Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/50XgdU-jpvUMObvi3PzFdisHquU.roa
File: 50XgdU-jpvUMObvi3PzFdisHquU.roa (raw, json)
Hash identifier: P/DfP7T2mT/5N4rmzjILuhEznmCeqMoNG52U8LNcqH8=
Subject key identifier: E7:45:E0:75:4F:A3:A6:F5:0C:39:BB:E2:DC:FC:C5:76:2B:07:AA:E5
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0652
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/50XgdU-jpvUMObvi3PzFdisHquU.roa
Signing time: Tue 06 Aug 2024 23:55:03 +0000
ROA not before: Tue 06 Aug 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Aug 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1618 (0x652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 6 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E745E0754FA3A6F50C39BBE2DCFCC5762B07AAE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:91:cb:15:9e:67:e3:b3:08:f5:61:c9:a0:bd:
7a:64:7d:5d:c6:8d:e6:61:8b:9b:f8:9e:d8:62:9a:
77:fd:d3:5d:61:77:f8:15:ea:ac:30:58:a4:5e:23:
dd:e2:b0:38:11:8f:05:da:ed:8a:a3:ff:4f:9c:e0:
8f:03:1f:18:37:59:13:ee:fd:87:6e:74:43:de:f2:
be:83:dd:0f:72:67:89:ec:f9:41:61:a9:27:c4:98:
71:ad:4f:d3:7d:f2:35:58:c4:16:02:ce:bb:fa:33:
97:dd:c0:17:6a:0d:a6:d1:a5:1d:f6:bd:5d:48:78:
f0:2e:68:5f:8b:1d:d3:a5:9e:52:81:0d:12:83:b3:
12:e4:a8:87:84:b5:bc:14:97:b4:b1:75:55:a2:ed:
0c:cf:28:c8:d5:27:48:f7:c6:d8:44:6b:c6:39:da:
04:9f:f3:75:a9:05:e5:82:59:75:a2:df:2c:d2:f6:
39:91:a9:44:bd:ee:5e:80:a6:27:ec:ff:54:09:84:
ea:ec:b8:2f:9a:55:bd:49:67:fd:15:fa:c7:9d:87:
0a:7a:61:eb:27:57:2c:42:a0:cf:5a:9e:fd:fe:9a:
b9:6f:a1:72:0e:5a:b1:5e:43:62:00:04:6e:2e:57:
a1:e6:71:c9:ae:2b:e7:bb:f3:89:0d:60:32:17:ca:
7d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:45:E0:75:4F:A3:A6:F5:0C:39:BB:E2:DC:FC:C5:76:2B:07:AA:E5
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/50XgdU-jpvUMObvi3PzFdisHquU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:6d:25:c7:07:48:92:2a:75:46:28:f6:c4:56:94:c9:b8:32:
f6:93:31:d0:53:dd:ec:85:58:7b:05:37:15:bd:62:1b:34:d3:
cc:11:d1:7f:a9:42:fc:92:c2:c3:4e:1e:92:4a:85:bc:92:36:
db:a6:d3:b5:53:e1:e4:4d:4b:b4:4c:91:26:04:69:b2:54:70:
8c:ab:0b:f6:6a:ab:25:db:09:62:85:86:a2:66:97:0d:9c:f8:
20:14:77:ad:51:e0:6b:07:9c:1b:68:3c:06:13:f2:8b:5d:5c:
af:61:70:2f:1b:31:5a:6e:cc:dc:62:36:3e:b3:95:6d:86:5c:
ac:9e:8b:3f:7d:62:90:b8:7b:26:d3:2c:2f:7a:2d:36:b3:9d:
f0:51:b0:eb:a7:93:01:ab:96:0f:65:b7:16:e1:5a:58:cc:90:
9a:e6:e7:4b:13:fd:c4:b5:1f:90:10:64:44:0c:e5:19:39:e0:
af:8f:97:b7:4b:4a:03:2c:85:23:98:38:d1:2b:5c:83:46:b2:
b8:b7:c4:6b:91:73:8b:77:01:f4:ff:ce:f3:24:9b:a3:94:f8:
af:35:82:4f:ab:60:9f:1b:f8:9f:ac:29:0a:d9:3b:23:32:fa:
a5:89:6a:58:f0:b6:08:17:7d:56:34:65:6e:c7:cb:01:18:c8:
79:32:cd:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 05:40:10 2024 by rpki-client on console-fra.rpki-client.org