Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/4fpg7qbmhz8D7TalulwOYc-JVpY.roa
File: 4fpg7qbmhz8D7TalulwOYc-JVpY.roa (raw, json)
Hash identifier: U+IPk5mcLivlOCHCKnj4ph6qN3xYlG8ALVN9nzKS3pI=
Subject key identifier: E1:FA:60:EE:A6:E6:87:3F:03:ED:36:A5:BA:5C:0E:61:CF:89:56:96
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04D2
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4fpg7qbmhz8D7TalulwOYc-JVpY.roa
Signing time: Tue 25 Jun 2024 07:55:03 +0000
ROA not before: Tue 25 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1234 (0x4d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 25 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E1FA60EEA6E6873F03ED36A5BA5C0E61CF895696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:aa:cb:a4:61:13:6c:6e:25:0a:d3:81:74:13:
f3:bf:7b:1b:00:cc:14:bd:d9:b2:df:c4:86:85:61:
00:70:ee:90:a2:53:25:c3:b8:19:cb:30:34:03:fd:
39:1f:20:f2:b1:8a:6c:9f:d9:f9:4c:1a:1c:a3:e5:
7e:67:c9:dc:7d:45:49:c7:54:64:75:23:e1:03:4e:
bc:0d:c4:63:af:bf:bd:2a:72:ed:9d:a1:76:26:4c:
6b:ea:a1:b9:67:9a:f9:78:46:3a:f6:11:04:8f:37:
51:9b:57:36:51:7f:a0:47:5f:9e:a4:55:20:72:9b:
53:ed:85:4d:23:72:bf:e1:76:47:2d:cb:d1:2a:be:
0b:08:b0:c3:21:82:37:5d:e6:e1:7a:ea:60:60:d9:
d3:5d:6f:9d:f9:e3:be:37:e7:aa:28:b8:91:0d:87:
08:f6:77:ad:94:9f:f1:81:de:6e:75:70:c8:7c:66:
f3:73:e0:db:77:c9:a3:b3:b4:65:8d:ac:95:f8:97:
ae:b6:ca:1c:a2:89:40:cf:44:7f:43:ec:ce:91:5f:
7e:63:29:03:a1:9b:4f:b0:28:a3:c7:08:e9:1e:3a:
32:81:3c:59:0c:db:ba:eb:f1:93:cb:86:9f:ef:7b:
c3:18:c6:00:9c:94:3b:ff:3e:7c:54:64:23:29:76:
9e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FA:60:EE:A6:E6:87:3F:03:ED:36:A5:BA:5C:0E:61:CF:89:56:96
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4fpg7qbmhz8D7TalulwOYc-JVpY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:a8:b8:c2:39:ac:fb:5a:05:7b:e9:d5:e3:15:1c:c2:b3:38:
dc:69:2b:b9:e9:18:ed:4c:13:7a:02:4b:61:68:86:11:8a:26:
1e:50:76:3d:ce:71:82:4f:e1:00:7a:9d:6a:2b:9e:63:e1:25:
4d:6e:f4:62:2b:80:f7:c2:0c:20:d0:76:14:13:d4:38:7f:50:
82:3d:bc:3c:52:fb:db:21:05:59:46:37:a4:1d:19:3b:f2:67:
8f:92:4e:1f:30:f9:e0:8f:9f:d4:07:b7:7d:ff:00:8b:f9:00:
e1:f9:e6:af:bf:d2:30:e9:8e:d2:a1:8c:46:2b:f1:d0:da:4d:
76:2c:ba:3d:1c:46:72:3f:33:35:f6:e1:f2:99:37:d6:4a:6e:
a2:cc:55:08:bb:6f:9d:ec:8d:d1:f5:33:03:01:d4:4d:44:d1:
c4:9a:df:08:00:dd:de:82:b8:43:3a:7f:03:6f:5a:77:27:c8:
1a:c2:87:fd:2c:1f:f6:4c:e2:25:04:89:f4:77:b7:96:82:5a:
8c:b0:21:36:fe:91:42:e3:62:49:04:8a:50:01:a2:7e:d2:d4:
dd:bd:39:fa:1c:ed:56:7c:86:21:6f:db:4e:cb:46:3f:00:55:
b7:9f:79:aa:c0:5b:b5:0a:30:dc:a7:61:9b:d2:fc:87:25:f8:
c1:a7:92:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 15:11:13 2024 by rpki-client on console-fra.rpki-client.org