Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/6El26D3aFttxmudtPVaEanax5GI.roa
File: 6El26D3aFttxmudtPVaEanax5GI.roa (raw, json)
Hash identifier: 7HU+b8VplCj3Btn+83r2duxnKF6H6Ublc31RlYCxB7k=
Subject key identifier: E8:49:76:E8:3D:DA:16:DB:71:9A:E7:6D:3D:56:84:6A:76:B1:E4:62
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0616
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6El26D3aFttxmudtPVaEanax5GI.roa
Signing time: Wed 31 Jul 2024 07:55:04 +0000
ROA not before: Wed 31 Jul 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1558 (0x616)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 31 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E84976E83DDA16DB719AE76D3D56846A76B1E462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e9:f7:17:c4:ad:db:ab:94:de:63:84:59:d4:
e1:c4:2d:5f:6b:5e:ef:ca:e9:e2:1d:fd:97:4b:32:
9e:b4:ff:0e:b5:3d:17:fa:6c:10:27:66:3f:b2:42:
89:de:bd:7e:29:b4:a8:af:42:9a:cc:34:43:46:90:
53:e2:93:cd:02:0b:09:6f:d6:71:01:30:1e:9f:3f:
28:49:3f:3d:c8:9f:13:e1:1f:1c:6e:29:2a:54:d1:
11:e7:9b:8f:8d:d8:5d:61:ef:4b:0f:eb:e6:2d:d2:
0e:47:98:68:1e:3c:18:4a:f3:42:62:2c:5d:ae:d0:
3e:02:ca:db:aa:d5:f7:2e:64:ba:36:9a:4d:5f:2c:
44:ba:de:5a:af:bd:ad:ef:37:fc:50:cc:7b:48:83:
c0:b6:6d:c6:4d:d7:99:f9:c8:09:2b:32:bd:c4:26:
85:55:a7:46:15:e7:2b:79:4d:ee:89:38:c3:f0:cd:
31:d5:82:46:3f:61:f6:17:e7:f0:43:b1:da:80:16:
de:0c:39:8f:f5:2f:e9:b0:d3:9d:79:de:76:75:43:
aa:88:88:ef:bd:96:db:26:42:ca:32:4f:12:52:7d:
9e:22:60:ba:82:f3:92:3f:c8:ac:7a:36:fd:07:4e:
db:ca:92:06:19:9b:13:93:78:6c:9c:a9:94:2d:5c:
b0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:49:76:E8:3D:DA:16:DB:71:9A:E7:6D:3D:56:84:6A:76:B1:E4:62
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6El26D3aFttxmudtPVaEanax5GI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:80:24:f7:67:a2:9e:21:60:35:0b:c7:91:a0:23:21:29:94:
95:09:0b:c7:d4:07:2a:d7:7d:34:e3:3b:7b:da:2e:2c:86:1e:
d4:4e:fc:fb:24:d9:fa:08:ef:b8:de:43:cc:a6:66:ac:d3:9a:
14:1b:92:7a:c9:65:bd:2e:91:ae:43:56:c3:ce:a4:c5:86:67:
b4:e5:2e:ef:46:a7:7d:9c:d8:0c:3a:8d:a8:06:0b:32:ac:6d:
ce:a2:88:c7:ad:fb:82:62:ba:51:c8:f6:a5:9c:0e:5e:e0:6d:
d3:8f:b9:e9:c8:83:16:93:e6:cd:8f:b9:bb:1f:08:54:d2:3d:
f5:72:66:66:6b:09:89:6e:f3:b9:02:a8:7b:14:03:2b:4b:15:
99:05:ba:ab:8a:b8:fd:11:d0:33:3c:1a:0b:5e:04:d5:dc:7c:
de:14:e4:7e:d0:48:77:e2:ad:61:92:88:d3:3e:cc:ad:c7:03:
52:9b:de:1d:6e:e0:0a:cf:25:7c:09:1c:0a:32:b4:7f:63:e7:
81:c1:44:dc:47:43:88:db:5f:fb:4f:b8:6a:b4:1d:a4:c5:fd:
68:2d:dd:d1:5d:e2:fb:c2:69:52:d3:5e:0e:01:2e:c7:8d:ba:
ad:f4:e1:03:92:7f:f1:d0:68:38:e8:3f:83:65:86:8a:3e:be:
30:72:6d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 14:29:32 2024 by rpki-client on console-fra.rpki-client.org