Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/K2TJ__zfI9aLXzgXWIF2ji7XhOk.roa
File: K2TJ__zfI9aLXzgXWIF2ji7XhOk.roa (raw, json)
Hash identifier: n+7NCLll2kOswJTPj7SUuN1G1Jwd5wxoJ7lYwhd0US8=
Subject key identifier: 2B:64:C9:FF:FC:DF:23:D6:8B:5F:38:17:58:81:76:8E:2E:D7:84:E9
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0112
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/K2TJ__zfI9aLXzgXWIF2ji7XhOk.roa
Signing time: Sun 10 Mar 2024 15:55:03 +0000
ROA not before: Sun 10 Mar 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Mar 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274 (0x112)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 10 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2B64C9FFFCDF23D68B5F38175881768E2ED784E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a7:fb:52:28:1d:f6:9f:d8:f8:1e:88:c5:85:
c3:23:23:bb:e6:bb:02:00:ea:f8:f9:86:0f:b6:0f:
26:df:9d:90:d7:30:67:ee:14:47:ad:a0:0a:a4:61:
ab:34:9c:91:18:4b:f8:47:57:fe:9f:fc:60:7a:0b:
bd:22:3c:42:e9:3f:38:e8:66:6d:63:88:87:fa:7e:
ac:8b:34:1b:09:be:6c:bb:ef:09:a9:b7:9b:32:56:
6f:6f:25:20:3e:a3:28:96:63:42:12:ad:b5:af:21:
72:c4:72:1b:86:1a:ee:f8:74:eb:b8:a7:91:df:d2:
79:0e:5a:00:c7:d7:8e:17:3b:37:29:49:70:f0:87:
b1:0e:18:86:f8:00:90:9b:d7:a5:5b:40:0d:f3:22:
6f:f8:9a:a0:89:0c:45:23:dc:f0:15:76:86:69:05:
e5:56:63:12:d2:32:c3:b1:77:ba:bb:ef:a5:ba:06:
57:11:47:18:54:c8:64:20:b9:4e:7f:cc:f5:b7:43:
9b:0a:a6:96:47:1a:63:20:af:1e:d9:2b:74:69:a9:
0d:e4:ea:3b:38:59:f6:33:b5:b1:52:0e:5e:aa:d6:
d9:a3:ab:c5:00:11:e8:d7:5b:fc:5b:2a:83:6a:9b:
03:2e:c5:88:26:ab:be:a6:d1:b8:77:c3:c9:69:4e:
02:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:64:C9:FF:FC:DF:23:D6:8B:5F:38:17:58:81:76:8E:2E:D7:84:E9
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/K2TJ__zfI9aLXzgXWIF2ji7XhOk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ee:f6:c3:c4:c6:66:8d:d6:22:4c:12:5c:65:16:ee:e8:e8:
b8:e2:9b:b9:35:9c:2f:51:83:ee:62:b5:10:5b:4e:dd:69:d5:
f2:8f:c9:ed:60:b4:99:33:d4:e4:c0:df:b4:df:69:e4:c7:0c:
c0:bf:1b:83:d1:4d:80:cd:29:ba:a2:c5:b0:03:04:dd:07:e8:
d9:11:97:87:d1:b9:77:19:a5:7c:b4:fd:e0:f4:b0:e5:90:7f:
02:df:3c:62:ba:57:da:7b:b3:56:e0:3d:0a:cc:8e:e0:af:90:
8f:a0:41:0b:23:32:6a:d8:f1:06:93:6d:c0:74:c8:bd:e8:ff:
03:8f:d3:f8:31:b0:c6:c1:74:5e:1e:7c:ba:0c:15:e0:0c:47:
04:25:e9:a6:c8:58:12:21:63:84:35:04:b5:6e:9d:b2:60:a3:
ad:71:2d:62:47:34:86:39:93:73:6a:bb:f3:da:df:14:0b:d6:
8a:8c:3c:f9:bf:f3:74:50:b6:b2:64:a5:af:87:76:7c:03:49:
b7:ef:3f:84:22:7a:9f:ef:1b:74:5d:49:d9:31:3b:d3:3c:e3:
5c:5b:f8:30:6d:3e:97:2e:87:f6:94:a8:06:4c:0b:1d:24:1d:
32:fe:51:70:d9:4d:ae:7d:b1:ae:01:11:74:0e:41:b1:0c:d9:
76:59:b3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org