Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/51UeNKi6BpznZD7kTi6_AVvvyQI.roa
File: 51UeNKi6BpznZD7kTi6_AVvvyQI.roa (raw, json)
Hash identifier: 1Ygftcl9/ylpsoYY6zGBtWtYZfb0QnEHMR+sQn+18jE=
Subject key identifier: E7:55:1E:34:A8:BA:06:9C:E7:64:3E:E4:4E:2E:BF:01:5B:EF:C9:02
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0856
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/51UeNKi6BpznZD7kTi6_AVvvyQI.roa
Signing time: Thu 03 Oct 2024 07:55:03 +0000
ROA not before: Thu 03 Oct 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2134 (0x856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 3 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E7551E34A8BA069CE7643EE44E2EBF015BEFC902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e9:fd:d7:a6:26:61:9b:6f:7c:5d:cf:8d:a8:
12:96:5f:63:69:07:df:fc:c9:00:7b:b0:5b:3c:f0:
93:2b:b6:68:75:dd:e1:b0:9e:c6:26:a1:0e:f8:27:
53:21:6e:a9:92:bb:df:a1:51:62:58:1a:6a:a3:c5:
24:0d:da:92:2b:3b:eb:b6:61:77:e3:9b:fc:12:cc:
89:c1:a4:8e:b2:44:a0:9d:88:d9:3a:e0:6a:67:95:
2e:41:3e:d5:8c:79:78:e5:13:f5:83:98:46:f5:aa:
ce:fc:76:c1:87:d7:77:8c:3c:f2:b1:eb:15:0a:45:
a7:dc:21:b1:f7:0f:87:a0:04:f4:09:5a:57:32:84:
c2:da:98:27:ce:d4:f5:f9:44:c8:fd:37:43:6d:c3:
07:47:bf:13:55:13:51:fe:2a:d5:3f:3e:26:4e:a5:
35:02:dd:81:13:5b:b3:12:f6:69:ce:ea:f1:c3:1d:
a0:77:2f:20:ba:83:ef:fe:87:27:53:a4:57:e2:50:
ae:56:56:ce:cc:c2:68:04:d6:37:71:97:87:77:f6:
00:d1:3b:c8:05:72:17:bb:4a:0e:58:a2:18:86:58:
75:63:a4:30:4c:52:7b:f0:44:a1:d7:31:fc:7d:5f:
ef:35:84:f7:51:8d:05:40:9c:4a:47:90:1a:78:c0:
cc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:55:1E:34:A8:BA:06:9C:E7:64:3E:E4:4E:2E:BF:01:5B:EF:C9:02
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/51UeNKi6BpznZD7kTi6_AVvvyQI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ca:9f:95:5b:38:5d:3f:e5:e0:a1:00:9c:3d:0d:d0:9a:75:
a9:ce:1b:bd:8e:5a:f0:00:b5:4e:3a:39:47:f5:38:45:57:28:
7c:56:2c:07:70:a8:cf:7b:84:1e:5b:fc:37:a1:cd:35:ef:f9:
b5:d4:68:57:4f:96:18:04:f3:ae:4f:27:62:48:36:d6:6c:bb:
06:a4:43:71:d5:b0:69:50:5b:8c:81:46:5e:e9:a6:46:34:5f:
7c:f0:ce:5d:1e:3a:b8:db:c9:94:11:a1:62:78:52:ec:14:11:
67:fa:99:57:d5:4c:9e:29:a1:56:62:50:6c:a5:41:96:e9:a1:
4b:13:5f:f4:cf:30:27:82:ea:67:a6:f7:7c:a9:61:41:69:b1:
07:1d:51:2d:31:94:00:11:1f:79:40:de:87:95:cf:7a:bf:1a:
7d:c3:6e:fd:25:40:e3:7a:6d:d9:d5:99:77:a1:1c:13:53:0e:
f5:27:27:83:bc:48:ec:6a:e9:89:53:48:d5:57:80:48:02:56:
b9:00:ed:d8:32:5a:cf:dc:fd:5b:1c:91:11:61:c7:a3:7e:90:
b4:c3:52:a5:9a:97:56:44:83:30:d9:11:a6:3e:29:ae:fc:2c:
87:7f:18:9a:d3:b7:ac:0c:d1:c9:dd:5b:78:7f:e0:35:e6:1d:
f6:9c:7b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 15:33:09 2024 by rpki-client on console-fra.rpki-client.org