Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/dTTbipmVzzgQt2J1Fniq4ej355E.roa
File: dTTbipmVzzgQt2J1Fniq4ej355E.roa (raw, json)
Hash identifier: WdOxGpMpTF0JLSlDBG/X2zC712h3+XvR8VboMzOkzaA=
Subject key identifier: 75:34:DB:8A:99:95:CF:38:10:B7:62:75:16:78:AA:E1:E8:F7:E7:91
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07CC
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dTTbipmVzzgQt2J1Fniq4ej355E.roa
Signing time: Tue 17 Sep 2024 23:55:02 +0000
ROA not before: Tue 17 Sep 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1996 (0x7cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 17 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7534DB8A9995CF3810B762751678AAE1E8F7E791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6c:0e:13:62:de:92:79:24:b0:7c:41:74:79:
79:e3:a0:71:1f:53:f7:7e:19:80:03:d6:cf:05:2a:
e2:28:3c:c5:9e:93:3c:01:38:11:7b:ea:d1:2b:a0:
e1:63:19:b9:2d:39:ef:f9:a8:37:24:03:a9:3f:90:
38:f7:86:1d:46:1e:2c:66:72:88:5d:ec:cd:af:6b:
db:88:ce:52:19:5d:7b:6d:57:fe:88:0c:f4:12:28:
ec:38:05:d7:1f:df:47:f0:cb:94:12:cb:a7:8c:3f:
e1:74:ae:a6:de:1a:72:fd:d2:92:06:7f:a3:51:47:
76:bf:f1:13:14:8a:41:15:4b:7a:f5:93:9a:4d:01:
36:f2:c4:ec:b3:fa:b3:f0:f5:65:63:ac:98:d2:a4:
59:4e:b8:8c:a2:1c:f8:e3:7a:5a:e5:fe:b8:54:c3:
c8:7c:b1:1d:6f:bf:f8:6c:ae:4f:65:45:10:df:1a:
03:7e:71:99:ed:e0:63:02:d0:f2:51:73:eb:18:8d:
ee:fb:49:3d:1a:a2:3b:1b:03:9a:eb:e1:0c:0f:92:
e1:41:d5:15:90:b4:17:37:1f:04:8f:e6:0a:df:67:
ce:a4:34:ea:22:12:2f:90:4d:78:8c:43:65:b4:c8:
f2:6c:7b:d7:b8:9c:b1:df:c2:53:e3:62:ba:93:04:
23:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:34:DB:8A:99:95:CF:38:10:B7:62:75:16:78:AA:E1:E8:F7:E7:91
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dTTbipmVzzgQt2J1Fniq4ej355E.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:d8:71:00:af:2f:47:11:63:af:c8:a3:0a:5e:2d:1e:c1:bd:
9f:8d:e9:e7:c0:13:5a:37:65:0f:14:7f:f4:32:9e:cf:50:5b:
63:3c:17:05:a1:7f:06:42:a2:f6:a8:e5:3c:97:1e:86:db:69:
7e:fd:50:38:29:09:11:f7:73:51:03:94:20:74:c1:bd:ed:20:
39:98:d7:6c:7b:0c:41:97:6d:55:b9:9c:e5:57:9c:a6:84:e1:
b2:34:d4:c4:59:f6:2b:9b:11:74:57:31:87:d4:91:06:67:3f:
d3:70:3c:fa:0c:4d:d1:7e:d0:e1:b9:5e:c4:e6:e0:35:58:9d:
a3:66:9a:c3:ab:40:02:7e:63:97:75:0e:16:ee:b8:6b:76:2a:
d1:30:29:78:d5:4e:8c:b6:ad:e7:d5:e7:e0:6b:f5:6b:b7:ec:
94:aa:e0:2d:d4:c4:c1:be:1d:50:fa:66:f3:0e:38:70:6b:31:
ab:3d:99:e7:4d:9c:7b:56:d0:cb:60:ac:0e:8c:9d:3b:8d:6a:
ce:d1:c9:62:62:94:ec:34:43:52:9b:b0:32:51:53:ba:50:ac:
bf:7b:97:2d:13:26:6c:de:8e:fa:b0:5d:b4:9b:7c:4d:50:cc:
c9:f0:1b:db:55:b5:d3:af:86:a5:12:1c:c4:32:36:be:3e:4a:
44:79:e1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 07:44:10 2024 by rpki-client on console-fra.rpki-client.org