Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/NTaKxHteVZR53uRMC859fHv-xVE.roa
File: NTaKxHteVZR53uRMC859fHv-xVE.roa (raw, json)
Hash identifier: vXKq0eAQQd1jzQGlHdIIhClK13KLl7yvla+KtsTNq58=
Subject key identifier: 35:36:8A:C4:7B:5E:55:94:79:DE:E4:4C:0B:CE:7D:7C:7B:FE:C5:51
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0874
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/NTaKxHteVZR53uRMC859fHv-xVE.roa
Signing time: Sun 06 Oct 2024 15:55:03 +0000
ROA not before: Sun 06 Oct 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Oct 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2164 (0x874)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 6 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35368AC47B5E559479DEE44C0BCE7D7C7BFEC551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:f6:bd:cb:8f:f8:b4:1d:a3:5c:25:f3:74:b9:
d6:8b:1f:db:3c:2f:8e:89:28:8a:7e:ed:e4:a3:3c:
c5:08:ec:5a:42:01:8c:9e:a5:f6:c9:14:61:3d:82:
a5:fc:d6:7a:b1:e7:68:ee:d5:91:9d:03:98:16:12:
d0:b7:41:95:f0:16:f7:af:0d:58:e7:9f:b1:0f:d9:
42:4d:69:66:7c:1a:7c:03:bf:2a:47:79:96:7b:e1:
c0:06:81:85:de:e7:4a:f7:ea:ee:36:59:17:82:8f:
db:00:87:2d:0b:86:5b:74:fe:0c:9d:24:e1:3a:5a:
c8:bc:28:70:4a:25:27:54:59:a0:0a:c1:6d:b6:dd:
5b:f5:8d:d5:00:6b:77:bf:5c:5e:c3:60:0e:1e:67:
0c:47:1a:0c:5f:ed:de:e7:68:3e:0f:f1:01:73:fc:
9c:b0:09:f2:8f:7a:70:36:41:26:f8:d9:40:72:b1:
34:7a:60:ee:5d:5b:e2:ce:f3:bc:69:46:c7:75:7d:
de:22:3b:82:e5:82:62:ac:7d:58:af:d9:db:51:18:
04:f0:91:ea:f1:8e:fc:e5:bf:89:8f:4d:ff:df:4f:
3d:49:23:ce:78:5f:bf:ba:b9:4a:f0:9b:ab:ef:15:
a5:31:3f:28:f4:65:d1:05:a6:b3:22:99:5c:8d:34:
6a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:36:8A:C4:7B:5E:55:94:79:DE:E4:4C:0B:CE:7D:7C:7B:FE:C5:51
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/NTaKxHteVZR53uRMC859fHv-xVE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
16:0c:fa:ab:c7:4c:6c:61:4b:84:14:ea:b2:4a:7e:0c:28:54:
40:5d:b6:8b:0c:7f:6d:a1:c8:98:5a:26:ff:45:19:f5:d1:aa:
ab:7d:05:4f:ac:62:6b:73:fe:fd:3f:87:6d:7c:22:06:12:bd:
61:61:f8:42:c2:82:06:5d:f2:52:68:b5:25:89:6a:28:b3:3f:
5b:fa:c5:fa:a4:4e:49:2d:a8:75:81:18:e0:86:e2:24:48:06:
ee:5f:cd:72:8b:2d:49:37:f8:f8:6a:86:0e:c8:34:68:94:43:
24:b8:30:b0:7f:43:b1:15:a5:1b:a1:d2:62:36:7d:67:14:78:
c6:d5:a0:6e:f1:91:67:e3:48:d2:7c:0b:79:91:69:ea:21:28:
86:4e:0c:43:05:a0:f6:5c:b0:40:41:e6:a5:53:9e:99:30:5f:
d8:9d:83:3b:70:55:0e:aa:74:3d:89:27:69:fe:ee:7b:e4:46:
fa:b9:28:24:a0:28:91:41:57:98:ed:c1:50:78:4e:75:aa:6a:
ac:8a:cb:c6:d0:96:a4:90:52:57:e1:40:d3:9b:df:83:0d:87:
5a:bd:df:43:6f:3e:30:ae:80:86:03:bd:a9:18:04:38:0f:3e:
b6:fa:4b:b6:a1:9f:2a:3a:64:eb:b3:e8:6d:70:4f:91:53:f3:
49:78:1c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 6 21:54:16 2024 by rpki-client on console-fra.rpki-client.org