Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/6HehaSA-JCF8e0VAFmkoANWNfRY.roa
File: 6HehaSA-JCF8e0VAFmkoANWNfRY.roa (raw, json)
Hash identifier: 1QkkwJxKfCPuWSDtUiEGqlyhNX1okFV3a4Et3xjI5YI=
Subject key identifier: E8:77:A1:69:20:3E:24:21:7C:7B:45:40:16:69:28:00:D5:8D:7D:16
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0229
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6HehaSA-JCF8e0VAFmkoANWNfRY.roa
Signing time: Wed 10 Apr 2024 15:55:04 +0000
ROA not before: Wed 10 Apr 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 553 (0x229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 10 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E877A169203E24217C7B454016692800D58D7D16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:25:6e:06:1b:af:52:d8:9d:d7:92:2a:de:
51:5a:0c:18:e0:b9:8e:94:46:fb:16:a8:9e:21:62:
95:66:44:8e:ed:a6:a9:fc:6c:de:bf:a3:52:77:f7:
fd:d9:4c:99:0c:27:1c:dd:65:7c:31:19:fe:af:9a:
62:de:22:32:10:8c:a6:70:d8:c4:8a:af:ab:ce:b7:
66:23:41:8f:f8:93:99:49:23:68:02:88:30:f8:30:
ec:44:e0:21:b5:1d:6e:e4:3f:25:a7:d6:b8:58:aa:
1f:97:eb:75:6c:76:51:99:cc:36:e8:f7:6e:24:69:
fc:f2:86:85:d5:ee:c7:f3:05:81:67:bc:63:59:85:
56:89:05:86:bf:f4:4f:d2:91:20:db:ac:37:19:d6:
b0:ba:12:b9:e5:6a:76:d0:9f:4f:1e:44:18:70:01:
5c:5d:28:3d:04:23:7c:bd:36:f2:d2:e7:24:87:6f:
5d:ee:52:b2:8a:d0:c1:41:81:7c:bf:e5:0e:95:cb:
f3:53:03:2f:8b:b4:db:ba:fb:e2:09:a2:3f:77:64:
1e:56:ca:20:95:b1:9f:9b:3e:da:ff:f5:2f:d6:aa:
64:df:dd:51:7a:4d:33:c3:0e:9b:22:ac:74:2e:a8:
62:c1:1d:53:84:a9:4a:55:4d:45:7c:f2:17:19:d6:
49:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:77:A1:69:20:3E:24:21:7C:7B:45:40:16:69:28:00:D5:8D:7D:16
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6HehaSA-JCF8e0VAFmkoANWNfRY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:0f:58:6e:a3:52:cc:27:53:16:5b:5f:98:7a:28:a0:87:2d:
e6:c6:e4:dd:d7:5e:ef:77:0c:ac:5e:bb:25:7f:69:91:a2:ee:
8f:21:64:f0:f6:f5:0a:c8:53:a5:80:9c:cf:97:8c:a1:cc:16:
10:97:54:7b:63:5d:91:16:ff:c2:80:96:04:c7:7d:1d:97:10:
73:1c:a0:88:42:27:73:ca:a4:2c:05:2f:62:09:2b:0a:1d:4a:
5e:16:5b:2d:20:5a:45:eb:d4:11:93:47:b6:29:3d:7a:4e:b1:
25:77:83:13:82:83:93:d7:9d:17:d0:be:82:8f:59:bc:ef:72:
ed:e5:0c:6c:12:4c:a8:a9:d1:82:f3:c8:ab:6c:12:8c:64:d9:
1c:c2:8a:df:de:c5:f2:16:c4:10:3e:7d:62:53:25:55:c4:05:
d1:81:e1:db:0d:1d:fd:b2:35:86:f0:5c:9f:96:b3:0f:7f:67:
d6:bb:e6:17:bb:c5:2e:00:51:43:93:10:73:0d:87:08:88:57:
84:af:3f:6a:3f:6e:36:b0:fd:57:73:9c:d4:84:56:7d:61:60:
c9:33:ba:e2:f8:f4:65:c2:90:31:07:44:05:95:4e:84:3c:f0:
04:23:a8:69:67:7a:2d:51:89:5d:44:f6:fe:a7:4c:38:98:b0:
fa:0f:a2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org