Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/IVRs8e-oXnEbZOEQFRpiuGGuPC4.roa
File: IVRs8e-oXnEbZOEQFRpiuGGuPC4.roa (raw, json)
Hash identifier: jb/SZW5U7nTTzcRZ8jSWxe3YF+TZH8dcYdqRkePVRlk=
Subject key identifier: 21:54:6C:F1:EF:A8:5E:71:1B:64:E1:10:15:1A:62:B8:61:AE:3C:2E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 066D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/IVRs8e-oXnEbZOEQFRpiuGGuPC4.roa
Signing time: Fri 09 Aug 2024 23:55:04 +0000
ROA not before: Fri 09 Aug 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Aug 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1645 (0x66d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 9 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21546CF1EFA85E711B64E110151A62B861AE3C2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1a:85:20:ea:82:6f:0b:d8:4e:88:9a:4c:75:
64:34:23:c8:ed:d1:c1:3f:b7:fc:5b:02:8d:21:a8:
dd:2f:26:b5:6a:d4:c6:36:6c:8e:6c:d6:fb:31:c6:
46:6e:bd:b2:a2:a0:e1:7d:64:fb:15:d7:c8:20:75:
91:92:bd:0b:8c:2c:04:7b:34:a3:38:71:a6:46:ea:
a4:35:a7:26:d1:40:4c:88:ad:4b:d8:66:ef:78:18:
6a:a7:35:6a:b6:31:40:4e:34:54:00:fb:bf:a3:df:
81:ab:df:eb:03:cd:cd:3e:cd:b3:f4:54:e7:92:4d:
b1:01:f1:8b:7e:6b:b8:df:3b:f2:99:32:10:f0:f4:
d5:6a:e0:db:7d:b7:8a:3d:2a:b2:8d:85:69:e4:67:
d6:20:87:c8:f1:e9:0d:88:ea:8f:a1:5a:af:34:40:
3d:53:4c:5c:63:c2:40:f8:4f:a7:37:2e:21:ea:6f:
10:37:de:b1:ba:a1:b5:be:c7:e2:f8:99:66:49:70:
3d:2f:93:e3:7a:03:a7:70:04:75:52:05:de:ad:b3:
9e:88:ad:35:08:5e:bd:63:af:43:ee:b1:7e:59:7b:
fe:0a:49:65:83:95:f3:05:59:98:01:93:2d:90:29:
74:dc:8e:57:e5:b5:71:07:82:40:b5:ee:de:ad:5f:
7c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:54:6C:F1:EF:A8:5E:71:1B:64:E1:10:15:1A:62:B8:61:AE:3C:2E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/IVRs8e-oXnEbZOEQFRpiuGGuPC4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
84:f6:ae:d5:be:14:e9:03:c7:2a:1f:5a:31:b5:6a:37:5d:10:
e1:d6:80:5b:57:be:5f:c8:d9:b3:c7:91:48:85:9c:fc:fd:97:
5c:6f:f1:4b:0a:1c:c2:da:98:2a:e7:72:5c:df:7e:db:61:e8:
a0:6c:cb:10:87:54:42:2e:5f:83:06:7c:29:0b:b3:d6:c3:9b:
56:89:9b:34:fc:80:44:3d:24:39:77:d3:f4:6f:2f:b6:77:a6:
ec:6d:4b:44:fe:40:3d:12:db:85:83:29:2c:46:c3:4d:14:96:
47:97:70:27:49:ad:fc:af:7e:a7:fd:9f:d2:b4:fb:43:81:b6:
a4:05:35:df:d8:25:af:62:c6:ca:c0:23:dc:d4:18:93:fd:f8:
4a:98:46:73:48:d9:8f:e9:cc:ba:8c:78:59:1e:fe:83:d9:cf:
4e:ad:eb:a7:58:b7:01:63:64:82:c0:ec:2d:c8:0c:25:9e:fa:
6d:61:bd:9f:6f:b8:98:ef:7c:bf:18:e4:22:2e:e2:65:41:e1:
f4:32:4c:e8:b0:7a:92:c7:28:45:38:b5:34:37:07:0e:75:4c:
df:d2:08:4a:90:b0:b9:e0:75:3e:43:a2:c2:b2:26:dd:05:54:
aa:18:8d:28:69:de:b4:5b:0a:e6:66:13:f9:4a:7c:53:b2:16:
71:d7:4e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 10 05:08:21 2024 by rpki-client on console-fra.rpki-client.org