Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/d5Hm2OvZ-s944-SezCLDb_inLc8.roa
File: d5Hm2OvZ-s944-SezCLDb_inLc8.roa (raw, json)
Hash identifier: 74fxfb49KDYdOjm9z6DmQvaeWE6pQDJO8T8dMxo4qFQ=
Subject key identifier: 77:91:E6:D8:EB:D9:FA:CF:78:E3:E4:9E:CC:22:C3:6F:F8:A7:2D:CF
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 056E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/d5Hm2OvZ-s944-SezCLDb_inLc8.roa
Signing time: Fri 12 Jul 2024 15:55:03 +0000
ROA not before: Fri 12 Jul 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1390 (0x56e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 12 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7791E6D8EBD9FACF78E3E49ECC22C36FF8A72DCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:ee:de:dd:90:10:14:4c:2d:5b:ee:04:e3:
01:08:c2:f5:f0:81:13:d5:da:ac:5d:22:ff:8d:41:
6b:3a:1a:8f:7e:22:4c:bb:8e:bc:66:04:67:15:26:
58:bc:58:ec:20:9d:52:b5:98:62:03:c1:82:69:45:
7d:15:28:c9:a1:c0:a1:d7:4c:65:4a:d8:da:eb:d3:
87:b0:08:20:70:8c:3a:d8:1e:ab:c1:05:ec:a5:71:
18:4f:af:b1:92:81:5c:39:f1:36:7c:f3:0f:7b:28:
f9:c7:d8:5a:37:81:05:bb:b3:a6:4c:fb:fd:d2:49:
c2:64:62:29:54:9e:4c:d8:d8:37:da:a1:69:ed:fc:
64:32:7d:58:fd:ef:79:e3:2d:aa:0c:9b:a2:4a:95:
f4:6d:37:23:f5:42:6d:5c:97:10:8b:67:45:26:3b:
88:3d:39:47:58:d0:c3:f0:5e:43:b6:fc:b6:72:7f:
55:91:e6:02:df:6d:76:b5:b0:8d:be:1c:64:e0:94:
ae:94:e5:f4:66:ea:eb:80:f1:ff:14:59:47:b0:c8:
66:56:5f:8c:b1:98:85:a7:2e:c8:84:15:17:3c:34:
46:25:38:66:e7:5a:7f:59:41:c2:5e:a8:f1:ba:fc:
46:46:dc:73:f1:69:0c:93:10:01:a3:2b:fc:9a:fb:
39:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:91:E6:D8:EB:D9:FA:CF:78:E3:E4:9E:CC:22:C3:6F:F8:A7:2D:CF
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/d5Hm2OvZ-s944-SezCLDb_inLc8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:19:f2:3a:9a:f4:1b:aa:ee:45:9f:fe:d2:d8:a4:77:c8:53:
97:95:54:d0:15:21:8a:db:46:55:5a:13:cd:32:f4:ca:53:e8:
a0:45:9a:51:e2:fa:a6:b5:b9:98:19:79:53:fc:64:3b:2f:79:
4a:80:9c:7d:b0:df:8c:11:59:87:27:93:d4:39:94:34:de:9a:
5f:15:74:18:aa:3d:64:3e:45:c7:92:9c:4a:0c:c2:bd:80:53:
ee:b4:ae:3c:6f:88:bd:94:9a:5c:0d:96:ca:d7:55:1c:40:ad:
4f:db:ae:6e:96:80:02:2b:07:03:f6:94:77:90:1e:02:1b:4d:
76:f7:e2:b9:2d:f6:92:d4:53:1e:a1:de:09:79:e0:e3:89:59:
17:01:59:a1:14:a7:56:47:80:3e:36:71:85:88:34:01:61:bf:
ca:27:92:7b:fc:6e:fc:1b:99:88:5e:34:ec:25:37:41:e8:bd:
d4:27:e8:93:2b:5b:25:ad:0f:c7:a4:d9:c4:1b:40:a3:c2:38:
06:8a:6c:f0:50:b5:70:53:2b:6c:85:e1:5f:b5:da:32:ca:e1:
79:54:1d:a9:a8:8c:8f:f0:38:c2:43:5e:2f:69:df:be:f3:42:
ee:72:8a:66:ba:d0:78:75:db:9b:50:94:c0:a5:dd:0f:eb:7b:
d2:59:80:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 21:39:45 2024 by rpki-client on console-ams.rpki-client.org