Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/59VmaZJmzmm3wAwYuyWcPQYWuV4.roa
File: 59VmaZJmzmm3wAwYuyWcPQYWuV4.roa (raw, json)
Hash identifier: DjKC4OqiNigGMD2lMSh3j6rMfZBW2wW+3A8D1pCLcN4=
Subject key identifier: E7:D5:66:69:92:66:CE:69:B7:C0:0C:18:BB:25:9C:3D:06:16:B9:5E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02A7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/59VmaZJmzmm3wAwYuyWcPQYWuV4.roa
Signing time: Wed 24 Apr 2024 15:55:03 +0000
ROA not before: Wed 24 Apr 2024 15:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 679 (0x2a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 24 15:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E7D566699266CE69B7C00C18BB259C3D0616B95E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:03:83:e7:21:56:53:ee:92:07:e9:90:2f:76:
b9:7b:0c:59:e0:4d:fc:c4:c7:19:2c:33:d6:96:20:
f5:00:81:de:ee:2c:b4:71:c7:08:93:63:93:e0:f9:
ab:a4:c7:f5:40:4c:58:ba:15:89:9c:ba:df:b9:76:
a0:36:c6:8d:a0:ce:fa:f3:b5:05:bf:b7:51:1d:32:
44:ca:d1:56:40:fc:5a:4b:d4:bf:a2:7d:dc:3c:7a:
0f:12:18:ad:46:b0:14:39:d7:b2:d2:a4:ee:16:8d:
cb:67:49:cf:f3:28:ab:62:30:cf:52:d4:b8:02:3a:
88:a4:20:e1:21:87:db:83:89:eb:f4:2a:c5:76:25:
7f:22:8e:2a:7f:3e:3c:bd:31:99:2f:27:84:2c:97:
96:12:76:89:11:61:8d:e2:f2:bf:e2:20:64:63:a9:
7d:f2:a6:7a:39:5c:ed:ba:e1:09:d6:cb:e0:3d:b5:
3f:98:07:41:8c:18:1c:2d:cf:79:57:44:63:90:ed:
ff:27:d0:5d:1f:d0:56:c6:95:6d:f3:c1:b5:ec:50:
3d:08:ca:80:ff:7e:58:7b:19:06:a2:7f:8d:d5:c0:
fe:57:90:15:75:e6:29:55:d6:03:ba:57:c9:f5:7b:
6c:b7:a2:d9:f9:be:49:8e:96:f5:82:84:95:72:6c:
a5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D5:66:69:92:66:CE:69:B7:C0:0C:18:BB:25:9C:3D:06:16:B9:5E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/59VmaZJmzmm3wAwYuyWcPQYWuV4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:40:61:57:d9:f6:5e:d8:41:c9:a6:1d:43:5b:66:ee:e9:9c:
ad:a6:de:78:00:88:87:0e:b9:21:91:b3:63:e9:45:b1:38:56:
79:69:d4:97:6f:04:02:15:47:37:77:fe:b3:79:02:32:61:84:
49:58:c1:b0:13:cd:0a:c4:31:15:f6:9d:9d:48:4d:ed:27:7a:
a4:43:ab:ae:46:7e:be:55:be:81:b4:38:b5:04:6b:77:48:e5:
05:d8:0b:1c:06:50:04:80:3a:2e:b0:7a:b1:f2:b5:6b:8c:9c:
66:2c:76:2f:86:cb:a9:64:b1:bb:82:66:6a:8f:21:33:38:53:
9e:bc:0a:94:08:af:c5:a2:37:a9:62:82:6d:1c:95:a6:f3:1e:
90:48:82:97:3e:f0:f7:fe:10:b6:eb:33:b0:92:5a:bb:cf:bc:
8c:74:b3:43:f0:85:92:96:6b:de:e7:bd:96:23:87:7d:63:fa:
22:e1:10:fe:17:79:2e:b1:c0:53:e1:eb:a4:c5:ec:b5:e0:68:
eb:b4:e8:1f:c1:87:6c:f9:d6:b4:48:fa:61:0f:0c:2b:c5:b0:
70:84:d8:25:ec:84:e8:14:8a:c2:03:8a:c4:b2:1a:d7:8c:b3:
c8:f9:3a:b4:d2:f5:07:a1:09:51:70:c0:14:32:c2:62:19:2c:
fe:4b:8c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 22:48:43 2024 by rpki-client on console-ams.rpki-client.org