Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/iMv85pbsuegJvHlvgnII51oTHr8.roa
File: iMv85pbsuegJvHlvgnII51oTHr8.roa (raw, json)
Hash identifier: gPYw/bGSUa193+Kx21axq9K6JtTRH27lM+UkXtPNXeA=
Subject key identifier: 88:CB:FC:E6:96:EC:B9:E8:09:BC:79:6F:82:72:08:E7:5A:13:1E:BF
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 045D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/iMv85pbsuegJvHlvgnII51oTHr8.roa
Signing time: Wed 12 Jun 2024 07:55:03 +0000
ROA not before: Wed 12 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117 (0x45d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 12 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88CBFCE696ECB9E809BC796F827208E75A131EBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0f:6f:b7:21:26:a7:ee:a0:fc:35:19:50:dc:
7a:49:8e:d2:a8:1e:03:dc:50:26:77:27:58:cb:75:
34:54:1c:70:78:d5:10:68:f2:09:4f:e8:18:16:5d:
82:d6:b5:56:57:3f:20:66:7a:e2:5d:8e:eb:c0:76:
70:e1:0a:7a:be:d1:45:5d:95:6d:cd:46:43:b2:a0:
2f:9b:35:61:56:50:b2:56:1a:ee:cf:30:3d:06:91:
de:f3:4c:af:a5:6c:70:dc:75:70:06:91:39:ed:16:
70:e0:e4:8a:ec:05:08:3b:bf:eb:f5:a8:84:2e:56:
e4:2b:19:8e:7f:ec:aa:97:f7:9e:fc:fa:9f:7c:d4:
ec:bb:ff:66:d3:22:24:2a:94:1e:7a:e5:70:f2:c0:
9a:36:8b:46:35:5c:68:bf:15:6c:5c:03:71:2d:ec:
1c:80:f0:8d:fc:23:b1:e9:4f:6f:f7:1c:90:52:61:
06:b9:22:9f:de:3b:00:76:91:b4:e3:83:45:ad:f1:
15:21:26:81:6d:4f:05:e1:90:c4:4a:c2:68:dc:9c:
40:6a:e5:d7:6a:39:99:24:e6:6b:f2:1c:d2:8a:fd:
a2:bc:7b:83:22:20:7a:87:90:77:fb:b3:65:bd:96:
df:98:c2:31:96:8c:36:0b:dc:d3:11:44:4b:c9:a2:
4d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CB:FC:E6:96:EC:B9:E8:09:BC:79:6F:82:72:08:E7:5A:13:1E:BF
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/iMv85pbsuegJvHlvgnII51oTHr8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:12:b6:ac:53:64:cb:04:02:2c:4c:f8:37:ee:84:ab:9b:ad:
2b:ee:ff:08:a4:62:5e:d5:9a:fa:b3:7a:b5:e3:df:21:36:a1:
5b:b9:08:88:91:28:24:7f:a7:54:79:3e:71:6f:b1:5d:5d:97:
0e:48:b3:d2:20:91:af:0a:4d:d8:e5:48:e4:d0:c5:43:3d:bd:
15:3e:0b:d5:78:d1:a9:2f:20:d7:a0:d7:fc:bf:c4:80:d2:37:
8a:d7:d9:84:b6:92:7f:74:8e:91:0f:66:9e:80:6d:6a:68:aa:
69:36:df:a3:4d:f2:a9:4e:b4:dd:76:8f:fd:32:96:8b:1a:4e:
a3:b0:c8:4c:cc:36:da:0d:da:e7:a9:b2:5b:8f:52:a5:d2:25:
14:7d:87:cc:1c:12:ad:42:d3:e4:01:43:9f:6d:9a:de:ff:4f:
7f:ec:d2:9c:c4:03:33:01:36:03:35:c8:4f:17:45:b1:ea:e0:
a0:1b:c1:c6:ee:51:4b:1d:93:1f:3c:98:86:27:10:15:9f:ce:
76:aa:a5:05:a9:83:54:aa:58:9e:5e:4c:b8:a2:bb:e6:3f:0d:
5d:3c:b6:32:3c:bf:e0:58:11:9b:7f:2c:83:10:b8:26:e8:c6:
b7:fc:69:a3:18:69:ed:e2:a4:ac:13:90:20:a0:13:85:9a:13:
f9:44:02:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 15:47:31 2024 by rpki-client on console-fra.rpki-client.org