Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5vIR2idawLhfaVJAWss-Fovn_H4.roa
File: 5vIR2idawLhfaVJAWss-Fovn_H4.roa (raw, json)
Hash identifier: WF8XhHjM5QJe5pAS81/JrYBZkdAeUJ7ut2CUorXN9IE=
Subject key identifier: E6:F2:11:DA:27:5A:C0:B8:5F:69:52:40:5A:CB:3E:16:8B:E7:FC:7E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07A8
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5vIR2idawLhfaVJAWss-Fovn_H4.roa
Signing time: Fri 13 Sep 2024 23:55:03 +0000
ROA not before: Fri 13 Sep 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Sep 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1960 (0x7a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 13 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E6F211DA275AC0B85F6952405ACB3E168BE7FC7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8b:76:11:fe:e9:f8:4c:90:dc:18:e9:a8:a8:
50:7e:b9:d9:c6:db:f0:66:79:cf:47:34:f9:b7:71:
b9:e2:7f:33:a9:19:4b:3b:54:b1:77:d0:39:09:4a:
d4:f8:c7:a1:29:67:c1:59:01:86:b8:b5:99:69:f0:
d0:26:38:12:02:2a:e9:35:3d:fc:4b:4f:62:56:d2:
ad:7e:bf:02:28:af:44:eb:db:3a:88:9b:57:8b:50:
27:94:6c:d0:d7:20:34:05:39:30:59:21:c6:02:50:
77:e6:71:71:15:61:a5:e8:42:43:37:c8:a5:d1:a6:
49:a6:3d:95:a1:92:dd:d9:60:63:12:f0:78:53:75:
cf:b0:f3:05:6d:9c:73:c5:5d:a8:33:b5:8e:4a:18:
00:ae:60:e8:03:80:b8:9d:78:88:c0:76:f5:fb:e7:
fe:59:b9:ad:ba:cb:ea:26:78:28:81:5d:12:dc:3d:
17:8e:01:de:db:15:39:41:27:4f:b8:86:6f:39:8b:
16:4e:fc:16:8e:30:c8:bf:a8:b8:c6:0e:52:21:d0:
1a:e1:d2:87:c6:d2:67:4b:61:dc:90:ee:49:2e:37:
94:bd:c5:ba:d2:3d:2f:34:5d:84:04:56:e0:ba:df:
e2:22:ea:21:16:ed:44:a4:b1:ae:7c:53:68:32:db:
b1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F2:11:DA:27:5A:C0:B8:5F:69:52:40:5A:CB:3E:16:8B:E7:FC:7E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5vIR2idawLhfaVJAWss-Fovn_H4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
05:79:43:29:aa:0f:43:fc:7b:d9:d0:13:90:0a:50:29:8e:5e:
3c:00:15:b6:7c:a9:1a:a8:35:00:f9:31:22:33:12:eb:88:15:
86:1b:3c:6e:e9:82:32:58:9a:53:7b:f3:61:f8:2d:40:99:3e:
0e:47:e7:a5:00:ab:28:38:13:19:d8:e5:e1:b6:c8:af:ec:c0:
d9:20:f2:46:04:3a:e2:06:ab:8b:f4:32:f0:d0:43:11:bf:ea:
30:76:6b:d9:7e:94:f0:7e:2f:d1:c4:7f:4a:89:80:1a:13:db:
e2:30:67:97:49:04:7e:6f:e1:fd:c0:46:b7:ac:f2:12:71:c1:
cf:a8:71:3f:47:a6:69:95:9f:c5:5f:47:6b:46:22:b0:42:a9:
72:09:9d:8e:18:45:0c:ed:2f:60:98:21:65:dd:60:e4:30:62:
18:3f:4d:12:85:d8:74:25:f7:ca:24:3d:44:d0:ef:70:f8:7a:
72:7a:c4:3f:ea:2d:3a:a9:43:68:e0:d7:83:1a:19:fc:40:10:
07:c7:d2:8c:c2:d0:b5:3f:11:99:e7:3c:41:54:fb:12:55:e2:
07:e2:fa:4d:91:00:60:8f:ae:92:d9:fb:4d:c8:d4:9d:18:31:
26:97:3a:d6:2f:e5:06:ea:38:81:ad:69:61:e1:3e:5f:8f:8e:
7f:b5:df:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 14 06:09:41 2024 by rpki-client on console-fra.rpki-client.org