Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/4XixYXwuy4l7LlP9r6lXa7kZya4.roa
File: 4XixYXwuy4l7LlP9r6lXa7kZya4.roa (raw, json)
Hash identifier: Jti/GWoeaQRrtjWJSv1epLFZSkHosFF/Mz+1wvOjvuA=
Subject key identifier: E1:78:B1:61:7C:2E:CB:89:7B:2E:53:FD:AF:A9:57:6B:B9:19:C9:AE
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 048A
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4XixYXwuy4l7LlP9r6lXa7kZya4.roa
Signing time: Mon 17 Jun 2024 07:55:03 +0000
ROA not before: Mon 17 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jun 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1162 (0x48a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 17 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E178B1617C2ECB897B2E53FDAFA9576BB919C9AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e5:29:05:29:61:59:43:7b:44:01:b9:a2:61:
7f:fc:0f:f1:05:e5:78:b5:11:79:f3:a5:8f:7e:e4:
5e:cd:dc:3c:b2:e8:84:dd:7c:5a:68:f5:04:24:c9:
6e:bf:0f:56:8d:06:4c:ad:9f:81:63:98:f3:85:03:
f3:c2:32:63:c1:67:ac:55:4e:3a:84:b0:cd:e1:f2:
6f:bf:8f:fe:0a:9c:d6:15:72:ac:56:ed:b5:4d:c5:
73:fc:78:61:ba:0b:c9:2d:8f:50:2b:70:59:64:4d:
ab:9b:9b:00:ae:e0:82:b4:63:3f:2c:4b:4d:ee:a7:
dc:94:5b:cb:60:5c:96:5e:b5:9c:52:46:06:86:e4:
d5:12:a6:88:1c:0a:ab:42:35:a8:e5:1f:53:fc:61:
97:53:b6:c5:38:09:78:6f:dc:60:00:19:ee:65:99:
ed:26:6f:d8:40:c3:1b:1a:d4:fc:f3:65:a4:df:be:
24:5c:2b:63:1d:69:ee:a1:b7:aa:ae:59:92:59:18:
7b:3f:71:46:2c:13:38:69:69:08:ff:72:47:16:a5:
28:7f:fa:52:ef:fe:13:82:01:17:d6:98:65:2d:23:
15:a3:7c:74:bb:c5:56:71:b8:d0:25:b0:7d:39:57:
d3:1a:57:79:be:ca:11:e0:c3:58:97:01:d3:00:94:
c5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:78:B1:61:7C:2E:CB:89:7B:2E:53:FD:AF:A9:57:6B:B9:19:C9:AE
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4XixYXwuy4l7LlP9r6lXa7kZya4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
66:72:24:62:8e:7f:a7:7f:49:85:d5:d7:de:31:d1:a7:ba:80:
b6:40:53:b2:13:37:76:d4:d2:7b:e5:45:5b:45:9d:74:88:8b:
52:45:e1:4d:1c:aa:2f:bd:29:c8:50:e6:68:b1:3e:34:b4:45:
e9:1b:88:28:fc:2d:bd:da:5c:71:4e:02:24:37:a2:69:c2:72:
0a:03:a3:5c:14:58:cb:a5:1e:f7:f6:9e:52:a6:87:2a:93:ef:
85:9c:2d:f2:f2:ba:e5:7d:e4:f9:41:77:dd:c1:7e:5d:17:2a:
2d:4c:db:50:1f:fd:c3:87:da:fa:07:20:d3:22:18:dd:9d:31:
96:ff:f4:cd:56:9e:24:45:bb:49:c0:b0:98:2f:b8:b2:7d:c2:
b2:ea:44:7f:b7:48:01:b6:d3:54:f7:34:8e:2e:cd:db:1c:94:
c9:c8:48:e6:82:fa:45:0a:c9:27:26:bd:90:c2:09:8b:5c:ff:
81:98:08:6b:d1:81:4d:e8:67:b2:4e:0c:be:39:61:da:69:00:
ff:48:cb:ea:b0:9e:5a:ba:c2:22:d2:4d:e8:a0:5d:e1:c8:ce:
f9:ca:27:61:d1:8a:4d:ca:57:d2:95:0c:c8:b0:d1:69:ba:0a:
00:d2:4a:31:fc:0e:ec:f2:b5:0e:a2:c0:22:75:b1:92:ee:9c:
77:2f:06:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 15:16:12 2024 by rpki-client on console-fra.rpki-client.org