Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/z-udwOjr_23kVS9YjMgdJgkei_w.roa
File: z-udwOjr_23kVS9YjMgdJgkei_w.roa (raw, json)
Hash identifier: bKt292Xp4NGPdhdUR/I3MWcJFAmZiGaB2AVZ6v4VvZM=
Subject key identifier: CF:EB:9D:C0:E8:EB:FF:6D:E4:55:2F:58:8C:C8:1D:26:09:1E:8B:FC
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0544
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/z-udwOjr_23kVS9YjMgdJgkei_w.roa
Signing time: Sun 07 Jul 2024 23:55:03 +0000
ROA not before: Sun 07 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1348 (0x544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 7 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=CFEB9DC0E8EBFF6DE4552F588CC81D26091E8BFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1b:a1:8e:d9:b8:46:1b:fe:76:50:2a:29:02:
68:85:22:c5:9d:32:15:b8:56:33:69:35:6f:49:be:
c6:74:21:a6:c6:83:8d:93:48:8d:cb:2e:e3:27:7d:
f1:9b:7a:c9:7f:c1:ee:c3:66:07:71:67:72:dd:79:
49:f8:1b:82:a2:ca:88:49:78:1b:fa:cb:f4:97:80:
77:68:6b:a9:5a:36:07:0c:2d:89:6c:31:4b:64:60:
93:51:e7:f2:b0:37:1e:06:7b:06:fa:c1:41:e7:87:
a7:88:42:e2:24:98:6f:6e:6b:a1:7d:cb:aa:82:61:
d7:40:8f:29:05:78:30:8f:7e:07:1c:79:b8:0a:72:
72:31:a2:a9:e6:b3:4a:d0:d9:34:ab:44:14:1a:74:
0a:97:08:06:7e:e5:84:13:73:82:a8:e5:07:0c:66:
64:d6:ab:d8:cb:5d:eb:a0:f8:01:e3:a6:47:57:6c:
23:08:52:b6:70:98:a1:c9:d3:49:55:80:24:83:46:
e3:62:7f:d5:5d:be:01:48:a8:02:32:69:69:93:c1:
53:6a:60:6f:04:f1:ec:45:92:c7:0c:ac:f3:04:54:
4f:cc:f6:51:ce:52:c6:d1:88:4b:e3:f6:1b:88:af:
91:9e:e5:2d:c3:36:f8:b1:fb:c9:9b:9a:04:ef:9e:
2b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:EB:9D:C0:E8:EB:FF:6D:E4:55:2F:58:8C:C8:1D:26:09:1E:8B:FC
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/z-udwOjr_23kVS9YjMgdJgkei_w.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
db:de:f8:b3:7a:55:16:f1:85:af:67:0c:e7:7f:84:40:07:50:
15:38:15:5d:d3:64:54:42:54:fb:5a:93:c9:d9:97:6a:7b:34:
9b:dd:8a:1c:b8:18:78:b6:c8:82:c9:7f:f9:77:5e:29:6a:76:
63:fe:ff:77:f0:d1:08:ca:1d:fa:b5:bd:ab:e0:76:6c:e5:95:
63:d3:57:01:e9:d7:57:fd:0f:b6:bf:32:33:da:9a:bf:46:5a:
78:5e:5c:a5:82:01:90:c9:0e:21:d9:ee:41:42:e3:ba:4a:6a:
28:d6:9e:d8:84:7a:8e:5e:69:34:a0:96:44:05:60:cc:68:20:
4b:9b:61:aa:64:46:f3:dd:fb:4b:0a:e7:b6:1a:58:f4:d3:e1:
e4:d4:a6:d8:85:89:d1:7d:25:87:3e:f3:e9:10:91:9b:44:81:
10:f5:e1:f5:72:fc:9c:e5:4c:67:99:df:ae:2c:4c:d5:24:a4:
8b:ea:8c:dc:22:90:d8:8e:11:83:de:19:97:61:50:70:7e:99:
7e:73:47:f3:31:b5:75:f8:31:de:e0:d2:fc:26:10:b2:01:58:
19:9d:67:cd:6f:25:6d:16:90:82:fd:56:cf:ce:91:8e:c1:ff:
74:2c:66:64:2b:c8:10:57:37:1a:30:34:6b:84:12:58:fe:ff:
ee:50:1f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 05:05:51 2024 by rpki-client on console-fra.rpki-client.org