Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/K_LwRIDkGNvn_H3sDhmLVpIZ5_w.roa
File: K_LwRIDkGNvn_H3sDhmLVpIZ5_w.roa (raw, json)
Hash identifier: 6PMeEPP3jm7VJQ4fY7xf7jo6n/nqgUB1rw2Zhu+xjZM=
Subject key identifier: 2B:F2:F0:44:80:E4:18:DB:E7:FC:7D:EC:0E:19:8B:56:92:19:E7:FC
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0553
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/K_LwRIDkGNvn_H3sDhmLVpIZ5_w.roa
Signing time: Tue 09 Jul 2024 15:55:03 +0000
ROA not before: Tue 09 Jul 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1363 (0x553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 9 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2BF2F04480E418DBE7FC7DEC0E198B569219E7FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b7:78:f9:5d:db:9f:5d:f7:96:b4:da:9e:28:
09:55:02:aa:6e:ff:43:7d:f0:eb:75:f0:ad:e4:c9:
33:72:12:24:01:17:41:68:7f:6e:d1:15:84:f0:b0:
92:c1:9f:ac:cc:c4:b4:4c:84:b6:64:11:93:26:52:
b9:af:cb:97:48:b2:e8:60:0a:f0:be:29:b7:5c:8e:
97:7d:8f:a1:c9:55:f5:a6:eb:e8:ba:bd:7d:c1:17:
dd:3d:1c:7d:2d:73:42:81:68:61:b2:69:4f:f0:01:
34:ff:74:98:9c:3b:aa:e2:b5:29:7f:16:04:62:4a:
ef:6c:30:9a:b1:9f:f8:e5:8c:b5:1a:88:f1:ad:cc:
cf:37:6d:ec:df:86:35:19:86:cc:e3:34:ed:0c:eb:
85:e3:06:f3:af:51:72:d2:59:99:76:a1:11:74:12:
5d:52:c8:bb:f7:d3:70:f4:af:46:5e:5f:cb:6b:30:
7a:f9:37:93:75:f4:7a:51:0e:d9:1b:71:85:e7:47:
14:be:c8:39:7f:68:0e:3d:04:f4:5a:e8:90:d1:dc:
cd:de:e3:83:bb:af:44:65:66:91:2b:6d:43:ce:d2:
09:d9:a3:ab:e4:cc:b1:9e:b4:1a:a2:ac:14:bd:b1:
0d:c5:57:55:57:7b:9f:10:2b:10:d3:dc:d6:43:aa:
2f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F2:F0:44:80:E4:18:DB:E7:FC:7D:EC:0E:19:8B:56:92:19:E7:FC
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/K_LwRIDkGNvn_H3sDhmLVpIZ5_w.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
67:28:a2:cb:6f:a7:eb:e3:d6:75:9c:7d:5b:2a:14:ab:ed:64:
7b:43:14:a0:c1:78:46:69:43:70:57:cd:23:8f:7d:2a:7c:ad:
e9:e0:a2:cf:b1:37:36:d6:50:19:5c:20:f3:6a:8d:be:b2:16:
a1:76:50:30:4d:34:65:07:e7:02:bb:53:30:10:f3:8f:0b:b5:
12:87:26:6f:8a:b0:0c:c5:eb:0f:c4:55:1e:43:f4:10:e1:8c:
f6:e0:3d:1a:9e:63:37:ca:37:08:0f:8f:1b:c4:fe:22:c7:20:
0c:09:ce:1d:7c:fc:2b:e2:26:59:de:45:eb:f4:ee:6d:c8:8a:
f0:63:bf:49:00:6f:a0:b9:73:f5:f3:79:f7:3a:e8:ea:45:09:
e6:47:2f:43:bf:64:d7:99:25:f0:13:d2:81:ad:a9:e3:7d:29:
02:5e:c8:42:80:61:39:9a:50:0b:de:b3:08:2b:32:32:37:81:
fc:63:ad:e5:9a:37:68:4c:b1:ec:37:ab:dc:6a:da:d9:3d:d6:
11:fc:91:06:61:78:a4:ab:04:e4:d0:ee:ca:90:21:f5:69:7b:
a9:e7:7b:84:c6:38:ce:fc:bd:90:95:54:c6:91:37:47:dc:22:
cb:d2:c0:64:5e:69:c4:da:df:ec:4d:92:66:f6:c8:fb:68:ac:
08:48:3f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 21:07:17 2024 by rpki-client on console-ams.rpki-client.org