Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/6tnQrL7gXYs_o_VXZNWboDhPZzQ.roa
File: 6tnQrL7gXYs_o_VXZNWboDhPZzQ.roa (raw, json)
Hash identifier: qRg6oArAlTHgya10/Y3eecnBQpM9ypsLXyDgjwJpx4w=
Subject key identifier: EA:D9:D0:AC:BE:E0:5D:8B:3F:A3:F5:57:64:D5:9B:A0:38:4F:67:34
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: C7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6tnQrL7gXYs_o_VXZNWboDhPZzQ.roa
Signing time: Sat 02 Mar 2024 07:55:03 +0000
ROA not before: Sat 02 Mar 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Mar 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199 (0xc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 2 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EAD9D0ACBEE05D8B3FA3F55764D59BA0384F6734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:87:4e:92:9a:06:4f:2e:43:fe:c6:0e:ba:4d:
1f:f2:a8:10:10:cb:02:15:f2:08:14:76:24:a3:f1:
14:82:25:de:80:5b:5c:49:bc:34:fd:34:70:86:76:
b2:bf:14:8e:62:23:c4:6e:1e:a3:e9:31:3d:66:00:
2d:2b:59:72:c3:b7:a5:c2:ee:98:85:19:4d:ac:97:
ca:58:db:60:3b:39:85:89:58:53:a4:54:a2:83:a3:
81:79:2b:d6:36:78:aa:9f:b0:c9:04:a4:e3:e3:39:
4a:ac:68:da:de:57:b0:f6:79:18:cc:58:d4:c4:72:
f6:90:ff:73:b5:a7:17:d8:15:83:d5:49:6a:30:d6:
18:8a:6c:db:b5:00:5a:21:f5:7e:39:bf:16:c0:95:
66:86:85:11:93:f5:29:fd:b3:63:48:28:85:b1:b1:
d8:78:98:95:f3:d5:02:4b:bc:88:20:a2:73:f2:9a:
26:1c:b0:13:36:a7:c8:eb:96:ca:29:eb:06:51:7a:
4d:85:50:1e:8f:35:da:ab:8d:3e:3f:38:81:8c:9c:
3c:6f:f4:0a:3f:90:ba:4d:86:b1:00:e0:d5:cf:cf:
e0:38:4c:e6:78:d5:98:17:e2:91:81:1a:af:9c:e5:
66:16:a2:a4:f2:a2:09:8a:ba:39:2e:b2:5f:45:95:
94:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D9:D0:AC:BE:E0:5D:8B:3F:A3:F5:57:64:D5:9B:A0:38:4F:67:34
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6tnQrL7gXYs_o_VXZNWboDhPZzQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
27:23:fd:b5:bc:63:df:e8:9c:90:10:e8:89:ab:39:b5:03:cf:
3f:f8:c1:e4:88:19:c0:4d:ec:45:81:37:19:a9:ca:71:9f:22:
89:8a:2d:4e:c9:62:26:96:da:6f:bf:2e:e4:48:fb:06:ac:b9:
e2:0c:8f:2b:00:a5:c2:00:17:08:4d:c2:31:a3:68:6f:ff:93:
c0:08:ed:ac:c7:31:3b:7c:e0:73:d7:14:5d:99:35:14:04:30:
ba:d4:04:f8:ae:69:c1:7a:28:52:8c:27:c4:5f:14:91:93:77:
c0:d5:bc:55:c2:e4:39:e7:04:94:c1:7b:08:3a:b5:7d:77:67:
8b:7f:a9:71:3c:00:c9:23:a7:d5:cd:8f:b5:d1:60:c8:fc:8d:
00:d7:5e:52:be:25:c7:e5:8b:00:a0:b9:09:cb:12:be:a9:13:
45:9c:35:e3:9c:d2:e6:0f:f0:5b:ec:fb:87:55:16:a7:22:94:
00:52:ab:54:a3:af:9f:17:34:b5:f2:ab:55:f8:42:ab:02:70:
b1:20:18:5f:f9:c2:b4:f1:c1:a7:ad:12:3b:0b:0c:78:2c:06:
cd:c5:0a:60:af:68:34:21:ef:cc:3d:1c:55:73:21:9a:ca:eb:
37:d0:4b:3f:5e:b8:cc:a3:2a:8a:b9:eb:cf:c5:37:25:11:9e:
de:96:10:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org