Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/ZkoQ7bweIH4H3Po600GCeoFPBxI.roa
File: ZkoQ7bweIH4H3Po600GCeoFPBxI.roa (raw, json)
Hash identifier: DqtxwhBUcewV1B1aWvlCTPgTsMXR5p7bDA1aLJKG8ow=
Subject key identifier: 66:4A:10:ED:BC:1E:20:7E:07:DC:FA:3A:D3:41:82:7A:81:4F:07:12
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0941
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/ZkoQ7bweIH4H3Po600GCeoFPBxI.roa
Signing time: Tue 29 Oct 2024 07:55:03 +0000
ROA not before: Tue 29 Oct 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2369 (0x941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 29 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=664A10EDBC1E207E07DCFA3AD341827A814F0712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2c:29:2b:26:de:da:e2:69:3e:49:d0:03:66:
a2:47:e1:7c:1f:f3:94:8b:eb:c5:ed:67:bf:4b:69:
ac:7c:c9:d5:da:86:7e:cc:0a:f9:f7:b4:63:5f:78:
a2:9a:ba:b6:c1:6b:c8:3a:d0:9e:83:30:88:ae:72:
b9:c3:84:2c:9b:65:40:cb:28:77:1d:c3:9d:a8:f2:
ec:7a:30:9e:58:49:89:2a:ac:fb:11:e8:5e:ef:21:
e6:77:59:e7:1e:fc:ee:19:ae:42:c8:40:5c:02:0e:
6c:7a:da:7d:24:f6:34:2c:ed:30:8e:d3:87:af:c0:
cc:04:38:a1:98:fc:28:93:70:d6:ef:84:6b:fd:42:
4f:c2:65:44:15:36:be:38:8f:c4:cd:f3:45:ca:76:
5e:d1:54:94:4f:e3:fc:11:46:42:b3:a0:a9:5d:ad:
3f:7b:d6:cf:43:0f:5a:09:34:30:5a:69:42:a5:f3:
06:56:2e:66:f7:41:f2:fd:54:32:59:15:74:65:40:
20:d7:d7:0c:10:a7:b2:a1:9e:1e:e4:94:ad:0c:a8:
1c:32:1b:71:89:96:0b:d7:f6:2e:6c:a2:85:6e:5e:
61:c9:ea:0f:55:e3:c8:a6:24:0b:ee:9a:29:05:85:
60:bc:16:52:f3:e0:67:e4:cc:23:29:27:50:4d:cb:
22:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4A:10:ED:BC:1E:20:7E:07:DC:FA:3A:D3:41:82:7A:81:4F:07:12
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/ZkoQ7bweIH4H3Po600GCeoFPBxI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
02:b4:5a:8e:43:1a:4f:20:67:f3:e5:ef:59:68:da:e2:2d:d0:
c2:db:84:d8:41:96:4b:75:07:79:f8:0f:11:64:ce:f8:95:5d:
e0:ff:4f:91:33:11:0d:c1:09:f8:19:b8:64:19:1e:67:dd:e5:
ba:dc:00:32:ae:c8:ee:00:d7:7f:a0:72:49:d6:27:e7:6a:22:
46:17:16:f7:ec:9c:49:1d:1d:c6:07:e5:2b:65:1b:e9:ce:59:
e1:0a:c0:30:40:5c:e0:32:ac:49:c1:6f:3d:53:70:af:89:21:
cc:ec:68:24:0e:7a:f0:cd:de:43:29:c9:c7:2d:bf:6b:1d:f5:
fd:21:bb:1b:7e:50:05:6b:af:00:cb:18:b1:0f:2c:cc:47:71:
0f:69:54:95:05:a2:76:3b:c7:11:5d:e2:a9:71:e0:9c:48:88:
e0:cf:7f:35:91:c1:67:0f:60:7d:df:98:73:8e:a0:98:11:db:
2b:bf:33:94:df:0f:e5:64:80:03:07:3b:23:fc:5c:b3:d0:7c:
7c:b7:b5:f3:f2:e7:1d:ff:1a:60:83:e1:d7:d4:98:10:84:ba:
4d:3f:30:56:8d:fc:f6:02:59:68:59:55:a8:ea:d3:48:6b:b1:
35:06:c7:46:70:12:a2:87:fe:a9:f5:ba:54:30:75:6c:07:78:
ed:8b:1c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 14:31:30 2024 by rpki-client on console-ams.rpki-client.org