Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Jj2hGqm707zG88G6DTcLcFPjuaU.roa
File: Jj2hGqm707zG88G6DTcLcFPjuaU.roa (raw, json)
Hash identifier: zQdigoJDbt91HbDjQjBDpUIH0DKNfWsjUF9g2NkCsNY=
Subject key identifier: 26:3D:A1:1A:A9:BB:D3:BC:C6:F3:C1:BA:0D:37:0B:70:53:E3:B9:A5
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0178
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Jj2hGqm707zG88G6DTcLcFPjuaU.roa
Signing time: Thu 21 Mar 2024 23:55:03 +0000
ROA not before: Thu 21 Mar 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376 (0x178)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 21 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=263DA11AA9BBD3BCC6F3C1BA0D370B7053E3B9A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:49:6e:3f:95:a8:8e:55:cb:82:d7:68:b5:b3:
78:82:97:2e:63:b2:a8:97:4f:f5:46:fc:fd:f1:b3:
2f:10:8b:7b:e4:3e:43:9b:af:29:31:c0:85:24:2e:
db:62:ca:9c:67:3e:31:e7:45:a3:c5:47:59:9d:35:
93:57:73:ab:47:00:15:d6:23:68:26:06:d2:a1:e5:
8c:90:1e:e5:1a:ab:93:ce:56:8a:da:48:6a:e7:86:
96:cd:0d:5d:92:47:7d:8d:eb:8b:98:da:50:51:3d:
df:fe:f5:12:d1:58:b9:cf:6e:71:6c:85:e9:7c:fc:
23:53:be:3c:68:29:cf:82:22:3b:8f:10:77:71:71:
54:70:b4:f3:78:29:5b:48:9e:ee:bb:21:d2:35:d8:
48:5e:03:19:97:5f:5f:d5:ba:69:a0:76:bc:8a:76:
ba:30:a4:80:e1:28:a3:09:f3:32:09:0c:55:1f:74:
f7:eb:f3:f8:9c:39:90:d6:f8:09:9c:43:7c:eb:19:
af:28:4e:b9:38:0a:0b:7b:cf:2c:25:95:e4:a2:03:
47:62:50:a7:7b:9e:93:b7:be:2c:a0:78:63:41:b5:
6e:3f:72:3e:59:1d:0c:96:a3:ee:5b:23:3f:a5:5a:
bd:2b:f5:22:b6:1b:73:a9:51:19:e8:5c:fa:9a:c0:
7c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:3D:A1:1A:A9:BB:D3:BC:C6:F3:C1:BA:0D:37:0B:70:53:E3:B9:A5
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Jj2hGqm707zG88G6DTcLcFPjuaU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:3b:cb:1b:7c:10:4a:c5:3e:73:79:c2:5d:cf:01:95:23:af:
2d:18:26:a6:87:5c:d4:24:dc:5c:80:b0:ab:8b:07:a3:a6:3c:
be:8f:08:c9:e1:42:86:2e:57:e5:ba:bb:f0:ed:88:af:c6:fe:
09:5c:7d:40:8f:28:7c:c0:d7:7b:e5:a1:60:e4:70:6b:4c:30:
06:cf:6b:0b:68:0e:73:bc:f0:ef:9b:3c:f2:10:9e:61:b9:44:
ec:b5:8e:96:8a:c7:82:04:c8:e6:d1:6c:56:e7:10:db:03:a8:
3e:2e:2b:eb:15:60:6a:98:16:15:1f:8e:23:b4:32:98:69:5f:
60:81:f7:d1:7b:7c:de:b9:76:02:2e:4c:64:f5:8e:8c:c4:90:
a9:70:f5:a7:75:e9:76:31:a8:a9:1a:df:d3:e1:32:44:6a:9d:
62:f9:fa:be:92:b2:70:2f:6a:13:c2:0a:81:6a:61:07:36:26:
98:97:1a:f6:d5:17:34:b6:32:54:6f:a4:52:0a:87:31:53:a1:
9a:93:cc:65:9c:96:6a:5e:f2:a1:5a:53:5a:72:34:69:9d:fb:
98:ca:4e:06:fd:90:64:37:11:eb:5b:19:7a:c9:93:db:93:ba:
3f:ac:59:70:67:4c:67:bc:25:29:31:6b:8e:ef:f4:f1:8f:bf:
05:5b:66:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org