Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Ausz7e7o_9tl_FQXRZJMydNrFUs.roa
File: Ausz7e7o_9tl_FQXRZJMydNrFUs.roa (raw, json)
Hash identifier: RSOtUES2MCa3Sw9W45iy/+0ecmKMGTTFHqh1hcCcme4=
Subject key identifier: 02:EB:33:ED:EE:E8:FF:DB:65:FC:54:17:45:92:4C:C9:D3:6B:15:4B
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 054D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Ausz7e7o_9tl_FQXRZJMydNrFUs.roa
Signing time: Mon 08 Jul 2024 23:55:03 +0000
ROA not before: Mon 08 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1357 (0x54d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 8 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02EB33EDEEE8FFDB65FC541745924CC9D36B154B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1d:f0:87:28:4f:4d:63:12:02:87:90:2d:2f:
09:47:7b:03:13:10:9a:78:b3:65:01:7e:21:51:79:
08:2b:9d:77:c9:5f:92:76:80:df:c4:1e:3f:98:77:
4c:2f:1f:68:da:24:1c:21:54:87:20:18:f7:74:ad:
15:75:5c:bf:8d:85:34:55:85:88:f7:21:7b:ce:65:
5d:c0:3c:2c:51:39:e2:e5:a7:31:27:17:da:7a:fd:
c3:11:e0:bb:58:ff:a2:72:18:17:cc:d4:ff:2e:b3:
ac:02:3b:b5:33:f0:cb:f9:15:ae:f9:d5:e3:00:00:
c5:30:47:a1:30:a0:49:43:70:d5:8c:2c:85:23:f4:
98:85:ef:89:5e:cd:20:98:a0:59:c5:ca:ed:2e:ba:
db:da:5e:70:d5:67:c2:3a:92:2e:3f:62:ae:8c:76:
0d:a6:d8:3d:1c:36:72:0b:bd:95:6c:2e:dd:71:a6:
2d:c7:01:1b:b3:f4:d7:d4:a0:a9:a4:54:a8:9a:b1:
08:1d:fe:d8:26:26:d4:dd:11:44:e9:d9:19:19:d0:
d6:c7:59:30:08:d3:f7:02:82:f9:3d:ca:ea:9c:59:
c8:a2:55:65:d9:82:45:06:fa:5e:74:38:d0:c3:71:
75:de:88:f1:6b:42:c6:46:5a:f4:29:94:ea:10:ec:
62:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:EB:33:ED:EE:E8:FF:DB:65:FC:54:17:45:92:4C:C9:D3:6B:15:4B
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Ausz7e7o_9tl_FQXRZJMydNrFUs.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
02:ce:18:40:c1:83:e8:a4:3f:ca:a7:41:52:48:a5:a3:0b:10:
bd:77:bb:bf:30:34:21:f0:be:3c:ee:ef:66:a1:37:b7:fc:54:
33:99:3f:0c:a5:48:bf:5d:49:bd:9c:cf:cf:89:13:21:dc:2e:
72:d3:82:33:52:1c:0c:fa:c8:7a:8e:79:c2:69:ea:43:28:bb:
5a:fe:23:fc:eb:1d:f8:be:7c:ae:d4:25:98:9a:f4:20:4b:ce:
1d:d5:c9:01:21:67:e9:e9:50:ab:d3:6b:0d:9a:27:4c:0d:54:
1b:0f:53:bc:99:91:5e:dd:cf:80:45:19:95:8e:a9:29:71:19:
cb:ca:c1:a1:35:e6:ed:80:51:ab:10:7c:9c:2a:2c:ac:56:35:
ca:f8:c6:3a:1c:4f:03:14:fc:c0:1c:ea:15:bd:fe:1c:de:6d:
dc:19:0f:78:c6:5a:0e:54:8d:64:52:f5:6c:37:c3:7d:89:06:
c3:54:de:c6:13:9e:ab:05:4d:14:f8:f4:a5:65:7f:50:e5:78:
67:a2:49:3d:e0:50:f5:65:1f:b4:02:7c:89:7d:e2:c7:1f:85:
63:b0:2a:66:3a:19:7e:37:ab:f9:3b:c2:34:93:52:56:10:5a:
04:3b:60:30:8f:f7:dd:fd:75:25:a6:43:0c:1a:f9:2a:7f:fb:
43:6d:b0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 05:36:54 2024 by rpki-client on console-ams.rpki-client.org