Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/jmzWluyhp9ygqGDpuqUnq6Hj7Lo.roa
File: jmzWluyhp9ygqGDpuqUnq6Hj7Lo.roa (raw, json)
Hash identifier: CC6oaY/+SfbwVGT05h1+MooC8ZXH+P1lWP70qFg5IPE=
Subject key identifier: 8E:6C:D6:96:EC:A1:A7:DC:A0:A8:60:E9:BA:A5:27:AB:A1:E3:EC:BA
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04A5
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jmzWluyhp9ygqGDpuqUnq6Hj7Lo.roa
Signing time: Thu 20 Jun 2024 07:55:03 +0000
ROA not before: Thu 20 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1189 (0x4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 20 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8E6CD696ECA1A7DCA0A860E9BAA527ABA1E3ECBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:25:52:62:31:47:c5:d8:8e:38:0e:8f:9d:a5:
c7:47:46:e2:70:3a:69:1e:0a:fb:f6:bf:70:b3:6c:
1d:18:14:36:c5:e9:4f:f6:2b:b4:35:4c:c0:c8:bf:
e2:93:cd:78:62:2a:df:bb:f5:41:42:04:6d:9f:84:
1d:e5:b8:57:6e:5d:1a:b8:bf:66:c6:96:bb:70:46:
3d:d9:22:06:a4:48:b8:f7:c8:a7:12:af:27:76:1e:
ea:0e:60:c8:dd:51:96:50:a2:92:63:1d:b2:07:75:
d1:ad:a3:a0:0a:57:18:fb:16:6c:7b:84:e4:ef:78:
7a:4a:ba:37:94:40:e3:c5:5c:e9:ee:03:ff:e1:c1:
a2:dc:fc:d9:8d:b9:7a:ef:ed:a4:56:bf:b6:cb:27:
68:6e:05:6a:87:fb:6a:f2:85:3c:30:4f:8e:21:b3:
e4:42:5f:37:b3:a1:c0:76:97:6c:9f:5a:ea:7d:81:
b0:2c:cc:2a:4a:2d:84:e1:c1:6f:7c:19:e5:35:d1:
cc:ec:eb:cb:a5:e6:e8:53:40:fb:3a:6e:62:16:47:
b2:09:f8:13:ed:52:ec:b7:b9:19:1d:6f:50:4b:04:
bd:37:8e:d5:4f:af:b2:13:66:b3:33:8c:a2:32:6e:
0f:17:f4:6f:62:e2:03:7c:fe:c8:73:64:58:8a:fb:
1c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6C:D6:96:EC:A1:A7:DC:A0:A8:60:E9:BA:A5:27:AB:A1:E3:EC:BA
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jmzWluyhp9ygqGDpuqUnq6Hj7Lo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
57:55:ff:98:24:2c:6b:92:5b:f0:49:f0:b2:e3:7c:8e:6a:ec:
84:e9:5b:8f:e9:e3:c5:69:d7:03:ae:cf:bc:7a:d8:c3:29:2c:
a2:6f:4d:ef:61:73:2d:03:8a:57:0f:e0:98:1f:1f:bb:28:6e:
19:19:87:86:0a:46:7b:9b:16:b1:50:80:fd:4b:73:9a:84:fb:
45:8e:91:18:53:aa:9a:a0:e1:c7:a6:59:5b:da:98:60:2c:14:
d7:d7:4d:b8:c1:7c:31:9f:5c:59:bf:31:ac:5d:87:dd:c2:62:
ed:5b:31:96:84:46:87:32:b5:c6:cd:d1:2c:2b:49:0e:0b:a7:
62:d2:cc:3c:28:db:b4:ed:68:dd:28:8e:66:3c:f0:6c:48:81:
75:5d:12:e7:e0:95:b9:ba:b6:b2:da:0e:ed:16:52:35:cf:9d:
bb:78:0b:fe:0d:28:7b:7c:61:92:13:5f:0c:9d:de:81:56:56:
a2:78:2d:63:9e:14:4b:49:a9:86:a6:d7:ad:78:4b:d2:61:45:
b5:2e:d2:e2:21:26:5f:df:7b:eb:45:8d:e6:18:67:ac:fd:df:
c3:17:82:9b:87:ee:2e:7d:c0:8b:d3:4c:c6:61:73:b2:bf:a0:
6a:15:29:0d:45:4d:dd:39:32:cf:6f:d1:42:78:6d:97:e8:14:
6d:92:88:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 14:44:45 2024 by rpki-client on console-fra.rpki-client.org