Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/dmpKhnq_k5u6w2fIp3wS8vyZYxI.roa
File: dmpKhnq_k5u6w2fIp3wS8vyZYxI.roa (raw, json)
Hash identifier: 0r0hCX/NsoYjBTc8FOUNR5fixyEODaC22N/sp5iGOIQ=
Subject key identifier: 76:6A:4A:86:7A:BF:93:9B:BA:C3:67:C8:A7:7C:12:F2:FC:99:63:12
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0679
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dmpKhnq_k5u6w2fIp3wS8vyZYxI.roa
Signing time: Sun 11 Aug 2024 07:55:04 +0000
ROA not before: Sun 11 Aug 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Aug 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1657 (0x679)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 11 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=766A4A867ABF939BBAC367C8A77C12F2FC996312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d3:c2:30:79:a7:54:0a:ce:89:de:22:f2:0d:
ba:00:fd:7b:19:b1:fd:6f:85:a2:6b:8a:0b:0c:20:
78:1c:63:72:94:03:29:c7:48:e4:e2:52:a7:c0:1d:
87:f7:af:9d:59:0b:57:f0:71:fd:6d:33:2e:c3:73:
6b:4d:a1:e6:7c:6b:8e:95:9e:cb:0d:03:0c:c1:6c:
64:56:b7:7f:18:ca:7f:3e:0e:ee:09:f2:e6:11:1f:
3b:7a:62:79:e3:9c:ed:b5:e1:a1:c2:59:5a:0f:d8:
42:e6:0d:3e:29:8a:f9:5a:11:ef:62:25:c8:55:e3:
d9:eb:cf:e3:48:c1:f8:cf:f1:91:87:d1:ca:a7:ae:
c7:ae:b1:1e:43:55:4c:70:fc:73:33:4f:05:be:37:
31:9f:9a:f9:5a:76:08:84:4a:d2:dc:7f:0c:cb:1c:
3b:c4:a1:8f:c3:a7:a9:15:8d:f4:e9:04:a7:e6:a9:
16:1b:f4:83:e9:36:8d:36:0b:f1:93:d8:11:bf:71:
74:bd:46:f5:3c:13:b8:3a:6f:a4:3b:d7:86:64:49:
50:c8:86:3d:cc:4a:fe:e7:ac:12:2b:3d:16:82:3b:
96:24:ef:49:52:c8:e2:ad:59:61:ab:73:ac:0d:eb:
35:20:93:0d:95:4c:99:16:e6:64:a0:c4:82:ec:c7:
56:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6A:4A:86:7A:BF:93:9B:BA:C3:67:C8:A7:7C:12:F2:FC:99:63:12
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dmpKhnq_k5u6w2fIp3wS8vyZYxI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:af:2d:44:a8:e3:ef:e8:10:55:50:58:31:88:c8:46:60:ff:
bb:cc:8a:20:9d:17:51:2f:af:e9:13:ac:1f:01:d0:c4:6e:85:
ff:69:cd:74:a8:02:f8:99:c6:89:c9:49:2e:0e:86:68:7f:ff:
e2:4b:e2:8b:a3:c7:c3:f7:52:e4:15:05:22:48:9e:02:d5:6a:
79:49:77:87:eb:9b:6a:c7:31:87:00:30:4a:f9:c4:df:c4:40:
7c:fc:bc:62:f9:16:85:73:e2:44:53:c8:9c:30:2f:df:eb:3f:
c1:e5:d0:05:92:2c:41:6b:a6:69:51:bc:86:9e:6c:f9:58:35:
ab:fe:9b:09:c6:a8:38:40:a6:36:93:b9:69:ba:91:15:7a:f9:
6d:09:8a:b2:3f:c7:ef:6d:0b:82:e1:18:ec:e6:4a:fd:28:9d:
b0:35:3d:05:df:2e:f9:0d:65:37:dd:e1:7e:25:91:d6:52:ea:
51:28:10:10:00:ed:00:54:74:3e:73:7b:2b:81:a1:9e:22:b0:
d6:d3:cb:35:26:75:c7:6e:8a:6a:06:f0:3c:dc:d4:79:4e:9c:
55:81:37:be:65:c7:c9:39:e1:01:35:43:59:d0:c1:7a:6b:8d:
f5:68:61:f7:6a:a7:e5:9d:4c:31:cd:11:35:6d:5e:f6:fa:dc:
f0:b0:c5:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 11 13:09:04 2024 by rpki-client on console-fra.rpki-client.org