Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/-rpPY2OHKOvqqVbRezeSekuSA6A.roa
File: -rpPY2OHKOvqqVbRezeSekuSA6A.roa (raw, json)
Hash identifier: n8vq2FaIRb6cJTzJyteCU+1XBYdVdcr0Qv9uqSyMDUU=
Subject key identifier: FA:BA:4F:63:63:87:28:EB:EA:A9:56:D1:7B:37:92:7A:4B:92:03:A0
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0124
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/-rpPY2OHKOvqqVbRezeSekuSA6A.roa
Signing time: Tue 12 Mar 2024 15:55:03 +0000
ROA not before: Tue 12 Mar 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 292 (0x124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 12 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=FABA4F63638728EBEAA956D17B37927A4B9203A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:39:17:d9:56:4c:26:28:32:4a:0b:0a:c0:a7:
30:56:92:03:1c:a2:c8:b9:c3:05:b0:a8:4b:28:0f:
56:83:c6:80:7f:49:07:0b:97:b0:a2:2b:23:0b:27:
ba:67:9c:a1:2c:ff:e2:85:03:29:e4:f9:18:7a:e9:
7a:f6:c8:94:3e:38:74:1f:16:43:03:4f:51:ae:7d:
ba:8e:b9:9f:01:86:18:eb:b5:0f:f1:27:4b:9a:62:
16:6e:e4:2e:7e:40:6b:2e:51:41:24:24:cc:d6:53:
37:56:4b:d2:e1:1a:86:4d:22:11:f2:62:0e:89:ff:
0d:ba:69:86:96:54:47:01:41:a1:dc:bc:3c:2f:97:
c8:f5:40:4a:43:46:b7:a9:78:d9:69:ff:1b:70:3a:
d7:4d:72:a3:f7:c0:44:54:1c:5f:fb:f5:0c:03:3f:
aa:73:05:85:50:ce:d4:5e:06:bc:3b:99:f7:1e:5a:
ca:b9:3f:fc:23:cc:df:b2:e9:48:0b:cd:80:21:e4:
32:14:72:fc:26:d5:e7:92:59:eb:7a:51:62:e7:0b:
94:60:7d:42:b2:44:00:4f:4b:2f:71:5c:06:0f:71:
f5:7b:4b:6e:fb:7b:ce:18:57:aa:e3:ac:30:43:3f:
fe:e5:0d:cb:48:f6:aa:c8:85:ab:dc:f1:04:93:6f:
88:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BA:4F:63:63:87:28:EB:EA:A9:56:D1:7B:37:92:7A:4B:92:03:A0
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/-rpPY2OHKOvqqVbRezeSekuSA6A.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:28:aa:2d:ab:18:69:be:d2:f4:d3:39:91:4c:91:62:8b:86:
ed:5e:2b:a1:c2:86:91:67:99:cf:f4:ec:5d:8d:db:c3:30:11:
96:86:46:dc:e4:09:65:33:c8:86:89:b0:74:1c:06:b3:ef:3d:
72:65:66:fd:6a:77:ff:ae:8a:5f:0c:7f:2c:eb:11:2b:60:18:
8c:90:a4:95:84:60:29:33:5e:78:6f:dd:dc:22:39:fc:5b:15:
b3:dd:0e:04:79:c6:0f:a8:a3:9e:55:c5:c1:4c:bc:1c:65:9e:
fc:41:38:53:38:85:b8:1e:47:8d:70:19:ce:f7:f9:9c:cf:f9:
b3:a4:88:ef:3c:f7:ff:92:da:97:3a:6e:cb:84:d4:ae:cd:da:
c4:14:fa:cb:8f:8f:34:0d:8a:a7:fc:b7:ec:35:b2:98:44:78:
0e:b9:33:80:43:fb:10:31:a9:c3:17:a8:7b:ed:32:9d:f7:df:
b3:07:21:2d:df:36:6c:47:0d:53:56:7e:4a:b2:28:67:e9:bc:
fb:d6:1b:22:74:74:bc:3b:1b:c7:06:bf:8f:2d:d9:93:cb:d0:
d5:6e:6e:80:c1:b3:56:0c:d9:9a:28:03:d9:58:4f:88:a5:91:
c9:77:f2:f1:bf:90:44:a2:21:01:be:1b:46:62:c5:59:be:75:
d9:21:29:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org