Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/blC9iJB5gql-7bGkferQ5y11H0Q.roa
File: blC9iJB5gql-7bGkferQ5y11H0Q.roa (raw, json)
Hash identifier: +wcSA4NpUYI42TNeLGOFhrPjSPPwAdXWI0OUIioRHl4=
Subject key identifier: 6E:50:BD:88:90:79:82:A9:7E:ED:B1:A4:7D:EA:D0:E7:2D:75:1F:44
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04F6
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/blC9iJB5gql-7bGkferQ5y11H0Q.roa
Signing time: Sat 29 Jun 2024 07:55:02 +0000
ROA not before: Sat 29 Jun 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1270 (0x4f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 29 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6E50BD88907982A97EEDB1A47DEAD0E72D751F44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a3:ca:5b:de:c3:8a:ea:2c:06:12:68:23:7e:
f1:4c:2d:64:39:27:af:70:a9:53:bb:8e:a3:15:f3:
2a:72:2f:e4:77:10:8e:ce:4c:cb:b3:a5:86:9d:e2:
1c:ff:0e:55:ea:94:f4:57:f9:1b:e5:cd:3c:22:ef:
e8:6c:8b:04:39:d9:7b:ec:32:bb:a7:49:9d:95:72:
12:9a:b7:d1:a3:c8:71:98:e7:cb:d1:15:03:6a:b0:
85:a4:f8:6a:b9:c9:ed:fa:cc:e4:98:9c:6d:de:e9:
89:f1:82:d7:d0:14:88:d6:71:f5:a5:0f:1f:de:a9:
b9:d8:5d:dd:75:a7:5f:fa:71:60:5d:eb:17:3b:f3:
d9:c2:d1:2c:dc:8c:e8:1a:ec:b7:f2:d7:33:9f:2a:
5f:d5:ab:c6:f2:3a:6c:51:19:70:c6:60:bf:d2:3c:
e3:be:cd:97:75:8d:5f:67:65:5a:47:04:71:39:12:
54:57:61:8f:ef:61:92:05:a9:ad:45:66:c1:66:c0:
6a:97:99:49:21:5c:62:db:3b:48:3a:8a:ef:62:37:
b8:e3:65:d6:06:62:24:b1:36:54:98:20:82:cb:41:
d9:e2:7c:2d:7b:f9:b8:66:74:33:ad:6a:ee:dc:86:
9b:7f:b9:50:7e:5a:ba:58:3d:8e:02:96:54:6e:cc:
bb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:50:BD:88:90:79:82:A9:7E:ED:B1:A4:7D:EA:D0:E7:2D:75:1F:44
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/blC9iJB5gql-7bGkferQ5y11H0Q.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:96:ca:6c:37:ef:e7:b1:5a:67:92:1f:b1:74:ef:23:d1:60:
59:5f:84:a9:5e:d5:8c:cb:26:1a:30:59:e7:04:25:27:13:01:
43:08:5f:a7:57:e9:b1:f0:c0:56:f2:1d:19:78:03:51:7f:b5:
0d:c9:7d:5a:0c:09:bf:7c:57:c5:c3:ec:eb:91:63:31:9a:12:
c9:c1:04:36:0e:1f:ef:c5:ab:ee:10:90:83:f0:b0:70:a0:23:
fd:c1:04:49:9d:89:fa:2c:2b:16:6b:16:fc:07:03:a6:fa:28:
a8:fd:53:30:af:c8:46:e9:e7:37:57:61:6c:45:7c:d9:82:6b:
0f:d3:63:39:25:c2:e9:49:4a:a9:7f:6b:85:a5:88:b4:a1:51:
cb:24:a8:43:85:15:b9:fe:03:b1:64:92:7e:8d:7c:89:e7:8d:
42:c7:7e:4c:20:d6:19:c2:71:0d:61:70:4c:b2:94:a3:83:73:
af:5f:3a:5a:2b:64:d8:fa:25:a4:ae:d7:b8:e0:e6:1f:8e:45:
19:e4:65:00:f1:60:7a:7c:f7:6e:50:e2:bb:20:41:3d:04:36:
79:b9:63:6c:37:98:12:66:ae:00:0a:d9:74:c0:7b:74:af:82:
ad:01:bf:ce:22:c4:1b:86:04:a5:9b:6f:fc:a9:04:8f:11:42:
73:e6:ac:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 15:00:46 2024 by rpki-client on console-fra.rpki-client.org