Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Elxh8m7k2qq5jIL-m67LkIat2Pk.roa
File: Elxh8m7k2qq5jIL-m67LkIat2Pk.roa (raw, json)
Hash identifier: fUshK0x39sTeruU8JCh0E/GW5ZHo2LLklheApn29GZQ=
Subject key identifier: 12:5C:61:F2:6E:E4:DA:AA:B9:8C:82:FE:9B:AE:CB:90:86:AD:D8:F9
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 09B0
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Elxh8m7k2qq5jIL-m67LkIat2Pk.roa
Signing time: Sun 10 Nov 2024 15:55:03 +0000
ROA not before: Sun 10 Nov 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2480 (0x9b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 10 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=125C61F26EE4DAAAB98C82FE9BAECB9086ADD8F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ca:3e:ed:02:26:8a:f7:bc:4f:e4:a2:4e:38:
73:bb:17:63:a8:ad:7a:ee:43:d8:ff:7a:93:fb:f6:
e3:61:d9:f7:98:df:8f:64:30:ed:06:63:e4:9c:91:
e0:b8:6b:40:b1:60:da:c3:17:fe:11:d8:cf:2d:0f:
4c:c2:a9:bb:cf:e5:5a:a7:63:c1:f8:ea:a3:7a:85:
30:a8:4e:55:d3:22:3a:0c:0b:cf:14:8c:48:00:b0:
a6:31:e6:4b:ce:49:0d:10:c1:67:b7:61:91:97:e8:
33:6a:8d:9b:18:12:eb:bb:7d:10:36:11:80:5a:a2:
2c:7a:55:53:4d:6f:5b:3f:db:44:8e:5f:c2:6f:62:
35:86:77:b3:b1:d0:15:6d:5f:37:1d:3d:0e:9f:d1:
18:67:e6:cc:c7:d6:e8:ba:54:fb:00:0b:b1:f0:73:
01:6c:00:62:b4:da:9f:7d:18:83:70:90:9e:c7:81:
a4:39:e8:d5:6a:0e:db:ac:7e:25:5f:1c:d3:cd:83:
5b:08:c6:cc:21:ac:b9:81:85:65:71:76:77:37:61:
4b:14:2d:f5:a8:7a:f9:22:0e:de:a3:0d:9a:27:7a:
af:c6:42:ac:14:60:18:f3:9c:98:9b:e3:4c:32:08:
26:78:68:8d:19:76:3c:8e:0c:9f:63:b1:de:95:07:
f3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5C:61:F2:6E:E4:DA:AA:B9:8C:82:FE:9B:AE:CB:90:86:AD:D8:F9
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Elxh8m7k2qq5jIL-m67LkIat2Pk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:cb:50:db:d9:3c:88:38:7b:36:01:d7:25:d3:66:a0:c6:d6:
3f:97:61:6e:59:f2:c0:2b:62:ab:66:9f:d1:c6:93:b6:24:4c:
5f:2b:68:9d:29:9c:71:99:27:e4:c3:0b:7d:ec:7b:6e:d3:14:
ae:36:33:eb:fa:b4:17:13:e7:02:d6:ac:cc:93:b2:bc:fe:01:
3f:de:39:24:2c:d1:fe:63:1a:2a:6f:10:0d:67:bf:90:45:30:
71:30:70:8b:62:f3:98:dc:fc:02:5e:0f:d1:69:3d:b8:3d:14:
66:fd:5f:42:0d:60:56:26:6c:25:c5:11:55:0d:f0:ad:3c:d2:
e1:05:e9:32:f7:b1:ee:01:d3:97:58:54:7c:30:a8:45:e0:e1:
50:48:de:5e:a9:b9:ce:f7:5a:08:56:68:55:78:c7:b6:ae:99:
7a:a2:4e:d1:13:56:b8:a1:1f:c9:cc:b4:b3:eb:3c:42:e2:67:
8f:19:d4:47:d4:96:b7:bb:7f:40:bb:d5:84:7e:55:55:d8:d4:
73:f4:81:9d:86:6a:9a:2e:45:1f:dd:ab:4d:3f:37:d3:ed:fd:
3f:28:56:1d:92:d9:ae:ab:45:2b:9b:9c:fe:9a:9c:14:98:2a:
88:f7:3f:16:db:8a:0f:39:a2:43:a0:35:0f:e4:1b:56:cb:54:
34:a7:0a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 10 20:49:41 2024 by rpki-client on console-fra.rpki-client.org