Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/GePWKVNsSh5Uw6K_ebv1AnJAMdY.roa
File: GePWKVNsSh5Uw6K_ebv1AnJAMdY.roa (raw, json)
Hash identifier: f4z7hF7/vQebZIQQzpjCRYV8RlZjFEf0JCikMJzQsns=
Subject key identifier: 19:E3:D6:29:53:6C:4A:1E:54:C3:A2:BF:79:BB:F5:02:72:40:31:D6
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07D8
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GePWKVNsSh5Uw6K_ebv1AnJAMdY.roa
Signing time: Thu 19 Sep 2024 07:55:03 +0000
ROA not before: Thu 19 Sep 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2008 (0x7d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 19 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19E3D629536C4A1E54C3A2BF79BBF502724031D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b2:a4:af:9a:e4:06:55:42:89:29:be:f8:b7:
6a:97:98:50:6f:c3:24:06:c0:d6:d8:02:a8:7c:ef:
62:cc:33:29:2f:aa:a9:3a:db:ba:a1:07:f8:9e:15:
d4:74:1b:84:55:d0:26:a2:fc:94:e9:91:df:16:a4:
24:75:69:d9:d8:6e:6a:0d:4d:97:2f:2f:a2:27:c1:
e4:bb:3e:23:27:97:a3:ac:9b:3b:d2:b1:1b:d9:67:
5d:e2:76:20:f2:30:6e:da:54:b6:c2:92:4e:c5:ac:
26:6b:6f:33:76:a6:43:7e:99:3e:f8:3b:88:6b:a2:
03:8b:90:62:b5:25:4d:ed:da:f7:17:25:d5:57:40:
83:fb:93:bb:20:7c:04:47:3e:16:f4:7c:0f:30:9a:
0a:e9:f3:8c:50:d3:32:c0:79:cf:e3:b1:cf:81:fe:
98:8c:03:e8:2b:58:75:f7:86:3f:da:37:51:79:c8:
4f:3f:6d:3f:19:b4:be:99:4a:d7:35:7a:d8:05:b6:
d6:9b:ed:15:dc:10:b6:39:b9:78:0d:29:8b:09:f9:
87:9d:20:4a:e7:ee:aa:61:03:0c:9f:d0:b1:bb:34:
3f:c1:c7:a7:bc:9e:c5:af:c7:9b:c6:06:e1:df:47:
cb:12:e9:ce:61:85:3d:c6:30:a0:04:27:d7:75:45:
14:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E3:D6:29:53:6C:4A:1E:54:C3:A2:BF:79:BB:F5:02:72:40:31:D6
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GePWKVNsSh5Uw6K_ebv1AnJAMdY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:29:a1:fd:23:e3:e3:dd:2c:5c:c7:94:61:0e:80:ab:d8:79:
1b:bb:56:da:e9:6a:95:ba:a6:68:3a:64:01:bb:43:67:68:01:
1f:8e:c3:39:82:c1:f0:00:37:5c:ab:f3:e3:7d:03:67:fe:bc:
62:c5:b8:54:57:f1:a1:68:43:08:20:06:92:e6:43:fa:fe:fe:
a4:9c:ba:9d:56:62:63:e1:a9:97:54:d3:67:37:12:d9:8a:60:
7a:13:cf:3f:d8:ea:df:3a:ee:a1:e9:3c:57:ef:47:86:4f:9d:
e8:75:af:98:67:1f:26:2d:46:4d:dc:13:32:8f:33:bb:20:4c:
c5:50:de:c8:c1:bf:77:22:92:47:62:14:b5:df:53:3e:a3:32:
d4:14:b5:6a:d8:98:f9:68:49:f1:11:e4:a8:bb:33:a5:b7:f8:
19:be:ef:84:e4:26:69:11:ba:3f:ac:b7:b5:41:00:5d:c6:f4:
30:36:4a:a1:53:18:a4:8b:b9:b4:95:6c:20:af:e8:32:a8:2f:
cf:03:94:53:e9:e0:ef:59:21:bd:ff:b0:f9:04:05:99:19:45:
5b:a0:04:8f:da:a6:b5:16:1d:72:6a:90:c4:3a:7a:a1:69:a3:
90:61:30:d5:96:37:4b:b7:9b:78:81:14:66:9d:6d:89:1f:90:
4b:5e:cd:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 17:01:48 2024 by rpki-client on console-ams.rpki-client.org