Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/fzd7SIfUEReU6zCdsE9S9-m1Nmo.roa
File: fzd7SIfUEReU6zCdsE9S9-m1Nmo.roa (raw, json)
Hash identifier: BgKT+XUkVWdpbGjIzd95CeVKUdcAbK883sQKbHZRYJw=
Subject key identifier: 7F:37:7B:48:87:D4:11:17:94:EB:30:9D:B0:4F:52:F7:E9:B5:36:6A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0769
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/fzd7SIfUEReU6zCdsE9S9-m1Nmo.roa
Signing time: Fri 06 Sep 2024 23:55:03 +0000
ROA not before: Fri 06 Sep 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Sep 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1897 (0x769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 6 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7F377B4887D4111794EB309DB04F52F7E9B5366A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:79:32:b6:6c:98:97:ea:2e:93:0a:87:ef:8a:
68:5d:cc:35:d5:71:0c:0a:82:3e:9f:ef:74:33:ec:
6e:e4:a6:24:5c:fc:c3:65:df:c1:76:6c:f2:bd:ff:
94:38:52:b4:41:1b:75:58:ce:dd:71:98:1a:4d:f1:
9c:a7:a9:5a:16:90:3a:ab:d9:43:ff:45:b4:e4:0f:
e3:46:19:c2:8c:0c:9a:8c:5a:82:e5:72:78:2b:f4:
19:93:f3:a8:54:2a:ae:b8:39:d6:d4:1d:07:5f:d3:
02:89:d1:80:e2:b1:1b:e4:82:c3:71:a3:78:b3:3a:
78:bb:03:b6:e3:9d:fe:89:00:eb:6e:13:d1:6a:97:
6f:d8:8e:81:5c:8b:63:26:1d:78:e9:38:e3:a7:5d:
f8:5c:39:75:f8:2d:04:99:d1:36:a2:53:0a:1a:d6:
6f:8d:a3:0a:22:f6:60:b4:92:9c:df:85:d1:ca:ab:
a5:a2:bd:65:c3:a5:3f:a9:43:cf:27:da:4e:a4:7d:
a0:75:dd:34:de:b7:99:7b:1c:0e:97:4c:28:68:47:
6a:8e:62:e8:03:77:b2:a6:18:e3:5d:70:84:e4:5f:
1d:d5:37:87:3b:c1:7d:92:f4:5d:c4:44:ec:d0:f8:
74:59:28:0c:f1:01:d6:25:3a:f3:84:2d:0b:d3:26:
51:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:37:7B:48:87:D4:11:17:94:EB:30:9D:B0:4F:52:F7:E9:B5:36:6A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/fzd7SIfUEReU6zCdsE9S9-m1Nmo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
68:e4:5e:b1:94:87:12:9c:14:f2:ca:78:44:84:19:e7:19:f1:
d9:da:10:23:e3:b7:30:15:be:2b:ca:23:6e:c4:c0:9e:00:25:
9f:4c:de:9f:6c:3c:d8:c7:fa:79:2c:ee:60:e9:fc:1f:46:bb:
75:65:a5:84:25:e8:29:d5:fd:20:ee:55:fb:39:a1:cc:c1:70:
42:d3:a3:52:6c:fa:75:79:13:50:ee:03:04:f9:49:ce:11:7a:
dc:98:a8:17:14:c3:e8:c4:19:92:ba:57:00:ef:be:52:eb:a2:
0d:14:45:fe:81:31:fd:d3:9b:b1:f4:76:89:e3:41:bb:bc:13:
15:02:16:b0:a9:31:e3:2f:21:05:73:32:a4:55:cb:4a:71:21:
09:30:d4:68:48:be:4b:97:3c:d8:13:49:1a:97:c2:92:72:bd:
da:02:02:be:ca:ff:ca:93:42:25:48:96:de:83:8a:98:ed:4e:
e3:9d:a4:5c:a0:56:fe:df:0c:07:ac:aa:f3:ea:b9:bf:36:23:
07:7a:c3:c2:b8:fd:3a:5a:43:a6:e4:95:88:4b:54:2a:72:d5:
f8:30:b8:2d:b7:47:10:63:6b:5e:97:bb:69:a7:2a:dd:d2:64:
ed:48:b6:8c:b4:83:da:49:10:ae:bb:49:79:ad:30:b1:fb:d5:
c3:03:a2:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 05:36:25 2024 by rpki-client on console-fra.rpki-client.org