Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/UVLrhpi8N_ADkZCUkcktr1hHVtA.roa
File: UVLrhpi8N_ADkZCUkcktr1hHVtA.roa (raw, json)
Hash identifier: lxaNpkUJwj3RjWyLBm8MZ4w60G7w4h7jHML4aueM9dM=
Subject key identifier: 51:52:EB:86:98:BC:37:F0:03:91:90:94:91:C9:2D:AF:58:47:56:D0
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04DB
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/UVLrhpi8N_ADkZCUkcktr1hHVtA.roa
Signing time: Wed 26 Jun 2024 07:55:03 +0000
ROA not before: Wed 26 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1243 (0x4db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 26 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5152EB8698BC37F00391909491C92DAF584756D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1b:7a:8c:5f:f9:6f:a3:f4:a0:66:84:81:be:
54:bc:f5:44:be:e2:40:09:52:39:b5:a9:c3:de:37:
21:f8:52:0e:fa:21:db:d9:04:0b:bd:e5:66:02:82:
f8:63:6f:41:5d:06:eb:3c:9d:38:04:67:ea:7c:2a:
90:06:70:d0:77:3e:39:79:4b:9a:74:30:91:ba:78:
a9:6f:f7:ba:bd:f4:57:ac:c3:7a:69:31:f5:a2:ea:
96:d2:39:26:b9:db:d3:55:aa:61:ad:34:2a:b4:08:
d5:c7:79:aa:e6:cb:ad:f7:f4:65:58:2d:22:cf:34:
e2:1c:f2:52:62:f5:0d:89:16:47:53:18:7a:84:57:
1f:e2:82:38:8f:5b:b3:93:4b:2d:19:9b:06:d5:ab:
e5:2c:26:40:f3:8d:0d:34:6c:e9:f8:53:88:2a:8e:
5a:e8:c6:12:a5:85:bf:a7:0e:39:88:da:a9:3a:68:
34:85:47:c1:d1:07:e2:ec:e2:52:3b:51:5c:4e:39:
ec:e8:01:51:18:5d:b2:ce:b4:a4:a1:01:81:ac:5b:
46:c2:15:1d:e1:e8:f5:2b:50:2f:9d:98:08:2b:87:
e1:1b:3e:30:b1:b2:23:80:70:55:e0:12:bc:c5:77:
16:47:31:19:93:70:5c:6b:71:d1:ed:a0:69:35:ec:
6c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:52:EB:86:98:BC:37:F0:03:91:90:94:91:C9:2D:AF:58:47:56:D0
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/UVLrhpi8N_ADkZCUkcktr1hHVtA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:57:0c:47:b2:7c:be:3f:80:00:70:1f:65:5b:b6:eb:1b:23:
70:93:3f:dc:2c:65:79:98:44:ac:e9:c2:7e:11:53:19:f4:a1:
99:99:26:12:2c:01:52:2f:16:1d:03:e8:d1:37:4f:8f:9c:28:
be:cc:fd:8f:0c:00:8a:71:03:0b:8d:b5:c5:dd:be:8e:49:f0:
9f:f7:3a:59:89:27:b3:8c:59:f4:0e:da:72:41:35:39:f3:d8:
04:76:a7:b9:8d:9d:09:e1:06:83:f3:22:70:ec:f6:13:77:8b:
fd:68:35:b2:6e:82:b9:fe:81:2a:86:04:dd:b7:59:c0:e0:ae:
db:f3:bc:a3:f6:10:d3:a6:21:56:e1:a7:53:5c:d2:20:00:1b:
4a:15:9d:d2:0d:ee:e8:e5:bc:fe:fc:41:19:9b:a9:ea:9c:23:
30:a0:c1:4d:b8:63:45:21:95:00:e9:60:8e:57:14:67:7c:cb:
c9:59:83:fe:42:35:46:8e:0f:d8:40:4f:17:8d:9f:38:38:51:
b4:01:47:82:b2:2b:e1:4b:a4:f6:54:c9:e3:b4:c6:ec:1d:c4:
0a:98:dc:d9:be:53:f6:fb:69:c4:30:68:0e:17:45:a8:df:41:
5b:f8:f7:3d:43:e6:46:a7:ee:0d:64:0d:98:7a:1b:c6:43:a0:
d5:dc:91:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 15:26:57 2024 by rpki-client on console-fra.rpki-client.org