Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/qm7xp1fkd_Mtkl8NA3BiHTR0Lfg.roa
File: qm7xp1fkd_Mtkl8NA3BiHTR0Lfg.roa (raw, json)
Hash identifier: 2qSz7eb3J4mCyX3KShTKog9uibm9pdj5tK+WD8ZXiSQ=
Subject key identifier: AA:6E:F1:A7:57:E4:77:F3:2D:92:5F:0D:03:70:62:1D:34:74:2D:F8
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0826
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/qm7xp1fkd_Mtkl8NA3BiHTR0Lfg.roa
Signing time: Fri 27 Sep 2024 23:55:02 +0000
ROA not before: Fri 27 Sep 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Sep 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2086 (0x826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 27 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AA6EF1A757E477F32D925F0D0370621D34742DF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6a:46:36:03:45:83:e2:b5:bd:7e:66:df:f3:
6d:81:ea:2b:dc:8c:1e:25:a4:98:b3:3c:de:41:79:
91:55:82:9c:75:8e:8f:1f:19:47:1b:7b:5d:02:c9:
5c:60:8f:e9:5c:61:fe:46:5c:97:f7:65:80:65:af:
fb:7f:95:7e:d1:55:a7:6e:78:cb:11:3c:81:a5:76:
8a:50:d5:cf:b5:04:f0:0e:f6:75:fa:42:23:8f:e3:
56:96:0e:a0:e1:80:bf:58:21:a6:d2:4c:c3:71:8e:
14:b5:25:0b:82:51:30:df:ce:18:3d:4d:73:09:5f:
a6:ef:13:c2:73:11:4a:75:52:5d:c2:ff:cd:fc:61:
c6:70:b5:3e:22:2f:a2:18:d5:3d:99:ec:cb:4d:1b:
00:61:f3:c2:eb:b0:3b:6e:a9:fb:7c:c8:cc:d0:c2:
24:5f:1f:9f:72:2d:ab:3e:7f:82:b2:d5:1b:a7:8c:
b8:80:3b:db:db:df:c6:8b:fa:7e:3e:9f:dd:3c:9b:
d4:ae:26:84:d2:a7:dc:7f:cb:65:7d:b1:62:14:98:
7b:37:8c:55:d0:ca:d9:01:e7:c1:fe:36:e5:a7:e8:
99:76:3e:f4:eb:33:9f:ff:8e:d5:89:1c:eb:ba:7d:
7f:b0:d4:61:43:85:3b:35:80:05:1d:1e:34:b4:7b:
ec:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6E:F1:A7:57:E4:77:F3:2D:92:5F:0D:03:70:62:1D:34:74:2D:F8
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/qm7xp1fkd_Mtkl8NA3BiHTR0Lfg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:b5:a8:b4:8c:40:0f:43:61:fd:05:83:3a:5a:48:cb:c1:e0:
3b:44:bd:aa:c9:a7:63:6e:47:1e:03:cc:af:2d:70:d3:9a:54:
e0:e8:61:d5:9e:fe:26:d6:3a:b2:1b:a9:a8:c0:3e:37:63:c9:
a3:a1:4c:40:00:67:30:97:ad:67:54:24:f1:95:b4:d1:cf:05:
34:4e:c4:4c:00:e3:80:27:c2:6a:0b:7e:b6:dd:cc:c4:b6:9f:
7c:b3:7b:ef:f1:d7:93:a0:e3:03:94:51:9e:c8:c0:4b:3c:81:
da:57:c2:c0:4c:ac:7f:0d:84:18:0e:01:05:37:b1:0c:9a:62:
55:b3:6f:69:9d:bd:36:6f:40:98:3b:00:7a:df:70:b4:48:55:
96:cf:e8:60:cc:cc:3b:23:f7:3f:8e:8c:53:f7:8e:69:69:97:
9d:e1:c3:8e:ea:16:41:cd:33:84:e3:44:96:35:af:24:1c:2b:
cb:f7:79:96:d7:d0:60:ed:2e:42:bc:56:22:0e:03:db:a9:90:
a2:b5:ce:3d:47:e0:42:b6:23:40:22:c9:aa:2a:78:a7:84:f3:
48:9e:30:79:cb:67:01:f7:61:da:8e:1b:94:a7:29:b1:0f:25:
75:9a:10:57:ab:18:80:c9:39:d6:48:3e:46:5a:86:f0:56:2f:
bd:ac:45:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 06:49:10 2024 by rpki-client on console-ams.rpki-client.org