Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/LhocIYhS5FuuL4Bjsz317G6A1ZY.roa
File: LhocIYhS5FuuL4Bjsz317G6A1ZY.roa (raw, json)
Hash identifier: d1ishdhLAnbs79k4PNtl2aJvyfwCeo603nd8qRaZNgY=
Subject key identifier: 2E:1A:1C:21:88:52:E4:5B:AE:2F:80:63:B3:3D:F5:EC:6E:80:D5:96
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0457
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LhocIYhS5FuuL4Bjsz317G6A1ZY.roa
Signing time: Tue 11 Jun 2024 15:55:03 +0000
ROA not before: Tue 11 Jun 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jun 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1111 (0x457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 11 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2E1A1C218852E45BAE2F8063B33DF5EC6E80D596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:96:ad:8b:0b:43:7f:45:e9:fe:df:d9:a5:d5:
db:7c:04:1e:c7:c8:c2:03:68:2b:46:c1:1d:42:f2:
6f:0e:8a:12:18:ec:c2:8a:d1:2a:72:b4:42:b9:c5:
b5:4a:51:c5:79:00:9d:b8:59:a6:78:48:36:fb:f2:
60:29:b5:7e:f5:9c:3a:9b:72:cc:04:13:e5:69:c8:
b7:ed:9d:38:0a:08:c8:39:c5:68:41:f6:16:7d:c3:
91:2a:bf:39:6b:6b:c5:c5:e5:1f:22:d4:db:0d:16:
93:7d:2d:9f:1b:43:31:0a:5a:24:f6:1f:72:0e:b1:
ab:a6:d1:57:73:c4:ea:65:52:26:62:a8:43:69:a4:
7e:cd:68:d6:d5:52:fd:67:71:17:46:19:9e:3b:85:
a6:b4:13:16:49:13:e3:5d:23:a6:75:ae:82:02:57:
42:76:58:a1:e6:a9:9c:0a:ed:cc:2c:0c:ba:ec:24:
a3:7a:52:3d:0e:2c:cf:f8:76:d9:01:59:62:5a:b5:
f8:2b:c9:5c:44:a9:01:fd:7f:a4:6d:3c:c1:45:3b:
5a:1b:81:28:1d:14:a6:0e:4a:9a:b5:fa:e3:64:fe:
3b:54:21:3c:56:c1:f1:7d:c3:9c:d6:54:4b:fc:89:
08:dd:ef:93:4e:ce:41:65:8f:e5:a2:20:77:dd:ab:
f1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1A:1C:21:88:52:E4:5B:AE:2F:80:63:B3:3D:F5:EC:6E:80:D5:96
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LhocIYhS5FuuL4Bjsz317G6A1ZY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
44:d0:f6:ee:26:d7:d0:98:0a:68:51:a6:cb:fa:77:8c:d5:28:
45:d9:74:cf:35:83:49:52:5f:b5:8e:ce:f4:4e:e3:b1:36:bb:
7c:89:d5:3a:4e:24:01:2b:c4:5a:a4:9c:e3:39:53:a3:67:15:
61:5f:6d:88:e1:24:b1:a3:91:a2:89:eb:7d:f0:d4:c5:1d:d0:
d3:57:de:71:0a:90:10:09:ae:67:97:fc:a9:b4:32:ed:88:12:
62:5e:b1:c7:1b:b3:2f:0c:14:4a:7d:d8:3f:be:10:0d:b4:b7:
2f:96:c5:df:ef:a3:bd:83:73:01:47:4c:fb:ff:d9:32:54:b6:
17:fd:0d:80:be:5b:6c:f1:e9:f1:ec:dc:92:8c:4b:4c:6f:b1:
dc:2b:8b:12:e1:d6:29:be:00:b1:72:7c:f0:8d:f7:cd:8d:ef:
d9:9b:db:84:be:bb:42:02:a4:38:66:b1:8d:3f:21:47:c8:14:
7a:9c:64:5c:95:3f:56:23:a7:0b:0e:b7:f7:7a:ad:ad:8c:16:
64:56:8f:33:f7:e2:2c:18:01:ab:61:82:a8:77:e0:5c:62:00:
0b:70:a6:8a:8a:5d:53:60:75:78:b4:8c:f1:b7:93:fb:e0:fe:
4a:ad:93:65:60:4a:de:94:76:a2:23:ef:f4:4b:42:4e:7a:23:
12:d2:d6:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 23:34:11 2024 by rpki-client on console-ams.rpki-client.org