Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/8rOrjazu2ZrNjMjOWD_hY0w4Sb8.roa
File: 8rOrjazu2ZrNjMjOWD_hY0w4Sb8.roa (raw, json)
Hash identifier: SWMRCPu0wqg3Ioj6JuwAmWgfm8c6YDJA2Zj8ebJKPg0=
Subject key identifier: F2:B3:AB:8D:AC:EE:D9:9A:CD:8C:C8:CE:58:3F:E1:63:4C:38:49:BF
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0613
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8rOrjazu2ZrNjMjOWD_hY0w4Sb8.roa
Signing time: Tue 30 Jul 2024 23:55:02 +0000
ROA not before: Tue 30 Jul 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1555 (0x613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 30 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=F2B3AB8DACEED99ACD8CC8CE583FE1634C3849BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b5:ac:d2:9d:c0:5b:e7:54:d5:42:da:cf:9f:
1c:bb:0e:01:4b:05:2a:02:03:19:55:d9:57:d7:51:
f0:f7:b4:74:77:e5:5d:d2:54:34:f0:26:ee:24:68:
64:76:58:b3:29:d0:36:14:31:2a:2e:85:87:bb:b6:
cf:e5:44:db:c0:81:3f:b8:12:6e:36:7b:6b:ea:58:
1b:dd:1b:03:73:1c:3c:4a:84:bc:da:b5:26:f4:f5:
d0:c7:02:ad:49:97:57:24:5f:88:2e:a6:66:4e:b9:
fd:40:8b:51:b4:52:1c:b1:53:aa:d9:e2:33:cf:bc:
e0:9b:87:46:1f:ef:98:ae:d4:70:4b:df:02:06:99:
41:6a:2b:52:49:14:cf:08:5b:60:4b:15:8f:64:ef:
02:a6:43:06:3a:82:2a:1b:df:fc:82:36:e6:88:21:
61:ee:cb:eb:4f:b1:58:e9:67:ac:4e:86:f9:e6:de:
5f:86:7c:a0:1d:a9:63:17:b7:c8:c4:d9:f9:f0:b5:
1d:4b:3e:58:39:bc:cb:9d:22:61:96:5c:f9:13:7d:
6d:a4:f6:91:e0:e5:35:f0:07:f0:21:54:0b:60:7f:
3d:f0:81:12:03:c9:ed:14:7b:da:80:a6:c6:7e:6e:
cf:f4:49:7b:6a:dd:64:c6:8a:cc:98:3a:28:e7:80:
d8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B3:AB:8D:AC:EE:D9:9A:CD:8C:C8:CE:58:3F:E1:63:4C:38:49:BF
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/8rOrjazu2ZrNjMjOWD_hY0w4Sb8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:7e:a2:7e:b3:44:15:f2:9e:49:b0:19:a2:67:2f:18:7e:4f:
ea:9a:67:ff:ff:6d:45:76:03:a8:1e:ff:6f:40:ba:f1:92:48:
fb:aa:1e:42:bc:42:f3:76:ea:35:c8:6d:d6:42:f5:ea:85:11:
3d:23:98:ae:59:b0:bf:c2:c2:8a:e4:49:9b:76:0d:67:c3:b6:
ca:6c:75:24:e7:60:f4:46:d7:c7:a5:a5:a6:bf:09:18:1f:a2:
5c:4f:b4:e1:d1:3a:2e:0a:75:c7:d7:f0:26:0f:ff:66:91:04:
c0:92:9b:7a:d4:fc:4d:ed:2b:b2:48:a6:a8:f0:00:74:d0:18:
10:e2:33:8e:a7:45:f9:3f:66:4e:30:15:36:ac:ce:cf:01:e1:
43:6f:db:d1:81:c4:38:46:ec:1c:4b:e7:26:a7:b2:66:06:f2:
79:92:c5:a4:c9:0a:6f:ec:c8:23:a2:c7:8a:27:9c:aa:1e:59:
a2:47:37:56:6e:3d:32:c8:f5:32:aa:65:61:a6:4e:5d:9e:b7:
01:01:87:78:8d:65:67:b3:30:88:06:fa:24:c1:03:15:a6:8f:
89:df:f7:2b:26:89:8d:86:bd:4d:94:98:9f:6a:ff:cc:35:84:
57:23:74:13:c7:e7:1f:fb:46:64:9f:27:a4:f9:78:65:b5:e6:
82:6d:00:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 05:52:32 2024 by rpki-client on console-fra.rpki-client.org