Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/63535eNox6cdxDHWPrOi_hMOXFo.roa
File: 63535eNox6cdxDHWPrOi_hMOXFo.roa (raw, json)
Hash identifier: NHg4tPmBCJrPRONtix5c8nFTJJ6bo++5AO9csIGicf4=
Subject key identifier: EB:7E:77:E5:E3:68:C7:A7:1D:C4:31:D6:3E:B3:A2:FE:13:0E:5C:5A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0199
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/63535eNox6cdxDHWPrOi_hMOXFo.roa
Signing time: Mon 25 Mar 2024 15:55:04 +0000
ROA not before: Mon 25 Mar 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409 (0x199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 25 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EB7E77E5E368C7A71DC431D63EB3A2FE130E5C5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:60:0e:3a:4d:f2:97:e7:32:91:67:48:db:6b:
3a:de:2d:41:c6:9c:7a:b4:2b:e9:c9:27:fc:b0:73:
7a:90:7d:90:6a:81:6d:78:dc:b7:56:9f:5c:23:b1:
04:27:06:11:84:d0:5f:3c:4c:06:bd:f6:ac:d0:a0:
07:c7:ab:cc:3a:8b:3f:61:ea:c0:49:75:ad:09:13:
54:0c:aa:b2:2e:03:dd:74:62:3e:cd:0f:fa:ae:80:
ca:b1:b2:8d:2c:bc:65:54:1f:1b:7e:cc:97:e1:43:
56:53:b3:54:9c:0f:f4:ad:58:9b:6e:27:a9:66:83:
61:0c:95:76:47:a3:21:75:4b:db:83:2e:2c:20:26:
60:2b:53:78:93:7c:e5:82:1a:58:a9:9b:e5:e6:9f:
b2:b2:d7:5a:39:f7:a3:b6:19:62:9f:67:13:f5:fe:
d3:31:10:ae:92:73:dd:8b:cd:de:c1:1d:ea:04:c3:
9b:b7:9a:34:c5:20:c8:0c:3c:9e:f5:5d:b1:49:74:
a6:f0:bf:4b:de:2a:c8:1f:e4:34:0e:01:b4:51:e6:
ca:b4:00:3a:35:4f:ea:0d:26:a2:2f:87:92:cd:1b:
ca:bd:eb:cd:bb:ec:b0:67:a3:93:d4:d8:e0:0f:53:
1a:8a:47:a7:91:72:65:6e:e9:33:61:ae:f7:57:45:
5f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7E:77:E5:E3:68:C7:A7:1D:C4:31:D6:3E:B3:A2:FE:13:0E:5C:5A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/63535eNox6cdxDHWPrOi_hMOXFo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:f6:ad:92:29:2e:2b:7e:0f:9d:03:9a:3f:af:6e:75:35:a4:
9b:5c:29:58:83:08:26:97:56:34:61:6d:3b:1c:34:2c:8a:9f:
fe:42:79:55:65:7a:0b:3e:9b:2f:33:b1:cd:40:0a:43:e0:82:
f8:f5:1c:f1:db:f3:26:30:b5:35:a9:0b:0e:ec:83:12:f9:03:
e4:dd:59:69:9a:d4:81:1a:94:fd:e3:77:8d:da:ba:fe:a5:d1:
07:12:3e:5c:37:74:1d:ee:11:d0:63:eb:c7:f1:67:1d:99:52:
27:cd:86:ad:18:02:60:23:e2:03:84:b2:02:40:0a:73:c3:8d:
b4:90:68:21:85:ec:50:d5:c7:d7:c0:c7:3d:17:6c:0c:39:56:
56:e4:08:6e:4d:f0:82:e8:98:41:67:c3:6a:b6:02:7b:0d:ff:
de:54:b1:b5:be:d4:7a:27:ce:74:7b:17:7f:16:ec:1d:bf:d6:
8a:f3:c6:28:b5:1e:80:3b:71:27:85:ed:03:69:4c:df:74:2a:
8f:b1:53:e4:db:7a:38:8e:8b:b4:74:3d:51:6f:27:7e:92:cc:
34:cc:a1:17:a2:01:7e:95:6c:ae:42:ee:b1:7e:1e:65:22:b3:
03:15:f1:4f:6b:93:fd:40:4c:f7:d1:f3:0f:3d:75:20:39:f2:
28:fb:f0:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org