Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/hLRjTX-r46q3qJZKcLX03NPqfmQ.roa
File: hLRjTX-r46q3qJZKcLX03NPqfmQ.roa (raw, json)
Hash identifier: DKW8L9m7f4Kd93zmPBe/BDBTpFfduKBZAEBAXZ0Z2xg=
Subject key identifier: 84:B4:63:4D:7F:AB:E3:AA:B7:A8:96:4A:70:B5:F4:DC:D3:EA:7E:64
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0439
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/hLRjTX-r46q3qJZKcLX03NPqfmQ.roa
Signing time: Sat 08 Jun 2024 07:55:03 +0000
ROA not before: Sat 08 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1081 (0x439)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 8 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84B4634D7FABE3AAB7A8964A70B5F4DCD3EA7E64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:57:c3:1b:6a:9f:50:7a:8c:1a:78:df:e3:15:
3f:59:75:eb:b1:f2:e9:17:0e:d5:2b:6a:60:ee:04:
4c:7c:7f:87:5c:58:2f:ca:8f:b0:0a:dc:a0:5f:ad:
fa:ec:d4:3c:65:e2:23:40:d7:0e:d8:e5:53:d9:a4:
9b:e3:5c:77:5e:67:78:e7:85:19:fb:d5:f4:28:7a:
62:0a:92:aa:22:0c:20:4b:a2:a6:0c:ff:84:d7:9b:
1d:a5:46:a1:fe:15:21:af:2e:40:a7:16:0d:31:cf:
e3:db:d2:35:91:b8:65:29:33:68:b4:ae:66:82:91:
9e:ce:91:63:bd:41:46:fd:a6:b0:e8:0c:e7:45:cd:
03:99:29:7a:71:4f:5b:97:3f:61:3b:ee:e7:43:c8:
af:0c:21:30:ee:8d:94:0d:e4:6b:7d:5c:16:4a:0c:
1b:31:7c:7e:4c:81:e7:93:8b:d7:a1:b9:b7:4d:c1:
b3:14:87:e1:7b:d3:90:d3:35:ad:ea:39:2c:73:16:
2b:a7:6d:8f:d9:da:10:48:35:74:26:ae:16:f5:43:
67:ff:47:db:82:a2:1a:af:f3:a4:f9:e0:ca:35:4f:
87:ae:9e:28:5b:40:af:33:fd:b8:c4:0d:7f:82:b5:
a1:ca:03:d6:02:7a:9c:44:94:72:00:a5:7f:ad:ec:
2d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B4:63:4D:7F:AB:E3:AA:B7:A8:96:4A:70:B5:F4:DC:D3:EA:7E:64
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/hLRjTX-r46q3qJZKcLX03NPqfmQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:4e:67:24:b6:28:ee:4b:4f:b5:cb:e1:53:15:34:0c:73:f2:
b9:99:fa:0c:86:52:00:1e:79:ca:c7:6c:53:e9:e8:d3:a0:7a:
6d:9c:55:9a:3c:49:c1:fa:e5:ad:34:a7:e0:72:52:0c:2c:c4:
1a:f6:85:1f:75:09:21:f0:61:ad:ea:2e:0e:70:db:03:03:64:
80:ce:ff:2b:4e:41:67:a7:00:1e:08:c8:40:08:46:bd:4d:6b:
42:d7:54:65:42:c6:1a:15:bd:2e:ac:a4:23:1c:31:7c:cf:23:
80:e2:fd:aa:d4:bd:59:49:e6:61:c0:31:da:3b:3f:8f:c8:9f:
a3:5a:23:88:d8:cb:e8:a7:75:52:09:0a:54:4a:c4:58:50:53:
80:2b:fa:cf:06:f4:84:af:73:ba:10:6b:48:8d:57:75:6c:07:
31:fd:35:84:88:45:8f:26:62:7e:04:21:b8:b7:ae:f2:d4:bb:
33:eb:aa:ba:f9:8c:92:cc:fd:f0:94:43:76:1e:44:60:f6:8d:
26:cb:f7:d0:c9:d4:b7:9e:2f:1f:8e:f8:f7:e1:9d:d5:e4:aa:
42:75:c4:2b:66:00:49:68:be:ae:de:fd:c2:7e:ca:68:53:56:
5f:50:b8:de:44:78:bf:f5:01:23:96:5e:32:4e:ce:16:8b:ac:
eb:f9:fe:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 13:50:38 2024 by rpki-client on console-ams.rpki-client.org