Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/8RHYfAr4RmG1yQ1VG06Fq_dxnJU.roa
File: 8RHYfAr4RmG1yQ1VG06Fq_dxnJU.roa (raw, json)
Hash identifier: XE5QHAzt1VqPN9v12YLIpgu33jKgDHqf3sWukCRatH4=
Subject key identifier: F1:11:D8:7C:0A:F8:46:61:B5:C9:0D:55:1B:4E:85:AB:F7:71:9C:95
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 03B5
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8RHYfAr4RmG1yQ1VG06Fq_dxnJU.roa
Signing time: Fri 24 May 2024 15:55:04 +0000
ROA not before: Fri 24 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949 (0x3b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 24 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=F111D87C0AF84661B5C90D551B4E85ABF7719C95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:47:88:62:4d:16:9b:fa:0b:23:ad:3b:42:ca:
0b:75:c6:3a:50:43:94:f5:2a:77:09:d3:1a:35:e0:
fc:53:3d:82:1a:ae:b8:6c:75:0e:52:9c:10:fd:26:
28:d3:6f:2e:7b:e9:aa:7f:6a:dc:f8:3c:e4:d5:6d:
97:c8:51:bb:4c:78:b5:e4:50:8e:7d:c0:ae:87:25:
e6:69:27:4f:41:87:1c:40:a7:21:e0:10:00:94:86:
ca:e7:60:bb:e1:68:03:12:fc:73:af:96:52:93:aa:
1e:ae:75:66:8f:42:4a:09:f6:c3:fc:21:e8:db:c8:
c5:99:ad:6c:4b:dc:a1:1c:e0:21:61:3b:43:50:5b:
10:98:d3:f1:75:3e:e2:c6:49:3d:b9:5f:33:a3:4f:
b1:a9:fe:91:6f:ed:34:7e:c3:d0:76:9b:28:6d:e6:
70:2c:de:4f:bd:9b:77:c5:3e:0c:0e:03:22:33:68:
9b:cd:94:b9:63:d4:3f:ff:28:82:c1:34:54:71:60:
4a:ac:92:81:f4:72:c7:13:a0:66:b8:d8:32:52:d8:
60:29:0d:eb:35:9f:7b:81:ef:0a:b5:86:93:86:a8:
78:26:89:6b:92:65:5e:c4:ed:62:75:7d:93:c6:71:
ff:ab:0f:71:c3:fa:30:5b:0d:f1:54:0d:ae:7b:75:
b3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:11:D8:7C:0A:F8:46:61:B5:C9:0D:55:1B:4E:85:AB:F7:71:9C:95
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8RHYfAr4RmG1yQ1VG06Fq_dxnJU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:73:30:49:f9:a8:12:50:4d:52:6b:68:87:fd:97:f6:25:8b:
7b:28:89:2f:54:28:64:8e:53:98:70:87:e1:1d:4a:4a:69:a6:
4c:84:c1:66:46:f0:7f:82:a9:d1:e2:4a:1a:39:68:9a:38:51:
7f:f4:8c:a2:50:2f:a4:47:0c:52:7f:8f:39:53:5f:38:c2:5d:
24:c6:60:f6:d4:c8:f3:9b:37:88:62:dd:b9:2c:66:bb:1d:c0:
4f:2f:fd:8b:0e:4b:13:b3:24:08:c8:71:1f:01:f1:65:4f:9b:
34:0b:3d:27:31:10:83:e8:a8:03:a6:b2:7c:5e:8d:0b:5b:ec:
ae:3d:fa:5e:11:e6:f7:59:c6:e4:ba:e3:49:2a:a6:13:84:c1:
50:e0:44:02:80:a5:23:07:54:44:ce:f3:0f:85:9d:84:b3:8b:
b1:4a:79:a7:a1:aa:48:9f:27:a9:1c:33:e5:18:4d:8d:4b:91:
35:c7:61:e7:35:0e:b1:09:46:6f:09:24:73:21:e8:79:2b:05:
1a:87:ce:1b:81:71:75:77:65:25:43:91:f9:b8:99:74:82:c0:
d0:ac:5a:82:61:18:bf:d3:5f:ff:29:ca:20:7e:fa:cc:1a:44:
da:67:f7:84:0c:70:4e:dd:44:e7:60:5e:3b:45:aa:18:af:47:
21:74:fd:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org