Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/1d5Jp_YK0kMvUKqHwvDVLgR2HQo.roa
File: 1d5Jp_YK0kMvUKqHwvDVLgR2HQo.roa (raw, json)
Hash identifier: r5qHWjkVRonb0U/yAMw3yyr2NqAPyYbzuPhcmHvFOQw=
Subject key identifier: D5:DE:49:A7:F6:0A:D2:43:2F:50:AA:87:C2:F0:D5:2E:04:76:1D:0A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0259
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/1d5Jp_YK0kMvUKqHwvDVLgR2HQo.roa
Signing time: Mon 15 Apr 2024 23:55:03 +0000
ROA not before: Mon 15 Apr 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 601 (0x259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 15 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D5DE49A7F60AD2432F50AA87C2F0D52E04761D0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:de:bc:3b:1b:76:35:d3:d0:fb:a8:80:60:8a:
c5:e1:67:9e:2b:a0:7c:1d:60:c7:dd:1e:07:3d:ec:
1d:1f:a7:9a:cd:f0:60:f0:37:12:e6:ba:21:db:6b:
ad:5c:08:a5:ee:17:c3:60:98:ab:36:64:64:16:65:
9c:a0:2b:36:2a:74:21:6e:a2:ec:06:98:c4:e2:ba:
43:2d:ea:b5:d2:79:3c:84:64:2b:1f:fb:d8:56:e2:
41:74:82:08:03:cc:ce:8a:ab:b1:af:6a:15:17:18:
11:27:af:26:13:48:39:f9:fc:10:65:f9:e2:ce:fb:
19:62:8c:40:43:e6:6c:6b:ea:c2:ef:90:7b:59:3e:
40:72:ee:59:a6:cf:56:a1:7b:7a:db:c5:60:79:9c:
32:a5:54:b3:b7:54:c7:32:aa:2d:fa:bb:ae:91:1c:
ae:fc:3c:92:28:11:81:bf:7a:c4:2d:bc:25:db:a5:
96:2e:3d:1f:11:de:e4:e4:32:f1:35:da:24:c3:38:
42:7f:c3:15:a9:77:49:93:85:e9:fa:af:04:2d:7b:
03:1f:af:e8:dc:82:d6:b5:70:b3:62:47:e1:d7:06:
09:54:c5:41:55:ff:d0:9c:cc:30:27:f5:73:de:d2:
ba:0c:18:2b:b5:fc:54:85:b6:ae:03:d1:34:96:8d:
73:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:DE:49:A7:F6:0A:D2:43:2F:50:AA:87:C2:F0:D5:2E:04:76:1D:0A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/1d5Jp_YK0kMvUKqHwvDVLgR2HQo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:fd:6e:8d:d4:bb:aa:53:29:de:d2:32:6e:fa:d3:e8:b0:4c:
d6:33:cb:10:69:9c:66:72:94:13:b8:d1:6b:4b:4d:cb:6e:5e:
49:27:15:4e:60:6f:fc:17:f2:29:44:8e:1b:2b:c9:e3:1a:92:
63:30:18:58:71:b7:a7:7a:75:06:c1:79:f8:8a:85:5b:7c:bd:
20:6c:bb:a3:53:4e:ee:1e:13:47:08:0a:bb:aa:83:f8:4d:1e:
5e:d6:25:df:0a:d8:2d:55:9a:a0:2d:2f:ad:ed:b5:09:49:d4:
b3:ad:dd:1b:59:73:eb:eb:bc:2c:58:f0:7f:cc:d0:fa:77:6d:
ae:71:0b:2c:ad:48:61:5a:3a:7d:d5:26:ab:b9:dd:78:02:25:
04:17:d5:4a:f8:c4:34:d7:98:f6:ba:bd:aa:0b:35:3c:93:d4:
7c:4b:b8:a8:b1:7e:ee:28:10:90:1d:c2:42:58:44:34:f5:5a:
99:d0:65:6c:d7:df:46:52:24:95:da:8d:f7:bd:9b:36:04:3c:
db:ed:51:99:aa:c6:d3:77:2a:cd:69:bc:20:4c:4b:9e:00:b3:
55:c8:58:a6:05:e1:47:58:78:88:f6:e2:1f:25:9f:4a:11:26:
ba:5f:4a:5d:af:bb:16:a4:1d:36:8b:46:3d:67:3e:df:af:02:
8b:57:92:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org