Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/wCIhqo5Umt0kR8vjqv45Thndgo4.roa
File: wCIhqo5Umt0kR8vjqv45Thndgo4.roa (raw, json)
Hash identifier: kMYL1PPvtNM8XKjiDqi4AmCSMA+zyDPmtj052l9EhVw=
Subject key identifier: C0:22:21:AA:8E:54:9A:DD:24:47:CB:E3:AA:FE:39:4E:19:DD:82:8E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02E0
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wCIhqo5Umt0kR8vjqv45Thndgo4.roa
Signing time: Tue 30 Apr 2024 23:55:04 +0000
ROA not before: Tue 30 Apr 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 736 (0x2e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 30 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C02221AA8E549ADD2447CBE3AAFE394E19DD828E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:33:04:8d:01:e5:fb:71:e3:af:d9:df:20:34:
a9:03:5b:a0:3f:67:22:0f:aa:95:ce:78:81:65:1a:
1c:63:50:31:f0:db:62:43:2b:79:3e:47:ad:5d:d1:
67:42:b0:4b:b6:a5:91:19:d1:83:2b:ca:55:7e:71:
42:0b:a5:af:1f:cc:3c:a8:c9:31:c3:5a:1b:16:00:
24:1e:18:59:02:d7:cd:e7:b0:6b:32:0b:e2:6d:02:
22:5b:c8:e0:e5:fb:fa:01:a1:30:d5:55:4d:eb:42:
4b:39:dc:ce:85:96:d5:24:b3:89:7d:e3:a2:fe:ae:
ae:f4:cd:63:15:c0:88:6d:fe:2c:c0:3e:c4:9c:22:
e7:ec:45:70:82:13:1b:28:ef:95:d3:ef:45:78:cb:
b3:06:a0:b1:2c:89:e5:3e:97:90:62:50:f0:1f:b1:
aa:7a:65:1c:31:f5:2b:1f:fa:d9:15:1b:ea:f9:f8:
0a:a7:82:46:d2:ed:20:64:22:cb:c3:2f:a0:4b:db:
29:e5:3c:87:09:e6:90:f8:f3:88:15:b2:4b:73:35:
f7:ec:4f:51:54:48:0f:32:bb:e4:b1:d4:8f:23:e2:
cd:fe:39:a3:8d:b6:4a:81:fd:e0:42:54:5d:8c:81:
44:10:f0:66:6a:88:eb:f6:4c:b9:8b:c6:c0:81:ae:
8d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:22:21:AA:8E:54:9A:DD:24:47:CB:E3:AA:FE:39:4E:19:DD:82:8E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wCIhqo5Umt0kR8vjqv45Thndgo4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:61:04:19:8a:b3:cf:fa:70:1c:a7:cf:50:e8:d2:95:85:93:
05:13:d0:62:f4:a7:76:20:96:ab:29:b9:b1:dd:40:60:e7:35:
3d:8a:39:26:7a:88:db:cd:43:d1:d8:fc:7c:49:89:31:be:84:
91:12:b2:3d:b3:90:4c:11:69:01:57:93:d1:6a:e7:a1:82:df:
18:5f:12:0b:9c:95:64:df:9d:da:e4:78:2d:01:bd:12:18:dc:
be:ad:a7:20:05:d4:fc:d0:b1:fd:fc:fc:c5:b7:b5:d6:dc:51:
e0:ad:cb:7f:5d:b1:0a:d5:8b:50:94:36:65:01:62:0f:53:ee:
d4:97:79:ab:a0:9a:0c:b5:29:bd:f1:54:f9:58:f9:82:bf:0d:
7c:5a:14:a9:f5:3d:11:97:0c:5c:be:cd:f2:66:e0:35:79:aa:
a3:b8:bc:36:d7:fd:50:da:b8:ee:44:fc:f8:52:fc:7d:bc:85:
83:1a:93:9a:4b:a3:8c:73:82:52:66:fd:3a:2a:0d:4d:e8:9f:
e4:f6:25:bc:0d:0f:31:31:ab:4c:b0:a2:7a:76:8d:04:60:e1:
f2:0d:59:92:dc:78:3e:0b:c0:b7:3c:db:d2:ce:49:85:94:8b:
9b:42:ed:0e:55:e8:c1:49:84:8f:7b:6b:74:03:87:7d:01:40:
56:78:ab:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org