Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/e2yRo968NJ1GCEZsQfWfbv7P17M.roa
File: e2yRo968NJ1GCEZsQfWfbv7P17M.roa (raw, json)
Hash identifier: K8DYEhbXxxJFMjES47FXWr63vyNzMAZ2iW6L7FqGswY=
Subject key identifier: 7B:6C:91:A3:DE:BC:34:9D:46:08:46:6C:41:F5:9F:6E:FE:CF:D7:B3
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06CD
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/e2yRo968NJ1GCEZsQfWfbv7P17M.roa
Signing time: Tue 20 Aug 2024 15:55:05 +0000
ROA not before: Tue 20 Aug 2024 15:55:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1741 (0x6cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 20 15:55:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7B6C91A3DEBC349D4608466C41F59F6EFECFD7B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:15:8d:b2:7a:b3:94:47:f0:c3:a8:bb:35:dd:
fc:b8:09:ba:72:f5:a2:a0:86:13:23:61:dd:63:52:
8d:9d:f3:94:5c:0d:f1:d9:98:1f:19:4f:44:32:83:
66:0f:78:86:28:42:d8:87:ac:bd:5f:ae:8c:89:c6:
f6:25:fb:2a:55:20:fa:70:e9:d3:0d:d6:9a:50:69:
84:d3:e3:35:0d:d5:83:56:89:a4:d6:28:73:b9:10:
98:27:25:82:d3:32:92:23:8f:ec:f8:f3:f3:7c:61:
58:40:f7:60:07:90:d8:b0:29:54:c4:7e:3f:04:53:
a2:22:c4:50:cb:d1:99:63:dd:9e:05:7b:47:76:9e:
6a:ac:fa:7c:65:78:51:13:2f:a9:e0:a0:9c:dd:c3:
a8:b2:05:7d:e5:ab:e2:2b:5f:4d:06:0e:ea:d6:4f:
b2:82:fa:24:73:d2:04:b3:22:fa:3f:f2:0f:d7:4c:
03:86:d9:ec:c0:96:cc:78:34:4c:0a:e6:79:08:53:
18:24:f7:6b:eb:4d:3d:c3:8f:68:56:c8:e2:d6:6a:
3e:6e:10:4b:d0:b9:5e:58:52:de:d5:b5:a4:f9:a0:
ad:d1:04:4a:15:aa:48:f2:61:f4:ba:6e:42:33:8f:
e2:ca:00:3e:1d:01:d4:30:7b:66:df:63:13:ee:5e:
97:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6C:91:A3:DE:BC:34:9D:46:08:46:6C:41:F5:9F:6E:FE:CF:D7:B3
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/e2yRo968NJ1GCEZsQfWfbv7P17M.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
61:de:e5:37:3d:19:b2:96:5a:10:29:ad:6c:9b:b1:67:54:77:
22:fe:28:47:7e:9b:44:15:4a:62:ce:4e:fb:99:17:ab:8d:6c:
f8:46:61:1a:69:af:6f:57:c5:fa:39:2d:4e:b7:70:e1:9e:54:
a6:7b:48:46:d1:a6:c5:e4:6f:59:08:c5:e8:fa:ab:8e:79:88:
ca:0d:da:22:10:2d:db:7b:90:27:23:e0:f2:33:b9:77:bd:09:
5e:fb:33:26:b8:e3:ac:37:5f:ed:22:da:a4:a5:8d:02:08:7b:
1b:b3:43:f8:64:3a:e0:9a:b3:f6:73:cb:5f:c5:fa:b3:88:ae:
2f:4d:e9:94:28:08:28:8c:28:a2:bf:d0:8b:9b:60:06:80:2f:
ef:56:d0:15:90:7c:e4:7e:29:40:7c:92:e6:95:6c:3e:24:09:
6b:fb:85:1e:89:8d:88:a7:ff:64:49:bf:18:8d:8b:30:d7:e2:
f0:d1:a6:cc:02:27:8d:46:b7:a8:60:7f:bf:03:9d:40:39:ca:
df:d4:ff:0a:6c:ab:5b:28:b5:e9:1e:6b:ab:88:1f:6b:32:e4:
71:0a:ca:dd:9b:51:fb:9c:ee:f9:73:74:06:b0:d8:a2:1f:53:
ec:52:b2:25:72:7b:62:df:98:04:e7:4f:8a:ef:55:dc:c5:74:
53:04:12:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 21:18:52 2024 by rpki-client on console-ams.rpki-client.org