Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/eJjdqYWvl2X_HTS_hR4fA9DXV-w.roa
File: eJjdqYWvl2X_HTS_hR4fA9DXV-w.roa (raw, json)
Hash identifier: bY2y2eE0ha4FCNZ+98j6g+hgexrbgtX+YNjx4/9773o=
Subject key identifier: 78:98:DD:A9:85:AF:97:65:FF:1D:34:BF:85:1E:1F:03:D0:D7:57:EC
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0157
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/eJjdqYWvl2X_HTS_hR4fA9DXV-w.roa
Signing time: Mon 18 Mar 2024 07:55:03 +0000
ROA not before: Mon 18 Mar 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343 (0x157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 18 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7898DDA985AF9765FF1D34BF851E1F03D0D757EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:01:b1:6e:b8:4b:f9:50:4e:48:7a:8f:5b:c7:
e6:c0:e4:11:95:2f:c9:06:87:10:fa:70:df:2a:f6:
9a:95:ef:fc:2f:4f:ed:28:15:83:76:78:bf:ab:37:
02:de:47:6e:c4:43:ee:41:09:e9:da:17:f7:03:7b:
b2:ef:a6:ee:84:9a:e3:00:27:e7:0b:07:2c:10:eb:
49:d7:94:fe:d7:47:19:54:80:e8:4a:3c:a6:18:df:
74:5a:8d:99:25:31:95:a4:8e:b0:13:74:44:3a:c1:
3b:3f:fa:8a:bb:dd:e7:36:cd:4f:86:d3:af:37:f7:
cd:33:74:b4:00:14:36:fe:c2:68:e6:b1:0b:d8:5c:
83:95:5d:de:3c:af:88:74:4e:42:f9:83:e7:fb:01:
ac:d6:4e:5d:d1:f6:d4:7a:4c:f7:35:c9:f3:d2:51:
f3:2f:e3:3d:7f:1b:96:77:ed:37:10:b6:b8:e0:bb:
a3:d5:3d:43:f6:c1:28:cb:a4:89:d8:1f:ba:c1:e7:
57:74:23:81:ba:d4:a4:f5:bd:4b:fb:56:86:80:3a:
93:1f:c3:af:a5:53:70:11:9d:54:4f:21:d3:0a:6f:
73:28:0b:4c:e0:9b:ee:1a:a9:c5:30:c8:ba:4b:cc:
65:cb:f8:3a:db:1e:19:e5:a0:60:d1:71:6c:ab:7e:
7c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:98:DD:A9:85:AF:97:65:FF:1D:34:BF:85:1E:1F:03:D0:D7:57:EC
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/eJjdqYWvl2X_HTS_hR4fA9DXV-w.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:62:f7:cd:a6:3f:65:19:cc:a1:0d:0f:15:5f:93:30:79:aa:
93:1c:10:ea:d8:22:22:08:83:78:09:a8:5f:ff:c6:dd:e8:18:
2e:d0:27:84:08:54:9a:ad:cb:9b:f0:92:d4:95:6f:c6:30:15:
43:be:c8:32:5b:97:ba:1f:5b:4e:60:a6:03:c8:28:a9:9a:6b:
2c:25:60:31:de:81:83:1b:09:e5:c1:cd:c1:25:d1:0f:89:b0:
63:0d:a1:bb:b3:72:41:7a:6e:03:ca:5b:b5:93:a7:21:20:c5:
08:9e:0b:28:0f:42:35:56:36:54:74:25:79:bf:de:27:c0:87:
7c:20:2c:a8:ab:39:83:71:39:88:90:2d:02:0f:40:85:32:d0:
2e:7a:71:b8:97:85:4d:07:cc:d8:d7:0b:93:03:be:89:35:c8:
e2:ec:c0:5c:78:df:10:f2:52:7f:a0:76:01:0e:a1:9d:e8:48:
66:0b:45:ec:d2:92:ba:48:21:75:20:71:44:2f:af:a8:44:7c:
a4:df:22:75:03:f6:2a:35:fc:a4:1b:85:a3:a4:7b:7f:c8:af:
54:b4:04:e2:d6:00:bc:c9:5a:08:1e:39:a3:37:b8:6e:93:a3:
d2:fb:1f:87:06:34:b9:b0:fb:ee:53:10:52:d7:51:79:0b:a1:
ed:ff:29:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 14:23:58 2024 by rpki-client on console-ams.rpki-client.org