Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/7H1F6n516vDhiHmegLK3KWZNe2Q.roa
File: 7H1F6n516vDhiHmegLK3KWZNe2Q.roa (raw, json)
Hash identifier: LA97p5xg1UJpKhjz4Bmo3Xtr1pDLdSDENtgbQ1yhQb4=
Subject key identifier: EC:7D:45:EA:7E:75:EA:F0:E1:88:79:9E:80:B2:B7:29:66:4D:7B:64
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 035E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7H1F6n516vDhiHmegLK3KWZNe2Q.roa
Signing time: Tue 14 May 2024 23:55:03 +0000
ROA not before: Tue 14 May 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 862 (0x35e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 14 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EC7D45EA7E75EAF0E188799E80B2B729664D7B64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:37:1c:43:05:ba:db:18:40:1c:80:86:a2:4a:
2b:5c:a0:97:7e:6d:6d:07:96:82:7f:ad:41:46:6e:
8a:90:e1:9c:8b:88:b0:d9:ba:a0:3d:bd:1d:29:aa:
02:9b:36:db:8c:cc:3e:1e:1e:d5:9f:ad:20:26:bc:
02:00:47:84:dd:75:ce:37:19:f4:d5:13:d0:67:53:
8c:64:56:2f:5d:0b:e8:d2:ef:63:6a:d7:01:dc:27:
14:dc:6c:42:b3:bb:ed:79:7a:9c:de:54:2c:bb:1d:
8f:fa:95:4b:83:5a:38:d8:bf:ea:be:af:97:c1:b5:
c6:e5:b2:cf:1c:e5:49:72:78:a4:40:7e:14:d6:3c:
bd:ff:e4:50:87:db:eb:7a:b9:3c:f4:74:02:ea:2d:
59:14:45:9d:39:52:1b:cf:30:26:1e:72:0a:9e:28:
ca:17:b0:85:c5:f4:3b:d5:bb:77:41:2b:04:47:61:
ee:4d:47:c4:9f:3d:78:c3:38:7f:5b:86:3a:dc:f9:
5b:45:43:e8:58:b7:71:81:55:8e:84:90:2d:a5:90:
6c:0c:69:96:56:82:be:f6:e5:fa:2f:5f:dc:8d:89:
58:6d:bd:0f:08:39:09:3a:8f:27:3b:35:2e:38:c2:
c2:36:52:3e:b4:35:20:79:c6:7a:2b:76:95:6e:d3:
ea:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7D:45:EA:7E:75:EA:F0:E1:88:79:9E:80:B2:B7:29:66:4D:7B:64
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7H1F6n516vDhiHmegLK3KWZNe2Q.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
36:55:49:e4:f2:ed:eb:55:28:73:0f:36:74:1b:5a:bc:6b:03:
27:a5:1d:06:56:07:db:af:d8:d5:1c:3d:c9:09:03:0c:0a:ec:
32:de:35:33:59:51:17:fe:84:f6:9b:2d:31:31:a7:ce:a6:87:
68:3b:26:8f:41:f9:b5:32:c0:a3:a6:ec:09:e0:14:d6:d0:6b:
5f:1d:d2:85:6e:60:a2:a6:70:61:4a:8f:6d:a7:e9:58:01:c5:
83:6c:84:92:73:ad:b4:c4:35:f5:28:6e:a9:37:da:3a:0d:44:
9e:12:e1:94:d5:f7:f0:2e:07:e8:0d:12:85:db:54:6c:52:27:
e5:75:b1:2a:12:12:06:a0:c9:d4:2a:52:bc:4e:65:eb:eb:ae:
71:33:cb:a6:64:eb:9d:ff:95:7f:ed:f3:2a:82:7b:60:cb:27:
1d:3f:a2:f4:c1:47:98:ba:a0:28:8a:d2:2c:db:6f:c4:b4:c5:
3d:6d:ca:17:d1:42:fe:d3:81:a0:79:d6:69:de:75:13:3b:5f:
25:1b:4c:46:44:ee:da:28:fa:9b:62:7e:55:47:3a:5f:d7:b8:
61:f4:a3:e9:a1:84:48:85:63:82:21:41:0e:80:94:55:8a:3e:
40:de:2e:2c:a8:89:8a:24:fc:dd:ed:05:46:4d:3b:af:37:40:
59:86:24:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org