Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/xg9u0pR_GaV6Ig-Xx_Zljf4MnCs.roa
File: xg9u0pR_GaV6Ig-Xx_Zljf4MnCs.roa (raw, json)
Hash identifier: /jtp8onp92lM2d+7/PrC0O2eNpcudvgTwEbZ+zYEX9o=
Subject key identifier: C6:0F:6E:D2:94:7F:19:A5:7A:22:0F:97:C7:F6:65:8D:FE:0C:9C:2B
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: F7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xg9u0pR_GaV6Ig-Xx_Zljf4MnCs.roa
Signing time: Thu 07 Mar 2024 15:55:04 +0000
ROA not before: Thu 07 Mar 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247 (0xf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 7 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C60F6ED2947F19A57A220F97C7F6658DFE0C9C2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:97:d1:3a:56:5f:b8:c6:3b:57:48:9c:23:db:
7b:c7:53:88:b8:55:08:b5:33:04:85:10:8d:06:11:
51:9b:ee:2c:61:0c:d8:f9:dc:1b:26:85:0f:18:25:
3d:9f:6d:5a:77:ed:be:ff:60:bd:17:0f:08:cd:19:
ee:09:a1:f3:4f:d1:b5:0d:0a:6a:a1:83:1f:83:53:
1d:60:1e:b1:15:de:6c:a1:70:62:b1:09:4a:2b:26:
8d:b5:3b:a8:ef:ea:ab:9b:09:36:fe:be:3f:7d:d8:
55:00:ea:4b:7b:6c:b3:55:a6:fb:cc:6d:f8:86:e1:
c9:f0:9d:51:48:65:48:3f:06:00:00:2c:25:dd:77:
3e:27:e5:47:10:ac:a4:2c:ea:03:24:ca:2f:5d:6e:
1c:9c:79:99:cc:8d:ee:20:6b:e3:dc:6f:46:31:74:
1e:3a:b3:e5:9e:64:c4:f5:25:be:6a:99:9c:b5:7b:
50:99:f3:e2:03:c6:01:1b:e7:b8:a0:c3:44:83:ee:
8e:d9:40:1b:5d:5a:e9:e1:09:13:c8:21:63:8a:9a:
c8:bd:4e:e9:a7:51:26:2e:8c:6d:fa:32:14:ec:cf:
1b:a5:f9:97:29:31:84:87:96:31:51:c4:42:6a:a8:
be:71:c8:f0:b9:b0:91:ed:07:8b:d7:39:9e:4c:b1:
b9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:0F:6E:D2:94:7F:19:A5:7A:22:0F:97:C7:F6:65:8D:FE:0C:9C:2B
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xg9u0pR_GaV6Ig-Xx_Zljf4MnCs.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:f2:38:05:a7:9f:15:5c:71:79:af:fb:4a:69:b7:42:17:6c:
d6:19:de:d2:3d:4b:02:0d:e4:10:c7:11:3c:8e:50:67:32:8c:
51:42:55:54:22:c0:d7:e5:ec:ac:ea:04:91:6d:8d:65:ac:2e:
35:e1:32:07:f3:5a:77:cd:8a:33:1c:34:de:9c:30:f9:c6:df:
59:40:ba:e5:4f:40:bf:80:78:18:4a:a2:36:7b:48:d4:a5:1b:
60:dc:0f:dd:d6:b6:9b:d6:32:c6:71:91:71:1b:f1:c5:35:84:
62:01:cf:89:02:60:2b:03:95:e7:ee:60:43:dc:ec:17:48:fa:
02:52:bd:14:96:74:eb:39:71:19:3d:e6:cb:05:27:f3:c0:86:
5a:4d:eb:6f:41:02:6d:0f:91:b6:ad:91:0f:cc:ea:48:cf:d9:
85:f4:f8:e7:d6:b1:94:d7:80:8a:f1:38:5d:a8:09:1e:c5:3b:
d4:0a:96:3f:a8:b8:fd:0d:c0:07:a0:03:24:a4:cc:a0:72:28:
c9:df:82:8d:07:1e:cd:d3:1c:26:85:b9:24:25:b9:89:73:0d:
6e:0f:72:6a:d4:d4:c8:a1:d5:d1:d8:31:db:9a:5e:a8:3a:32:
aa:b7:97:25:4c:7c:a0:9f:e0:f0:3f:8a:ae:d6:fc:7b:1f:04:
04:d1:0c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org