Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/eUUNrHHIxOFL6RV5Y6I2_J6n6UM.roa
File: eUUNrHHIxOFL6RV5Y6I2_J6n6UM.roa (raw, json)
Hash identifier: 8I0EK7fSLdc27m7H6okIjZZbj25pBUF+eAopJYODJTo=
Subject key identifier: 79:45:0D:AC:71:C8:C4:E1:4B:E9:15:79:63:A2:36:FC:9E:A7:E9:43
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05EF
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/eUUNrHHIxOFL6RV5Y6I2_J6n6UM.roa
Signing time: Fri 26 Jul 2024 23:55:04 +0000
ROA not before: Fri 26 Jul 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Jul 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1519 (0x5ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 26 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79450DAC71C8C4E14BE9157963A236FC9EA7E943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f8:0e:6e:43:2e:43:67:ec:09:d6:1c:10:06:
bb:52:ba:f4:aa:58:18:5a:fa:45:df:ba:30:3a:45:
e0:51:b1:5a:12:13:a6:98:cf:86:44:57:71:1e:8d:
61:a9:6e:9e:57:a2:2c:9a:6e:e7:cb:ef:d6:da:76:
e2:5d:23:ab:f2:30:ac:74:3f:a0:65:c6:e4:08:cf:
ab:2c:4a:58:3d:d0:1c:a4:ec:cd:9b:7e:04:36:1a:
c4:50:b7:09:39:d6:f2:b2:55:fa:f5:67:1e:d7:f4:
76:70:cd:62:b8:0d:01:82:29:93:59:d9:b9:b9:c1:
fa:18:39:19:d6:45:11:1c:ed:dd:c3:53:2a:91:02:
90:d9:b7:36:1d:94:42:c2:e5:12:05:b2:bf:52:ca:
22:7e:a7:1e:a8:18:aa:95:07:2d:2d:d8:3f:92:5e:
99:97:b8:da:89:57:a3:15:85:98:b1:5b:c9:67:68:
01:e6:e3:d0:71:f7:68:a4:c7:7d:6e:29:07:89:44:
09:80:04:d9:cf:43:17:06:f3:e5:83:4a:8d:06:92:
e0:b9:01:9f:d9:71:2f:1b:a2:51:ae:bb:86:92:37:
33:6c:b0:cf:03:4d:2c:1d:5a:39:9c:2e:67:a1:21:
2d:15:55:c7:d3:37:de:ee:9f:0a:e6:55:1c:3f:e3:
15:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:45:0D:AC:71:C8:C4:E1:4B:E9:15:79:63:A2:36:FC:9E:A7:E9:43
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/eUUNrHHIxOFL6RV5Y6I2_J6n6UM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:5b:ac:bb:84:96:0b:a7:c9:b6:9b:81:35:ed:c8:5d:10:44:
32:e0:ef:ca:f4:94:03:b8:50:41:b4:cb:97:3b:8c:56:f3:d9:
01:78:5a:d0:ea:22:81:03:37:ed:29:de:3c:e0:db:2e:60:e4:
23:af:bf:ce:f3:c2:c0:8f:00:bb:a6:bb:70:ca:f6:73:dd:21:
00:b3:c1:ad:96:0b:dd:b2:24:f6:4b:8f:eb:b5:88:6a:42:25:
4b:05:62:a2:1b:48:ba:08:c7:1c:3e:81:b6:70:67:7f:41:00:
5f:f6:65:29:52:63:c6:5d:80:69:8a:36:7d:86:7b:4c:12:c4:
3d:73:43:5a:33:20:1b:49:16:95:c9:da:9c:d8:5b:d3:10:31:
c5:e7:12:26:4a:92:9e:49:e3:f2:ff:cd:51:23:9e:b0:cd:ba:
66:1e:8c:0c:c9:2f:b9:a0:c0:59:65:d2:54:ca:10:04:03:e6:
26:4d:88:d9:88:9a:a3:d2:80:a6:10:71:2d:ca:3f:86:93:ed:
89:b5:14:2b:86:6b:42:16:98:e8:d9:ec:98:7a:3d:88:6c:eb:
3f:92:88:99:04:1b:ed:f0:03:5d:78:b9:29:5e:f8:17:85:5c:
89:0f:28:d4:c8:ad:9f:3c:45:b4:eb:5a:34:e4:2e:6c:43:c5:
87:05:58:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 27 05:29:12 2024 by rpki-client on console-fra.rpki-client.org