Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/7p3KEICkc2qJHllG23R0Ie8b3FQ.roa
File: 7p3KEICkc2qJHllG23R0Ie8b3FQ.roa (raw, json)
Hash identifier: K4tuyKSmfLdeCBiu1zi7wEmMGEGoWRjdgYZsO5ecVio=
Subject key identifier: EE:9D:CA:10:80:A4:73:6A:89:1E:59:46:DB:74:74:21:EF:1B:DC:54
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0604
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7p3KEICkc2qJHllG23R0Ie8b3FQ.roa
Signing time: Mon 29 Jul 2024 07:55:02 +0000
ROA not before: Mon 29 Jul 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1540 (0x604)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 29 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EE9DCA1080A4736A891E5946DB747421EF1BDC54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:88:33:72:83:b9:36:35:d5:20:a6:e4:1d:07:
2f:f0:80:90:a0:c1:10:c7:75:05:73:39:d1:3f:ef:
09:13:7d:23:24:a4:d6:b1:52:85:d8:bf:c3:9d:68:
48:68:57:ff:b6:73:66:9e:8c:bd:e1:f7:bc:f3:70:
35:89:6c:ee:9b:e2:cd:65:8d:1f:0d:47:02:25:b4:
79:32:38:49:d5:5f:7b:d0:c8:42:62:eb:42:8d:87:
69:4c:07:68:38:af:5f:5d:4e:42:ad:55:64:8a:52:
14:d4:db:df:42:90:59:50:72:9c:98:a0:d7:77:e6:
4b:ba:b2:19:0b:e5:78:27:0c:8d:db:d9:ba:ed:5b:
5d:36:bc:b9:2d:d5:a7:9e:b1:65:86:82:32:96:09:
cc:8e:75:d1:72:09:6a:7a:ab:06:3f:e1:3b:01:b7:
26:3e:f4:15:72:fa:24:f3:43:78:69:7b:7d:8a:3d:
e7:8e:08:a1:c3:a5:3f:90:36:c5:36:68:a3:b3:a5:
24:53:43:04:a1:4d:a2:64:82:a1:f3:7b:79:95:45:
a6:b8:27:d1:0f:72:57:2c:a2:b5:10:7a:02:0b:c3:
c5:4f:eb:2d:02:4a:7d:8f:7f:de:72:63:9e:73:4e:
66:7b:19:41:48:2a:bc:3c:fb:d4:f5:21:48:fb:cc:
a6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9D:CA:10:80:A4:73:6A:89:1E:59:46:DB:74:74:21:EF:1B:DC:54
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7p3KEICkc2qJHllG23R0Ie8b3FQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:21:6e:dd:07:5a:ef:1b:f0:89:75:0e:78:fc:c4:06:1a:ff:
3b:f5:ff:68:1f:98:89:58:ad:f9:3e:6a:76:46:29:82:dd:b1:
31:0c:b0:13:53:eb:5d:21:e0:74:af:6e:2e:50:a5:48:47:18:
bc:69:67:96:8f:c6:b8:2d:c1:dc:08:3d:54:47:a7:f2:1b:63:
4c:54:7f:ed:59:4d:99:c9:61:3f:3d:82:dc:ba:60:81:2d:1d:
f4:f8:0e:e0:c9:8b:09:a5:74:8a:4b:db:06:e4:2c:a8:1f:ee:
0e:b8:37:19:df:55:0a:86:79:db:5a:06:f4:65:23:7d:d6:d1:
0d:86:84:d6:3e:69:a5:7b:7c:81:94:0e:71:85:30:bb:47:54:
68:e7:52:f9:5f:ce:e8:f7:bc:65:dc:e9:9a:28:97:eb:43:59:
b3:a1:dc:90:74:9e:88:a5:91:d8:5d:20:e1:af:44:ad:50:3c:
61:15:09:75:f5:92:1a:31:88:cd:00:8e:f9:46:7e:27:a9:6b:
b6:3f:57:05:22:67:28:e4:be:f7:95:ee:de:4d:39:aa:c2:9f:
25:2f:b0:03:63:11:25:48:08:54:f9:ec:9f:79:d6:6d:4b:a6:
b6:cd:cc:93:f7:3f:f7:91:de:23:e9:b5:0d:84:c7:51:31:85:
85:03:22:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 13:52:10 2024 by rpki-client on console-fra.rpki-client.org