Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/LeUgldxbhTAxJVLo9zPfyuC7XI8.roa
File: LeUgldxbhTAxJVLo9zPfyuC7XI8.roa (raw, json)
Hash identifier: CaQCPW6xUamIpT3IWPRP41EHG2CN5iStWGe1GS5QfUY=
Subject key identifier: 2D:E5:20:95:DC:5B:85:30:31:25:52:E8:F7:33:DF:CA:E0:BB:5C:8F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05DA
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LeUgldxbhTAxJVLo9zPfyuC7XI8.roa
Signing time: Wed 24 Jul 2024 15:55:04 +0000
ROA not before: Wed 24 Jul 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1498 (0x5da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 24 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2DE52095DC5B8530312552E8F733DFCAE0BB5C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:f4:54:07:c8:61:b3:ea:39:ef:2b:ab:00:
fe:f4:ee:6c:12:ec:ce:19:01:3d:b0:5a:0e:c2:bd:
ae:fc:ab:0c:1a:48:92:ea:f5:b7:e2:ca:25:a9:86:
61:8a:f8:82:73:3e:07:ec:ad:b7:57:69:67:b1:e0:
3a:ec:0a:37:f3:18:41:4b:bf:d8:10:92:23:53:ec:
e6:93:8c:68:d6:f1:28:66:2a:bc:24:51:69:74:78:
a0:91:7e:e6:69:cd:a5:d6:6a:da:e6:b4:60:97:f6:
52:ea:41:75:19:5f:f0:f7:7b:2a:10:88:f5:a3:9d:
0a:a7:73:c3:76:22:80:0f:40:fc:f0:cd:05:a6:99:
24:cb:64:9f:15:6c:00:4a:b4:c3:66:29:4f:dd:57:
c0:79:19:6c:77:c6:39:bc:52:80:8b:9a:ec:28:01:
02:d0:4e:7d:b0:44:d6:8c:91:90:42:de:5b:05:6a:
c8:a4:f1:d7:40:60:54:79:cc:03:87:24:a0:9e:75:
76:e2:e7:07:43:05:ea:e4:44:b2:9c:47:36:aa:3a:
19:91:ea:f5:9e:04:a0:c6:d6:18:53:42:21:9b:e1:
9b:14:c1:09:4c:e8:94:4d:72:45:8c:11:c5:31:8d:
5a:7d:d4:98:b9:8a:5e:10:b9:f8:b9:ed:d8:6e:b1:
01:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E5:20:95:DC:5B:85:30:31:25:52:E8:F7:33:DF:CA:E0:BB:5C:8F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LeUgldxbhTAxJVLo9zPfyuC7XI8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:77:4f:ad:6f:df:c7:a4:f2:44:37:e6:18:21:c2:af:d8:b5:
6e:61:f1:57:2f:25:fe:53:8c:c5:89:77:c1:09:3b:12:59:bf:
d9:29:4e:45:fa:5f:fc:9c:85:11:51:b1:b3:bf:7f:5d:e9:6e:
16:a4:6a:c6:84:b5:f6:11:0c:27:5c:05:f2:99:95:8f:81:d0:
c0:63:a1:4e:6f:48:ca:55:6b:8f:ed:d0:2e:ee:3d:54:b3:f7:
8f:ec:16:56:69:cc:1a:f3:88:17:e8:74:28:83:0e:af:51:e1:
9a:e3:29:f8:60:0f:80:4c:4a:28:47:a6:72:75:ac:5c:a9:e8:
e5:88:1c:fd:35:6f:a6:eb:c5:8c:ab:65:15:94:3a:1d:91:fb:
9d:2a:d3:ae:68:ed:64:85:2b:5e:f7:60:d4:b8:07:22:77:50:
e7:5a:27:4f:37:3f:f6:87:60:d5:86:3c:2a:68:4a:b4:10:8e:
8e:7d:90:a4:0b:18:4d:c4:13:49:ff:3f:1e:7a:19:8b:67:eb:
d1:be:16:bf:c3:bf:f2:49:a5:47:3b:57:56:27:d3:7a:7d:17:
aa:7b:48:e6:13:d2:c1:57:85:20:a2:b2:1a:ac:9b:6b:9c:89:
a5:c4:d0:77:fe:23:6e:3c:62:19:32:4e:99:e9:50:af:74:81:
42:04:f5:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 00:42:16 2024 by rpki-client on console-ams.rpki-client.org