Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/jll-76f0TlnvsWk3Pcgbs-USiu4.roa
File: jll-76f0TlnvsWk3Pcgbs-USiu4.roa (raw, json)
Hash identifier: Z53fE3zGebZK/JNQ3dIwpUo+mMVYUlS+TCsPEvxDzCU=
Subject key identifier: 8E:59:7E:EF:A7:F4:4E:59:EF:B1:69:37:3D:C8:1B:B3:E5:12:8A:EE
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02E9
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jll-76f0TlnvsWk3Pcgbs-USiu4.roa
Signing time: Wed 01 May 2024 23:55:03 +0000
ROA not before: Wed 01 May 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 745 (0x2e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 1 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8E597EEFA7F44E59EFB169373DC81BB3E5128AEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:84:d4:98:89:e1:95:37:e7:3a:29:8b:cd:cf:
1b:12:78:5e:1a:bb:b9:ee:c3:54:c0:fe:ae:b7:f8:
49:9f:5c:f8:d7:39:8d:00:08:34:21:ae:ae:20:d1:
38:83:38:19:24:aa:db:3d:e8:6c:b6:9e:73:2d:71:
d6:71:80:a8:a0:6c:2a:c1:24:3c:3f:a0:57:c5:75:
3f:1a:d9:0e:93:52:f0:ef:26:4f:31:27:77:a2:81:
53:bf:1a:1f:b2:36:5b:f6:41:07:7b:75:0e:e5:c7:
a9:59:53:54:a2:7a:80:e3:ef:a8:17:99:3b:12:a6:
98:b0:50:5a:58:59:0f:ca:4f:9a:f6:97:46:6b:b9:
de:f0:8e:45:30:dc:d3:05:05:f8:07:51:39:91:0b:
30:9c:2a:0b:9f:d6:ca:95:f4:59:9f:b0:d4:70:d8:
f1:d1:d6:b2:bb:53:80:86:ce:95:08:32:24:56:f0:
54:d5:7d:fa:b0:f3:71:84:43:f2:8b:77:d2:1d:29:
6a:5b:60:7c:5c:b2:51:ad:57:b3:84:c5:8a:a4:12:
4b:90:5a:c0:72:7e:9a:c3:9b:e0:9f:ef:2a:91:f8:
66:d5:ab:06:b8:e5:4a:b8:c9:0f:79:13:32:33:02:
7b:72:87:a2:03:54:be:a7:4e:77:48:80:d5:bf:47:
7a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:59:7E:EF:A7:F4:4E:59:EF:B1:69:37:3D:C8:1B:B3:E5:12:8A:EE
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jll-76f0TlnvsWk3Pcgbs-USiu4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:c7:7d:50:76:a6:6e:6c:9a:99:7b:5c:f3:3a:0d:6c:ee:f9:
0a:e3:dd:98:24:e3:02:43:5f:59:e6:d3:ec:fa:75:ca:5a:3f:
1c:e1:86:d6:e7:c4:42:34:cb:f1:bc:6d:59:32:7d:0e:bc:02:
e4:95:41:fc:bd:56:48:0d:84:65:12:36:46:3d:9c:ef:b3:d3:
e2:37:f4:10:69:5a:32:00:8e:bc:fc:5a:96:71:f4:3b:d9:c3:
4b:09:e1:4b:f3:51:04:88:12:21:b2:d9:c6:12:d2:eb:83:e5:
0a:d8:ee:ea:20:07:d0:08:68:9c:e7:c9:75:fb:b1:67:d7:09:
23:bc:94:8a:67:9c:16:17:06:ce:e5:d4:2f:07:74:71:f0:88:
0c:9b:cc:f3:fa:83:4a:3a:d3:30:bf:e8:4e:7f:68:d7:56:ef:
21:df:a7:7b:cc:9c:bf:b0:ad:04:09:4a:67:f4:89:58:18:ca:
f6:24:94:1d:b8:c4:5e:dc:c8:a0:9c:08:59:2a:7b:db:dd:d4:
20:76:f2:52:4a:6c:36:b2:00:b9:62:b7:59:04:9b:7a:5e:d0:
8f:71:15:3b:95:0c:eb:36:77:7d:07:49:e5:60:ed:4f:b2:8e:
41:77:89:e9:02:65:40:06:fb:f9:88:d4:3e:49:ad:d3:bd:b7:
4d:6d:5d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 05:15:52 2024 by rpki-client on console-ams.rpki-client.org