Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/vB1Zb1qceWN2MX_wSI8sQuE-7Ww.roa
File: vB1Zb1qceWN2MX_wSI8sQuE-7Ww.roa (raw, json)
Hash identifier: UFsp+CzTtWDYTW1396nFtHxcLr9qms+Tpzz71GRKEec=
Subject key identifier: BC:1D:59:6F:5A:9C:79:63:76:31:7F:F0:48:8F:2C:42:E1:3E:ED:6C
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05CB
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/vB1Zb1qceWN2MX_wSI8sQuE-7Ww.roa
Signing time: Mon 22 Jul 2024 23:55:03 +0000
ROA not before: Mon 22 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1483 (0x5cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 22 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=BC1D596F5A9C796376317FF0488F2C42E13EED6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fb:fa:87:27:78:dd:e7:31:d1:6a:c0:6a:ef:
6f:d9:60:42:43:0b:02:f6:7c:de:d5:dc:66:e8:ac:
81:82:ab:2c:54:f5:38:88:bd:78:96:c0:90:63:c9:
58:81:5c:93:35:72:a4:9c:be:5d:4a:17:dc:68:fe:
ec:65:12:33:e3:7d:72:3f:ee:11:cb:da:db:83:9d:
01:11:cd:f3:85:9d:da:96:13:2b:71:82:a1:e7:f2:
56:6c:18:22:1c:d6:74:38:62:5e:20:04:34:2d:68:
5d:2e:e4:19:fa:b9:0b:a8:4f:d3:63:38:0d:6d:8c:
dc:78:a4:95:d7:d3:a9:dd:b1:2c:da:de:4b:3a:aa:
fb:7b:15:e0:15:25:2b:40:b3:c8:79:2f:72:26:5f:
6e:40:3a:ab:92:56:f8:50:26:6c:3c:b5:4a:6b:f4:
e3:0d:6f:12:9a:67:65:22:ee:b2:7a:d7:7f:63:da:
82:d5:b7:86:a8:03:a0:6a:6e:79:b2:ca:bd:62:43:
9d:75:1a:54:8e:34:6b:b7:ad:85:a7:a0:6e:a3:a8:
33:d7:d2:f3:87:2c:58:98:ad:fd:e9:1e:cf:10:da:
0d:1b:39:1c:71:ac:41:09:22:4a:6d:af:66:5b:ab:
ce:4f:60:78:ea:2c:85:a3:77:00:a9:66:44:70:a1:
98:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1D:59:6F:5A:9C:79:63:76:31:7F:F0:48:8F:2C:42:E1:3E:ED:6C
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/vB1Zb1qceWN2MX_wSI8sQuE-7Ww.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:bb:44:d2:26:9a:3b:e3:16:55:bc:a3:e8:77:0b:6e:87:02:
ab:13:14:3e:7d:6b:b1:af:b5:6f:83:c6:e2:33:d4:99:4b:1f:
78:69:25:7d:2e:e3:d4:25:e4:3c:51:e8:c3:10:74:61:c7:20:
1b:14:e2:67:03:d2:73:47:43:5f:e9:68:63:c1:30:48:8f:94:
9b:2c:8a:ee:5f:e7:de:ab:a1:81:56:dd:e2:69:ce:17:4b:e1:
ce:57:84:d8:cb:a5:05:19:27:eb:f4:4a:28:60:a3:f5:f1:22:
a8:5e:14:68:79:c0:af:f8:76:92:1d:9d:c9:79:4e:0d:05:92:
fc:9f:90:d1:08:c6:0b:91:19:d9:65:53:50:96:b7:5d:5f:3a:
46:3f:a8:3d:14:cc:9f:68:b0:c7:e8:0a:94:4b:ef:a6:ef:2e:
e6:c4:a7:4b:70:6c:24:52:48:9f:d8:1d:2f:14:dc:a7:22:c7:
23:47:1b:e4:a4:c1:d2:a4:4b:1f:26:81:6e:ed:9a:ed:54:b4:
76:39:38:04:d3:98:ca:18:61:42:79:39:38:cd:59:fc:91:25:
71:fe:4a:36:8c:72:06:92:5c:dc:d8:2d:e6:29:2a:8f:f7:e5:
30:5c:8c:2f:08:ca:12:92:60:d6:8d:2c:c5:c4:6e:e7:1c:a5:
cd:42:a3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 07:10:28 2024 by rpki-client on console-ams.rpki-client.org