Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/cYDeQKVTXl6Z6BebMerag8Dc8Y4.roa
File: cYDeQKVTXl6Z6BebMerag8Dc8Y4.roa (raw, json)
Hash identifier: l820yow2cc7J8zQX4CBShQNq9MlqhFMACVvrSYiKH4g=
Subject key identifier: 71:80:DE:40:A5:53:5E:5E:99:E8:17:9B:31:EA:DA:83:C0:DC:F1:8E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0541
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cYDeQKVTXl6Z6BebMerag8Dc8Y4.roa
Signing time: Sun 07 Jul 2024 15:55:02 +0000
ROA not before: Sun 07 Jul 2024 15:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1345 (0x541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 7 15:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7180DE40A5535E5E99E8179B31EADA83C0DCF18E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:64:7d:41:42:8f:1a:12:8d:b9:87:72:50:11:
ec:2e:86:5d:4c:0f:1e:a9:15:5d:51:bc:ab:dd:4f:
a4:03:42:06:15:05:71:42:25:12:b2:6b:06:41:78:
af:d9:0b:e5:85:0d:27:fe:d8:af:e2:2d:1c:eb:36:
d8:07:66:20:5c:8a:22:b1:6a:3c:fe:32:0f:cb:d3:
08:2f:c5:ce:75:58:b5:00:18:8c:a9:1d:54:3b:62:
12:86:10:dd:96:bc:31:78:cb:8e:84:a1:d7:64:10:
39:84:bd:bb:6b:36:bd:85:45:64:e3:f6:fe:74:c6:
f6:4f:e1:91:e5:d2:37:cd:da:ab:63:91:5c:4c:24:
1f:62:e5:ef:98:88:20:29:bd:50:96:a8:09:1e:cd:
a9:cd:01:0d:ec:c7:b8:fe:0b:fe:65:48:14:df:81:
0f:19:55:8b:18:88:63:60:77:1a:f7:28:62:83:f8:
2b:2a:70:65:92:17:f0:fa:cc:da:fd:3e:e3:0c:91:
29:a5:72:48:dd:e7:32:9c:1a:d5:90:28:20:71:8e:
0b:bc:74:9f:ef:97:b0:c7:44:76:ad:bb:5f:0e:01:
b1:e2:da:a1:af:a6:82:d8:68:f5:97:f4:f8:de:6d:
8c:67:b8:8c:a9:4a:e4:a0:87:25:e4:41:95:d7:9a:
f6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:80:DE:40:A5:53:5E:5E:99:E8:17:9B:31:EA:DA:83:C0:DC:F1:8E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cYDeQKVTXl6Z6BebMerag8Dc8Y4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
26:0b:b6:51:76:6c:fa:2a:7b:cf:b2:59:07:fe:33:19:b6:67:
04:05:6c:d2:2d:ba:8a:fb:cc:06:28:50:2b:8d:48:66:60:fd:
f0:85:a3:c8:cf:6b:02:7b:3a:fc:7e:7c:17:25:7e:95:20:28:
d7:9c:ae:92:77:1f:11:36:7f:5d:40:ed:90:23:83:ad:45:d2:
e0:c9:0a:52:05:08:81:92:90:dd:1f:77:e8:2e:69:00:12:e5:
be:f4:17:1b:8f:0d:cb:c5:c8:eb:e3:3b:2f:d4:14:5c:db:37:
37:83:b2:b0:f1:8d:64:f1:da:fd:96:ae:58:a1:a6:48:17:d4:
7f:01:7a:76:21:5b:d6:df:d5:71:2d:f3:73:69:6e:ad:5b:29:
eb:be:a7:32:e7:7a:7f:38:c5:01:4e:10:d1:62:64:c1:ef:32:
44:7d:97:65:d8:d8:2f:d7:7d:59:1b:d3:8d:b0:04:64:64:48:
5d:65:9f:a1:92:85:45:92:6e:01:07:77:02:b4:c1:a8:9a:4c:
70:86:45:9e:02:45:3a:ca:d4:d3:5a:da:a4:81:cd:15:5d:82:
67:49:18:5a:a6:34:4e:19:3b:26:26:c3:6a:b9:e4:66:ff:33:
e4:73:ae:50:9c:23:6f:11:09:0d:96:ff:de:ab:ec:d5:16:01:
df:d5:73:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 21:03:40 2024 by rpki-client on console-fra.rpki-client.org