24:ed:9f:80:2d:c3:93:7e:3e:c3:
1d:f5:e8:3d:32:81:52:6e:40:76:18:82:9b:33:b3:
14:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0A:38:9A:82:BE:77:0D:3A:D7:56:6C:CD:CA:E8:F5:7E:34:9A:38
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4Qo4moK-dw0611Zszcro9X40mjg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:d4:ab:1e:fc:80:16:e6:8a:04:a6:c1:ef:a8:e2:c0:93:72:
d4:fe:88:f6:ad:8c:96:9e:8d:6d:57:64:61:33:0c:b5:8f:96:
29:d1:d0:9e:de:26:cf:91:35:cf:52:c3:30:68:6c:c2:fe:0e:
c8:8d:74:44:db:d7:13:94:89:da:95:29:3e:29:15:3e:39:62:
dd:26:31:0b:c9:e2:7f:7d:33:9b:36:60:34:32:ac:2a:71:ee:
12:c7:39:b3:b8:aa:41:11:03:73:4d:f1:8a:d0:79:2e:9a:15:
20:17:96:79:1f:30:ad:77:dc:5b:85:b7:40:c5:ec:18:19:e8:
01:8b:33:e2:64:95:5f:f5:46:17:77:84:0b:08:52:1a:26:ef:
4c:29:ed:d5:97:07:f3:ac:a8:5b:95:26:b4:81:73:84:43:f8:
f8:e3:3a:19:22:ca:4b:25:db:0d:ee:3c:e0:c7:6a:e2:c6:c3:
7b:f7:81:5f:1d:33:11:f0:1a:e2:c1:a6:67:b7:31:4b:4a:20:
92:01:a9:3a:49:72:6d:2f:f1:9b:8e:4c:5b:13:58:58:97:cd:
c6:c5:ca:f6:95:47:e1:9d:8e:6a:6e:5e:8c:97:12:06:0a:d8:
d4:1b:c7:9e:7b:b9:22:a6:6c:e8:fd:2f:b8:a6:96:d5:80:83:
91:32:9e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 06:24:12 2024 by rpki-client on console-fra.rpki-client.org