Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/rvddJcHc4MVORRG_LdIUUCDekbE.roa
File: rvddJcHc4MVORRG_LdIUUCDekbE.roa (raw, json)
Hash identifier: enIu1uc5frP/pONcaAQAz3eefQIwVUI6TOQgvztK7bw=
Subject key identifier: AE:F7:5D:25:C1:DC:E0:C5:4E:45:11:BF:2D:D2:14:50:20:DE:91:B1
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 03D0
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rvddJcHc4MVORRG_LdIUUCDekbE.roa
Signing time: Mon 27 May 2024 15:55:03 +0000
ROA not before: Mon 27 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 976 (0x3d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 27 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AEF75D25C1DCE0C54E4511BF2DD2145020DE91B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8e:73:1e:2a:2b:14:11:82:40:f6:2e:97:72:
1c:bf:72:bd:d0:c1:b9:ce:61:ad:69:d2:0b:d4:11:
ac:05:57:cf:45:75:f8:fa:45:9a:72:e6:5b:8c:89:
5c:b4:22:fd:bf:56:6d:56:74:bf:76:06:fe:46:c5:
90:19:88:9a:c9:33:d5:f1:65:5f:87:86:b6:86:06:
c7:34:fc:f5:3b:c8:96:73:60:18:44:62:c2:8a:f3:
ca:01:c1:cf:01:ca:8c:40:41:1c:e2:c7:9a:8a:50:
7a:0b:55:ba:cf:a8:ab:e6:8f:bc:74:1b:b7:df:73:
17:d9:8e:ad:c7:c4:17:25:7b:ad:89:ef:4a:2a:18:
37:fb:3e:66:be:b7:a3:82:e7:6b:d9:94:b1:2a:1a:
e3:ea:bd:ba:13:9c:d5:4a:08:f3:d0:52:06:5b:a8:
84:34:03:6d:93:13:41:28:0b:5e:02:1d:43:87:32:
2f:6c:14:2b:a2:c9:27:52:38:7f:c3:2e:f5:c4:e4:
00:8c:e1:fc:2c:97:a4:e7:77:67:d2:1f:e3:6d:ac:
40:e8:c1:c7:1c:98:c3:84:e1:0f:f3:e4:e0:42:54:
9e:e1:97:fe:0b:34:c8:dd:d2:36:df:53:5e:f1:b3:
69:cf:c8:c1:22:36:86:48:fe:9f:1d:41:5b:ef:28:
f6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F7:5D:25:C1:DC:E0:C5:4E:45:11:BF:2D:D2:14:50:20:DE:91:B1
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rvddJcHc4MVORRG_LdIUUCDekbE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
df:d5:0c:18:d6:0d:96:8a:76:8d:78:a1:d1:e3:0d:9a:ce:7d:
80:53:db:45:92:20:07:5e:36:14:c6:c0:2a:15:cb:ff:57:18:
e7:97:7b:53:bb:8f:a4:20:13:cd:b3:6a:fd:d9:88:fc:25:c5:
e9:91:f2:39:84:5e:a2:19:61:02:47:c3:dc:ee:3b:c8:64:fc:
66:37:36:a8:28:e2:11:b1:36:db:72:e1:12:f6:08:4b:3d:e7:
c7:bc:97:51:53:c7:9f:15:c1:96:1b:39:42:14:c7:5c:ba:38:
cc:bd:f2:d0:f1:49:5f:db:db:da:2e:13:03:9c:ff:7d:cf:54:
15:a5:2f:4e:21:ed:db:62:fb:fe:ad:27:51:a4:e2:b2:77:b9:
c0:2d:1e:61:e0:1a:6b:d0:02:3a:f7:3b:c2:4f:42:45:47:47:
05:a2:21:b9:24:35:3d:75:9a:eb:64:4d:30:66:31:d3:30:bd:
a5:9f:05:d6:a7:13:98:58:c2:c2:db:9d:80:50:dc:d7:61:c1:
49:3b:1c:3f:e7:30:28:bf:93:fa:61:bd:4c:19:12:15:b9:38:
b7:3e:72:f0:c3:53:51:db:74:83:05:99:8e:c6:b8:c9:7c:d5:
93:0f:76:f3:ff:99:2b:c3:d7:ec:54:b9:89:37:91:86:0d:3a:
e2:a4:ad:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org