Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5eLJkJOsoKHKCiQqkO3fYUH4A4E.roa
File: 5eLJkJOsoKHKCiQqkO3fYUH4A4E.roa (raw, json)
Hash identifier: pxln5DkOp+psavA17rFKkDxMtn58zee/cdS85xHTnEc=
Subject key identifier: E5:E2:C9:90:93:AC:A0:A1:CA:0A:24:2A:90:ED:DF:61:41:F8:03:81
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07DE
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5eLJkJOsoKHKCiQqkO3fYUH4A4E.roa
Signing time: Thu 19 Sep 2024 23:55:03 +0000
ROA not before: Thu 19 Sep 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Sep 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2014 (0x7de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 19 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E5E2C99093ACA0A1CA0A242A90EDDF6141F80381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ae:08:5d:0d:d6:d0:0d:ef:d1:62:71:2c:cf:
84:57:47:ec:e3:24:ec:ce:df:ba:e1:11:64:29:7f:
38:4b:22:80:fe:c4:46:e1:d5:d8:b7:78:46:8d:c4:
d3:c4:0e:7a:3f:72:56:7c:0b:e5:9a:09:f4:5f:f8:
1e:9f:2d:26:67:91:6c:0d:39:4f:3e:66:71:93:cb:
cc:e5:c3:7e:76:6a:43:6d:72:5a:16:b8:3b:f4:0f:
ea:c4:1b:7f:e6:8c:e7:d9:6b:bc:c2:17:2d:4b:5e:
2b:f2:58:a2:f4:04:df:b7:cc:c0:44:60:86:85:1b:
a5:61:50:de:bc:d0:f3:33:e6:cd:d7:f7:f4:4d:11:
42:d5:62:c5:98:9a:10:a2:74:40:17:9f:87:59:f5:
b0:35:36:c4:d6:db:a6:89:82:cf:00:00:9b:63:de:
db:90:7b:4b:75:be:5a:c5:be:e3:bd:e1:42:10:3b:
91:00:c6:71:20:41:75:9a:8a:b3:74:36:59:18:23:
1e:fa:6e:07:5e:ae:0a:39:b7:11:19:e6:b0:fd:37:
39:a1:cd:d0:93:4a:ab:fe:69:f2:f6:6d:57:50:33:
39:9d:6a:64:29:d1:a1:1c:53:5d:94:e7:25:51:09:
55:e7:bd:cd:30:86:79:ee:57:7d:4c:27:dc:7f:49:
69:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E2:C9:90:93:AC:A0:A1:CA:0A:24:2A:90:ED:DF:61:41:F8:03:81
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5eLJkJOsoKHKCiQqkO3fYUH4A4E.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
22:34:0e:33:87:41:41:6e:9e:3b:15:69:6b:7c:4d:67:1b:d1:
47:a6:e1:c6:d5:c8:a7:59:6b:3c:c5:2f:66:84:d4:53:06:18:
f4:7a:25:56:88:4e:75:67:b6:86:db:3c:86:0d:06:ef:ee:cb:
61:35:96:2c:41:a7:6c:a4:ea:b4:9c:f2:e0:3f:65:91:c0:78:
09:c0:42:2b:94:e1:ce:28:39:36:83:84:47:bc:03:4d:1c:cb:
ed:95:16:dc:e6:4e:dc:a7:e2:61:29:95:eb:34:6a:b9:cc:6e:
ed:10:c8:03:ec:cd:15:a0:0c:2a:6c:14:1d:0a:71:a7:fa:89:
44:5d:50:18:72:1f:56:28:69:18:65:53:04:b2:f7:44:a6:6f:
27:b1:92:b8:c7:47:a0:4c:9b:81:16:22:96:dc:4e:e7:b9:cf:
9e:16:40:8d:3b:11:b2:75:63:0d:f7:ba:39:9a:c2:0a:ef:1d:
fa:8c:0a:0a:4b:fd:b5:2d:8e:9d:bb:de:da:63:72:e4:48:bb:
cb:68:c2:d7:05:3e:24:b6:37:26:cc:88:d8:b1:85:f6:7d:4e:
d2:16:d7:c8:47:66:48:99:4f:98:dd:8e:7f:c7:52:1a:d4:72:
3b:b7:53:1a:13:c6:b4:bc:c3:d3:11:6f:11:d6:b1:fc:07:73:
63:3e:fc:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 09:07:15 2024 by rpki-client on console-ams.rpki-client.org