Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5a3d8yuMMK-1I1cHr9r-2MtdPsI.roa
File: 5a3d8yuMMK-1I1cHr9r-2MtdPsI.roa (raw, json)
Hash identifier: iMOiX/Wms66vEZP65D4cNTA0UhHUN8CdYrehO5URhHk=
Subject key identifier: E5:AD:DD:F3:2B:8C:30:AF:B5:23:57:07:AF:DA:FE:D8:CB:5D:3E:C2
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 091D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5a3d8yuMMK-1I1cHr9r-2MtdPsI.roa
Signing time: Fri 25 Oct 2024 07:55:02 +0000
ROA not before: Fri 25 Oct 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2333 (0x91d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 25 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E5ADDDF32B8C30AFB5235707AFDAFED8CB5D3EC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3a:a1:fe:e8:ba:be:ab:fb:5e:0d:dc:40:0e:
ef:15:c9:74:b1:f1:26:27:e0:d0:d8:e2:61:43:9d:
31:57:1f:a1:aa:a3:81:88:5f:87:6a:05:e1:e1:21:
41:5d:a2:9e:e1:84:29:9f:5c:7e:c1:00:ee:d5:ce:
d7:4f:0b:dc:0d:24:c2:31:2f:92:df:4d:ac:cb:d3:
2f:94:e8:ad:1e:20:d7:ac:33:ad:b2:23:9a:4b:6e:
26:25:1a:de:63:99:2e:89:4e:80:f1:ed:43:51:fe:
7d:3c:2e:f7:dc:02:80:a4:09:1d:4b:58:16:ce:03:
aa:ff:15:8f:5e:33:30:3e:6c:1e:3b:45:8d:74:f9:
3b:75:9e:95:73:76:99:27:7e:f7:78:41:8c:19:de:
8a:b2:21:7e:a3:2d:73:73:6a:56:c4:0e:a0:5e:b5:
33:34:5d:e4:6d:dd:b2:42:b9:9b:93:ee:f1:ab:95:
d8:d1:d0:d0:b7:62:1b:3d:16:1f:42:86:a3:a3:3a:
18:98:93:8e:70:12:fd:53:52:7d:e7:4d:e0:0e:00:
6e:3e:4d:5b:53:cd:12:17:f4:cd:7d:21:61:20:fa:
ea:6b:6e:3e:1c:a6:ad:ce:bd:a3:ed:a7:19:d2:4b:
f2:cb:3b:e0:22:b5:91:56:6f:e2:76:70:34:93:fc:
87:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AD:DD:F3:2B:8C:30:AF:B5:23:57:07:AF:DA:FE:D8:CB:5D:3E:C2
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5a3d8yuMMK-1I1cHr9r-2MtdPsI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
13:00:9b:b0:22:cf:58:0c:6f:a1:a7:cf:e1:e0:9e:c4:c1:df:
52:c7:1c:ca:53:32:73:3c:5f:99:e7:a2:01:27:d3:ed:21:29:
7c:d6:5c:b4:24:70:c0:06:6b:d6:38:63:ae:08:3b:0b:0c:9d:
2e:ab:34:70:5c:e6:94:5d:a5:5f:56:77:6f:2a:30:bf:28:5c:
79:08:ad:70:aa:07:39:f9:0e:c2:d5:11:41:09:5e:a3:3a:78:
68:69:52:a7:45:9d:3c:5b:0e:a3:3c:6b:31:d2:5e:55:c6:c5:
9c:f9:fd:d0:6b:f1:e8:ff:1a:2f:ce:20:aa:c1:77:d5:50:c1:
ab:c9:a3:22:e1:18:8c:d0:db:f4:26:2d:43:f3:21:8d:5f:b1:
cb:09:b9:fe:9c:5d:f5:df:e6:69:43:0c:58:c2:28:25:20:de:
4f:16:98:08:58:f3:d0:d6:2e:fe:87:f7:f7:7f:0f:b5:3e:29:
6b:b7:ba:e8:0e:4d:f0:1c:87:e5:af:ed:d9:44:98:ba:9e:01:
61:c8:30:f9:5e:f8:23:98:97:cb:3d:0c:dd:c9:96:42:f0:ca:
40:dc:a8:b2:07:8a:34:be:5f:dd:fa:df:4b:43:f5:99:63:38:
35:0c:8d:bc:ca:b2:6b:6a:bb:06:26:8c:ad:ae:60:37:be:0c:
bb:6d:43:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 13:41:48 2024 by rpki-client on console-fra.rpki-client.org