Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/7kLmoQsAIz6QYBp92MdT9ZAkSCU.roa
File: 7kLmoQsAIz6QYBp92MdT9ZAkSCU.roa (raw, json)
Hash identifier: 2WRvAPmM5OkdbFvrIP7fTY9Rjj8xKUqbw7Iz25xpPjA=
Subject key identifier: EE:42:E6:A1:0B:00:23:3E:90:60:1A:7D:D8:C7:53:F5:90:24:48:25
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 08E0
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7kLmoQsAIz6QYBp92MdT9ZAkSCU.roa
Signing time: Fri 18 Oct 2024 15:55:02 +0000
ROA not before: Fri 18 Oct 2024 15:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Oct 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2272 (0x8e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 18 15:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EE42E6A10B00233E90601A7DD8C753F590244825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:64:25:c6:ff:ab:40:a4:11:12:81:44:95:04:
4b:13:d4:b2:de:3f:0c:1d:e2:ab:4f:49:36:1d:00:
32:4a:7e:eb:2d:08:b5:75:bc:7b:14:6c:35:5e:bf:
10:5e:8a:a8:2a:b1:99:76:74:28:96:79:99:9e:e4:
66:8e:1a:79:f5:1a:4f:95:7b:5d:26:3f:a1:3d:e3:
21:94:b4:81:9e:d6:39:d4:e4:97:26:a4:8d:1c:ec:
c1:58:0d:55:ea:e7:f0:54:5f:fd:0d:e2:c1:cf:f6:
ad:46:54:93:2c:3b:ff:a5:e8:27:7d:9a:9a:55:b3:
75:99:4b:0e:cc:d7:22:fc:f5:31:66:8d:69:05:87:
17:2d:bb:d5:74:50:2c:30:75:68:27:df:95:2d:fb:
e2:cf:bc:4f:e7:34:9e:94:f5:04:21:eb:f2:ab:81:
fe:3d:98:42:aa:15:c1:e6:7a:9d:59:13:70:68:00:
c0:cd:71:73:6b:33:fa:0f:d7:ee:91:b4:21:69:32:
a8:b3:a0:33:a3:0f:d4:94:dc:23:3f:a3:fb:0b:a2:
82:9d:57:34:a8:08:2c:79:01:24:90:9e:81:a9:12:
c6:97:cd:d1:e1:e1:7d:a8:7b:ce:ad:4d:9b:38:e1:
41:1f:ad:dd:ac:55:42:22:84:26:dc:ff:e6:cb:b1:
b0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:42:E6:A1:0B:00:23:3E:90:60:1A:7D:D8:C7:53:F5:90:24:48:25
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7kLmoQsAIz6QYBp92MdT9ZAkSCU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:70:c7:72:d9:0f:19:0f:f4:cb:20:87:b2:21:0f:ce:ac:79:
1b:35:db:37:09:ca:88:12:03:7a:9c:ec:39:ee:01:df:4c:93:
98:02:ba:ce:fb:31:63:06:07:7c:9b:da:65:3d:d1:00:c3:a5:
cf:bb:e1:1e:87:00:05:22:45:27:01:1a:57:38:b3:99:ac:ca:
cb:02:57:e3:d9:b9:ed:19:80:3a:14:6b:1e:0b:a7:26:cb:a5:
84:d0:bb:a2:b5:7f:12:2d:56:3a:2a:17:55:bc:84:cb:cf:0f:
4c:57:22:cb:d5:8c:d2:a7:c3:4e:e4:5a:db:ec:76:67:9b:08:
28:ad:0e:b3:bb:f5:78:0f:be:21:bc:a3:2d:4f:cd:8e:ab:5d:
ca:d8:cd:30:23:d7:fb:e2:55:a8:3b:0f:5e:d4:88:31:f0:c3:
1f:76:7b:fc:68:9d:5b:aa:9f:68:f9:cd:28:6b:cc:79:f1:c8:
62:50:a2:33:70:eb:78:1e:e6:8d:42:49:82:78:29:c2:76:d5:
f2:18:7b:db:8a:a9:26:ce:14:5f:58:d9:34:56:1a:2e:0e:10:
02:24:92:ea:32:7c:7e:97:3d:35:c3:e5:8a:6e:2c:ba:cd:fd:
09:5c:ed:f3:96:86:06:4c:b8:82:ad:82:27:1e:a2:7f:c0:05:
83:4f:3e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 23:48:10 2024 by rpki-client on console-ams.rpki-client.org