Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/6szWW9hvWI2u-8-nsoF8ATd_u9g.roa
File: 6szWW9hvWI2u-8-nsoF8ATd_u9g.roa (raw, json)
Hash identifier: DZlawlTz6nAKrlGkEhTCO25xf/Lihmh4jyA/R+rMLf0=
Subject key identifier: EA:CC:D6:5B:D8:6F:58:8D:AE:FB:CF:A7:B2:81:7C:01:37:7F:BB:D8
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 67
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6szWW9hvWI2u-8-nsoF8ATd_u9g.roa
Signing time: Tue 20 Feb 2024 15:55:03 +0000
ROA not before: Tue 20 Feb 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103 (0x67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 20 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EACCD65BD86F588DAEFBCFA7B2817C01377FBBD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a7:f8:e3:9d:42:3c:2f:05:0b:2e:cc:62:92:
21:64:29:57:2b:82:af:04:34:53:62:8c:8b:a8:1b:
2f:1a:cb:86:72:7e:a3:28:89:6e:21:76:39:f9:12:
13:88:15:e2:97:35:dd:8d:b3:d3:5a:76:2d:4f:70:
a5:e6:f0:ab:5d:03:0e:7c:ac:b3:40:9d:a4:19:ff:
be:9b:f3:c6:89:1c:5f:5d:0d:1a:e1:6c:ae:be:d6:
8a:f4:45:88:7e:ee:47:17:f6:40:1b:56:47:59:73:
d1:b9:cd:20:43:97:76:3c:de:50:d2:de:96:3a:47:
63:f6:df:82:57:d0:dd:9a:cc:8e:f6:dd:d0:6a:75:
22:04:6d:fe:e3:73:41:55:0f:d6:8f:40:93:c4:14:
cd:24:c6:f0:c8:c1:9b:55:fd:ca:50:04:0e:ba:7f:
f9:e8:0d:4a:49:90:96:4f:a0:26:67:fd:ed:2b:94:
7e:46:49:10:9a:c5:20:3c:c6:f0:c8:af:c4:06:f6:
e2:01:e1:40:92:e2:bf:b3:28:a5:62:3e:11:36:f1:
e9:9f:5d:fc:ef:b0:27:a3:51:6f:d4:cc:1b:1c:c7:
b1:44:16:f9:49:f1:a1:92:9c:a2:2a:a7:ea:f7:c7:
83:cb:2c:3d:ed:ec:05:53:13:41:5a:91:f5:2e:ac:
b8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:CC:D6:5B:D8:6F:58:8D:AE:FB:CF:A7:B2:81:7C:01:37:7F:BB:D8
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6szWW9hvWI2u-8-nsoF8ATd_u9g.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:cf:b3:56:f8:b0:c3:51:aa:2f:df:ae:05:3d:2c:0f:d2:e2:
c0:2f:d0:6e:77:55:b0:c2:f5:07:00:da:30:d6:7f:89:a0:f9:
3b:e1:36:fd:fb:03:75:44:ad:57:f5:a4:d0:18:5d:b5:3e:0c:
03:c2:9c:1a:b9:40:29:ea:d5:60:9e:13:ee:a7:82:4d:c1:d9:
b7:47:83:24:27:3b:d1:dd:77:d1:2d:df:ba:72:b9:5d:68:71:
be:00:03:d4:7a:f2:4c:4e:a3:60:d2:ed:33:5f:0c:bb:96:5d:
ea:a5:8e:6d:ce:e1:a4:d3:b2:eb:ff:0a:63:d0:ce:6f:cf:6f:
00:d1:b6:09:41:be:71:6d:0c:84:e8:bc:e5:b1:d9:14:40:46:
e3:eb:18:7e:d9:b0:c8:bd:57:87:12:96:b5:84:49:7f:64:02:
06:e9:d6:ce:46:8f:02:e1:ea:cb:dc:74:7b:99:b0:6e:67:b9:
5d:ff:f5:fd:e0:ed:79:e8:f6:60:64:80:5b:05:76:3c:94:1d:
95:82:d0:a1:8d:ae:23:68:80:cb:ba:e9:3e:ad:d5:34:ba:de:
e0:be:8c:8d:3e:72:18:50:cc:ad:cf:04:4a:04:a4:2b:ad:07:
67:1f:a2:ca:98:4f:f8:31:6f:9f:52:54:5d:a0:d2:06:e5:b0:
d5:11:4c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 20 23:45:52 2024 by rpki-client on console-ams.rpki-client.org