Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5wSRX3qZV_5Jiir6jgpg4JFxUKQ.roa
File: 5wSRX3qZV_5Jiir6jgpg4JFxUKQ.roa (raw, json)
Hash identifier: GVXokvPvT0Pug6/jWa0kzqbhBCW5T3+76kObzZoYLTs=
Subject key identifier: E7:04:91:5F:7A:99:57:FE:49:8A:2A:FA:8E:0A:60:E0:91:71:50:A4
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0403
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5wSRX3qZV_5Jiir6jgpg4JFxUKQ.roa
Signing time: Sun 02 Jun 2024 07:55:03 +0000
ROA not before: Sun 02 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1027 (0x403)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 2 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E704915F7A9957FE498A2AFA8E0A60E0917150A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3f:80:02:54:57:d5:e3:2f:e8:84:2b:76:a1:
e3:12:a7:e7:b3:e2:e3:2b:a8:ea:8f:a1:b2:86:db:
e0:0e:ed:18:8c:ed:fd:1d:70:f9:4c:43:64:ae:11:
d6:37:2c:62:a3:c1:e4:d4:c5:9d:7b:40:de:d5:fe:
b1:39:28:ed:81:f6:39:0e:bd:b2:61:35:3b:8b:8f:
27:9e:cd:17:6e:58:ad:03:54:e1:96:b2:fc:72:30:
54:94:68:0b:11:6a:5f:57:14:4b:69:6d:88:db:06:
48:41:1d:e7:d2:59:e4:81:2c:89:a5:74:79:d9:b0:
2f:de:6b:74:bf:3d:24:91:b3:2c:95:47:d5:19:3c:
39:b5:ec:45:ff:d6:ee:7e:ae:e9:90:4c:d0:c8:9a:
f4:4d:74:97:e4:be:ba:2a:f8:99:69:53:2c:2b:fe:
58:b4:59:ca:ce:c3:2f:16:99:87:3b:3a:28:b0:7b:
34:48:05:8c:08:9c:3f:1d:8a:a6:20:5c:03:e9:5c:
6b:4d:2c:04:f9:0f:64:99:ba:bd:e1:7a:7f:49:f9:
9f:12:28:35:51:8f:b5:39:59:3c:e6:f3:61:66:41:
e0:27:f1:3d:1b:4b:13:f6:8b:39:13:d1:01:e3:4f:
51:b4:55:fd:b4:80:ab:e1:fc:15:25:32:df:e1:57:
49:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:04:91:5F:7A:99:57:FE:49:8A:2A:FA:8E:0A:60:E0:91:71:50:A4
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5wSRX3qZV_5Jiir6jgpg4JFxUKQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
08:4c:bb:5e:ff:64:30:2a:ba:46:71:6f:3a:6b:b4:59:d3:00:
cb:48:1f:f8:07:c1:1a:00:94:db:69:74:ed:f9:a5:da:d3:5a:
76:c6:86:47:de:b6:89:df:e9:85:e1:a7:56:e4:18:ee:c1:75:
a5:6a:f9:31:a4:63:14:8d:41:50:0c:c8:3c:b0:89:a6:d9:b7:
ff:92:af:85:ff:e1:58:4a:42:a6:9b:69:92:8b:5c:30:ed:6d:
2e:da:cd:e8:93:24:5c:8d:60:0a:96:2b:f9:12:e0:2f:56:c4:
c5:92:3e:c8:4d:83:d2:68:b0:c3:e9:b9:a9:bb:d1:51:f0:ea:
f4:71:5f:15:e6:4b:ab:9e:95:c4:12:4a:9e:94:e9:5d:aa:72:
0f:d2:8a:da:9e:0a:7f:56:66:9c:ef:57:ed:2a:ec:9f:34:ed:
a3:5f:42:21:8b:f3:59:9c:c9:9a:38:99:15:e3:d7:87:e5:49:
c6:24:23:38:81:1a:9f:a4:7a:da:ed:27:7b:9d:30:08:b3:64:
33:e4:a4:c7:d9:2b:95:0a:80:ba:dd:54:22:6d:c6:31:8c:57:
fd:7e:ef:e2:59:3b:28:b2:d1:51:57:50:be:d6:a9:7c:66:fb:
ee:0e:a0:fa:d5:5c:b2:ad:f0:b0:5a:bd:14:d7:66:0e:6a:31:
2b:95:ce:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 13:16:40 2024 by rpki-client on console-ams.rpki-client.org