Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/pEYcq1YDv3MsJFS5XagTJ0VRlv4.roa
File: pEYcq1YDv3MsJFS5XagTJ0VRlv4.roa (raw, json)
Hash identifier: iLE+4iQ0u/ps2VeCqViaZISRKqxr1aMK8nbRewAl3aQ=
Subject key identifier: A4:46:1C:AB:56:03:BF:73:2C:24:54:B9:5D:A8:13:27:45:51:96:FE
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04E4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/pEYcq1YDv3MsJFS5XagTJ0VRlv4.roa
Signing time: Thu 27 Jun 2024 07:55:02 +0000
ROA not before: Thu 27 Jun 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jun 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1252 (0x4e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 27 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A4461CAB5603BF732C2454B95DA81327455196FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:49:16:68:c6:e8:9c:7c:d7:fb:d2:9c:1e:3d:
b4:8f:db:ba:30:56:d7:91:5f:70:5d:9c:7c:c2:48:
99:34:4b:f6:8c:97:0a:5f:60:4e:22:46:ee:5b:9a:
23:72:5a:0d:5b:3d:bf:87:f1:0e:5b:40:15:82:5a:
58:49:ab:62:25:23:54:ef:f8:54:fc:48:50:b6:b3:
39:13:c4:05:af:11:bd:0a:af:c9:28:9b:ed:e3:f1:
6e:6c:77:cc:7a:49:64:ce:7e:c4:50:8e:35:09:69:
e8:b2:8f:b8:42:fa:f0:cd:de:0c:aa:fa:94:65:a6:
e5:01:91:bf:de:a3:19:cb:4d:3d:00:8e:60:09:09:
fb:52:c2:2f:9e:f1:72:cb:0a:00:e7:49:ef:c3:5c:
72:02:ae:f6:9b:0c:17:67:1d:1f:89:6a:b7:4f:c9:
c0:02:dd:f0:26:6f:e3:6d:b3:f7:73:82:2d:4b:76:
8d:07:bb:b9:18:a9:dc:73:3c:36:75:5b:7b:f6:a7:
09:d7:e5:5a:df:a1:db:5a:4f:06:d2:34:4b:3f:82:
43:11:2f:c2:12:0e:4c:a3:9e:81:4a:07:32:b1:cb:
94:3d:58:80:c4:90:4c:0a:19:90:cf:2e:b8:c1:83:
e3:14:0a:67:ee:d4:1b:9c:28:b6:e9:0a:96:dd:63:
3f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:46:1C:AB:56:03:BF:73:2C:24:54:B9:5D:A8:13:27:45:51:96:FE
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/pEYcq1YDv3MsJFS5XagTJ0VRlv4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
79:83:43:93:d3:64:a6:49:66:08:29:2e:9f:ae:69:e7:39:17:
bc:e4:a9:8b:80:34:9a:e1:20:82:ed:8e:4b:c5:45:0d:af:c5:
eb:24:54:71:54:e9:8a:fc:74:25:07:db:88:1d:9f:76:8e:04:
ab:a6:92:ee:17:93:d2:1c:27:8d:7e:da:2f:a0:72:e6:62:66:
9e:33:83:91:fb:92:63:d8:48:0a:74:bc:16:cd:e0:38:3c:f2:
d9:9f:98:e6:04:43:bb:1d:99:c6:3b:24:85:37:e4:b7:8e:a2:
ee:6d:bd:6f:33:af:4d:5a:f9:23:7f:80:fa:54:1c:b5:b7:ac:
c3:75:30:7a:f3:3d:ce:f6:8d:7a:61:3b:3e:70:6b:30:51:0c:
df:a3:c3:73:28:bf:b8:52:25:34:4f:f1:4e:2f:fa:89:f7:8c:
c7:c2:fc:ea:1e:91:a8:56:76:f4:3e:cd:e7:04:00:c2:d5:99:
9b:5d:16:3f:d2:8c:9d:08:46:44:ee:f0:47:c8:7e:f8:8e:f2:
6b:e6:f1:cb:47:c3:5a:3f:91:21:fb:6d:13:4b:d7:73:57:fc:
ad:02:9e:27:b5:ee:96:66:78:ae:a7:f2:fe:a7:fb:12:7f:f5:
ae:b4:39:9f:2c:88:56:34:13:ac:eb:5f:9c:4b:7b:1e:2d:80:
c1:58:ce:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 16:07:23 2024 by rpki-client on console-ams.rpki-client.org