Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/uplift/48LBzszIrr8iQHtXEr0-7kOXnn8.roa
File: 48LBzszIrr8iQHtXEr0-7kOXnn8.roa (raw, json)
Hash identifier: YkoWnyBE8QYmtLlDeNV9pnoD11/EKnEq3DeGnZMAy/w=
Subject key identifier: E3:C2:C1:CE:CC:C8:AE:BF:22:40:7B:57:12:BD:3E:EE:43:97:9E:7F
Certificate issuer: /CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Certificate serial: 1489
Authority key identifier: 20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
Subject info access: rsync://chloe.sobornost.net/rpki/uplift/48LBzszIrr8iQHtXEr0-7kOXnn8.roa
Signing time: Wed 06 Dec 2023 17:02:15 +0000
ROA not before: Wed 06 Dec 2023 17:02:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:2938::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5257 (0x1489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Validity
Not Before: Dec 6 17:02:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=E3C2C1CECCC8AEBF22407B5712BD3EEE43979E7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:27:38:54:cb:c0:5d:c1:72:8c:2c:e9:ac:78:
5c:e5:14:54:62:90:61:4b:68:e7:28:a6:8c:db:11:
c1:09:e5:21:e0:89:12:63:29:74:0e:bc:68:98:3f:
1c:55:70:46:14:61:50:d5:dd:9d:a3:8d:56:e1:81:
c0:af:05:1a:e0:cb:68:80:d9:1b:23:61:8d:47:a8:
ff:02:9c:15:9a:e7:0e:1e:84:fd:a6:21:2f:c9:7d:
4c:7f:3b:60:90:a0:f1:ff:3b:90:60:61:65:07:72:
e2:5e:0a:f7:8d:42:82:79:6d:d7:1f:38:db:dc:7b:
e3:54:bb:fb:9b:8e:b2:30:09:85:9f:1c:62:97:8e:
96:21:de:38:17:b4:91:55:be:26:0e:1a:bb:df:4d:
d5:95:9e:1c:dd:d3:f8:bb:5a:dd:7a:a0:56:c4:e1:
d4:20:d4:ff:d5:14:6d:43:5b:82:4e:ba:c1:da:c1:
af:c3:fb:36:07:05:78:20:92:5e:d4:31:59:be:a7:
73:dc:22:3f:52:ae:21:c5:cc:23:d9:8c:42:fb:57:
53:35:8a:67:ea:c2:5f:10:aa:a9:69:61:95:ca:0d:
8e:95:4d:44:08:0d:73:ad:30:0f:62:5e:ba:21:ba:
84:ed:ec:93:1d:c6:f0:84:7d:1e:d9:40:3b:15:55:
b4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C2:C1:CE:CC:C8:AE:BF:22:40:7B:57:12:BD:3E:EE:43:97:9E:7F
X509v3 Authority Key Identifier:
keyid:20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/uplift/IBfMWA0nPFS6MGTNLNavObgEuIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/uplift/48LBzszIrr8iQHtXEr0-7kOXnn8.roa
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2938::/48
Signature Algorithm: sha256WithRSAEncryption
0d:8f:43:7b:29:2e:c3:4a:41:8f:fe:53:a0:89:89:d9:4f:ab:
fc:a6:0f:80:c9:f8:f9:06:4c:ef:ca:fd:16:c9:a2:2c:bb:a5:
27:9b:0c:c6:44:86:4f:cf:e2:ef:1d:94:55:8c:3f:67:d7:76:
5f:58:39:aa:a3:b5:df:1f:b6:68:7b:da:18:ae:05:7e:61:2b:
11:43:7a:2a:88:be:93:4e:61:45:29:9c:19:53:ea:80:e0:1c:
e2:5f:00:bf:dd:52:07:dc:f3:7e:29:bf:a0:fc:1a:e2:3a:0f:
9a:02:45:36:21:6e:da:b7:5b:93:2e:d0:2a:8d:02:63:e4:8f:
2d:1d:93:1f:3d:9d:d4:b0:22:30:5c:5b:be:1c:f8:81:cf:ef:
1c:fb:a3:49:5f:59:4a:0b:9a:e7:f7:e2:33:ba:7a:b7:3f:57:
97:be:35:19:53:20:66:3a:e6:ea:d7:d8:40:e5:2a:44:8b:3f:
25:4f:16:fa:a6:53:e9:a7:6e:0f:b5:fb:d9:aa:12:d1:25:e1:
42:00:a9:32:f1:c8:2e:ca:c5:84:ad:f3:6b:16:66:bb:49:ba:
33:bb:d3:79:01:37:b6:20:50:76:09:a2:75:80:27:fb:c2:87:
e3:cd:b0:3d:6c:c6:40:40:23:3e:a1:ef:78:b1:1c:46:ca:6f:
0d:69:0d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 7 17:53:01 2023 by rpki-client on console-ams.rpki-client.org