Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/19BpYfhMPdV4T_ndu9SV700bszQ.roa
File: 19BpYfhMPdV4T_ndu9SV700bszQ.roa (raw, json)
Hash identifier: Nu9VUqhYdwRn6J8/5i1rA4COR2iTmMBlFyHma0ztR7k=
Subject key identifier: D7:D0:69:61:F8:4C:3D:D5:78:4F:F9:DD:BB:D4:95:EF:4D:1B:B3:34
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 057A
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/19BpYfhMPdV4T_ndu9SV700bszQ.roa
Signing time: Sat 13 Jul 2024 23:55:03 +0000
ROA not before: Sat 13 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jul 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1402 (0x57a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 13 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D7D06961F84C3DD5784FF9DDBBD495EF4D1BB334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d3:e0:96:00:2f:ec:6d:11:7a:e4:d2:bc:23:
3c:52:3d:3e:97:ff:7a:ac:ee:8d:34:25:ed:25:f6:
c0:7e:78:f0:3e:e0:16:10:d5:bd:0c:08:55:e0:d1:
c3:dd:02:33:07:ae:0a:46:24:d5:b7:df:8b:11:71:
17:cd:3e:5c:23:16:64:52:34:23:a6:73:ec:d1:f5:
ff:08:f5:e5:93:27:ca:b7:60:5b:9a:38:a6:23:c1:
b8:06:84:4c:41:97:31:28:b2:6d:51:f3:e4:6a:f8:
74:0f:dd:83:06:fb:18:1d:f2:06:fe:f1:d3:52:f5:
fd:54:89:11:a5:43:e7:06:f7:c1:52:b3:4f:d7:14:
9f:ae:db:ef:dc:b2:2d:e8:f4:08:4b:e1:6f:ee:a8:
53:8e:ef:80:a5:29:30:2f:88:d9:96:84:e3:f2:be:
05:21:a4:09:02:fd:39:80:7f:34:7a:05:f5:71:dd:
6b:c1:27:96:5c:e2:d8:97:7a:f0:3e:72:6b:28:4d:
14:b8:25:74:12:a2:5e:aa:99:77:4b:21:a6:90:30:
0f:bc:78:4b:1c:bc:cc:6a:b0:fb:ae:d5:16:ce:1e:
66:35:a2:5e:24:ba:3a:42:67:44:ec:19:98:2f:b1:
ff:96:a1:b6:c4:99:a0:69:60:49:54:a4:8a:95:3e:
4c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D0:69:61:F8:4C:3D:D5:78:4F:F9:DD:BB:D4:95:EF:4D:1B:B3:34
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/19BpYfhMPdV4T_ndu9SV700bszQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
09:c2:2f:80:ff:7e:42:29:f3:94:55:15:3f:69:4a:8e:a8:a8:
a7:b7:c2:f2:06:e6:d4:71:2d:b2:52:8b:3a:dd:55:5e:48:2d:
18:ae:c0:c3:39:64:0c:24:25:58:89:93:82:66:95:aa:5f:03:
34:97:e9:b8:3b:0e:93:12:1c:86:47:17:01:5e:97:d7:b9:2f:
65:a3:05:00:a8:3f:78:7e:d1:9c:3b:68:1e:79:8f:a1:cb:f2:
f6:ab:22:21:f4:1b:3f:ec:0d:c5:50:42:ef:d0:bd:be:59:89:
9e:78:54:28:53:1a:5b:5c:e1:c1:a0:d0:91:05:ad:9d:d6:a1:
73:14:51:b9:c7:7d:91:a9:7d:4a:c8:57:68:f0:98:f1:30:5d:
c1:c4:19:29:79:70:2a:7e:09:a9:05:b8:52:95:0e:27:a1:f2:
64:ac:bd:1d:67:58:0c:bd:ad:1a:cf:57:d8:e3:fb:a6:04:8e:
9b:ef:4e:60:cf:4e:a9:8c:4a:39:6c:df:49:ef:4c:9f:35:a5:
8a:97:01:23:c4:57:dd:81:99:21:9f:e4:6b:16:ac:d1:2b:a5:
e7:90:ea:91:d7:7f:2d:2c:9d:3e:5b:81:1c:25:c2:4c:cc:73:
13:5d:89:26:b6:3d:cd:c2:c2:9f:7d:5b:4a:4c:b1:fc:e9:fb:
94:ae:c0:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 04:37:48 2024 by rpki-client on console-fra.rpki-client.org