Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/EquX89rMxv3fFWEAOhyX30HFFoY.roa
File: EquX89rMxv3fFWEAOhyX30HFFoY.roa (raw, json)
Hash identifier: BdTsDrhT9uGQyz3ZYPETxjwbruuohWOE6LA7LeBGEpg=
Subject key identifier: 12:AB:97:F3:DA:CC:C6:FD:DF:15:61:00:3A:1C:97:DF:41:C5:16:86
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 03F7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/EquX89rMxv3fFWEAOhyX30HFFoY.roa
Signing time: Fri 31 May 2024 23:55:04 +0000
ROA not before: Fri 31 May 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jun 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1015 (0x3f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 31 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12AB97F3DACCC6FDDF1561003A1C97DF41C51686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e8:c3:02:8f:6d:6f:d4:34:7b:18:31:6a:50:
e8:d9:eb:c4:57:3a:b2:27:24:c7:17:f3:47:d0:aa:
3b:1f:d5:e3:41:34:f3:d4:6c:f2:fb:24:0b:63:c8:
8f:ae:d3:5f:2e:b4:57:3f:bb:22:55:43:95:03:c1:
a8:f1:d4:a0:4f:de:06:4b:17:22:97:1e:20:c9:b8:
56:76:93:fc:46:4e:f0:f5:29:12:cf:cc:8e:ea:ea:
f7:b9:fb:55:81:87:08:bf:76:10:56:64:f7:7a:54:
6c:b9:95:67:e1:c2:1c:5d:72:1a:d6:76:5d:c9:f7:
14:8c:99:81:a8:07:0e:3c:73:02:e7:d0:5b:0f:78:
fc:76:c0:54:5f:7f:3d:80:8b:88:32:4c:7f:7e:42:
95:82:01:8e:c8:d3:e5:33:85:13:78:41:d7:5f:82:
c1:03:20:b2:79:f2:37:33:7c:df:6e:ba:08:e3:a1:
75:b6:c6:f3:c0:1b:07:26:a6:0c:10:43:60:ba:10:
22:56:1c:7d:c4:b2:f2:f9:8d:17:a3:c6:b4:cd:58:
5b:3c:cc:cc:6a:ca:ac:ca:84:f5:3e:fc:db:9c:0f:
77:5c:c4:f2:d5:db:f4:7a:f2:60:aa:66:df:ac:b0:
c9:22:ea:8a:02:cf:33:63:f4:85:0a:03:88:64:15:
c3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AB:97:F3:DA:CC:C6:FD:DF:15:61:00:3A:1C:97:DF:41:C5:16:86
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/EquX89rMxv3fFWEAOhyX30HFFoY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ae:b3:75:06:98:ee:d6:34:19:f5:48:d0:6f:f2:b5:c3:26:
e5:71:7c:1c:7e:7c:5d:be:79:47:84:1c:50:fe:c6:1d:54:c2:
2f:92:92:6f:ee:ea:41:70:0b:ae:8e:81:03:f9:e4:7b:58:d4:
79:49:77:a4:e6:b0:cb:83:93:76:0b:2a:95:79:e8:d9:39:3c:
6a:28:1c:ba:3c:1f:e2:c2:ec:fa:07:d8:4e:39:5e:a7:8c:c0:
af:ee:58:30:91:e1:c4:62:c7:19:76:7c:66:80:a0:11:81:bb:
b8:ea:11:7c:f5:b0:ee:d1:db:69:75:58:55:34:88:36:8f:14:
0c:db:3e:bc:64:02:6d:fe:26:53:07:7a:34:9f:cb:08:a3:a6:
86:c5:a1:40:98:a5:4c:c7:54:a6:8a:60:cc:a1:0e:a5:f8:da:
3d:dd:b9:af:bf:91:a0:12:fa:ef:28:75:4b:98:c9:75:36:91:
22:83:b2:0b:ab:08:24:99:c5:af:95:e0:c3:46:f1:ac:ba:25:
66:36:8a:f1:5f:ee:c0:0c:37:8f:c0:c6:ba:63:60:86:d0:b6:
01:4e:1f:c5:6b:f4:6c:1b:28:bc:0c:74:e5:94:e2:8c:eb:33:
a4:97:e3:11:ce:9b:7b:7f:de:dd:53:75:3c:bb:54:4b:4f:af:
16:7e:60:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org