Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/2ZvY_85bBg_C14CLugtbbQjNa_8.roa
File: 2ZvY_85bBg_C14CLugtbbQjNa_8.roa (raw, json)
Hash identifier: nYrKh3qP51wcUC2xdZZsSWl0H8WOe4Z4AQ+QhixEOFA=
Subject key identifier: D9:9B:D8:FF:CE:5B:06:0F:C2:D7:80:8B:BA:0B:5B:6D:08:CD:6B:FF
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 03C7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2ZvY_85bBg_C14CLugtbbQjNa_8.roa
Signing time: Sun 26 May 2024 15:55:03 +0000
ROA not before: Sun 26 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 967 (0x3c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 26 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D99BD8FFCE5B060FC2D7808BBA0B5B6D08CD6BFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:53:52:fd:6e:07:bb:1a:ff:7a:1c:06:41:59:
aa:09:61:c5:15:cc:0c:0b:0f:15:d2:6a:c2:83:f1:
2a:e7:3c:9b:6a:76:0b:b3:af:37:c1:0e:95:75:d2:
cd:3e:2e:1b:78:af:4b:81:3c:a4:f7:fd:4e:4a:2c:
5f:d0:72:47:ad:10:3b:bd:08:56:58:cc:17:9b:44:
ac:3a:aa:93:01:b1:46:72:9a:63:e5:49:b6:94:6c:
a2:52:f6:03:d4:97:d7:74:40:90:41:03:3d:4e:87:
5c:6e:45:33:d2:2d:56:77:29:fb:be:86:1e:0c:e8:
e6:82:c3:62:5a:01:8f:9a:db:c9:83:7f:94:c2:8d:
fd:b8:7e:a5:b7:1d:5a:27:05:cc:22:55:c7:a0:b7:
74:df:d9:45:4c:45:dc:f1:14:54:1b:26:be:c5:fc:
c0:c6:bd:fe:a2:28:91:86:e5:d1:d5:a7:a4:f9:17:
c4:df:40:72:3e:1b:08:c9:e5:26:cd:2b:df:a6:fd:
83:e8:3a:7b:59:30:49:ee:90:9f:d1:ce:f0:45:c5:
49:55:55:c2:0c:73:c3:af:f1:be:8c:8d:ca:ad:bd:
be:bc:a4:05:2a:95:1f:f3:ae:38:03:c4:a4:9a:cf:
42:23:6c:7c:43:eb:c8:87:04:3c:98:dc:6c:0d:9d:
84:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9B:D8:FF:CE:5B:06:0F:C2:D7:80:8B:BA:0B:5B:6D:08:CD:6B:FF
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2ZvY_85bBg_C14CLugtbbQjNa_8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
79:cc:2f:31:fc:97:43:57:18:4c:57:d0:a1:e4:d3:b8:42:24:
b0:29:fa:9a:3f:55:7b:e8:b8:29:ee:ac:b5:6c:38:08:7f:e5:
10:50:b4:79:ab:2b:85:84:77:9f:79:f5:ad:ff:21:ca:25:59:
ef:29:b0:6b:b3:b0:19:8e:71:ea:76:36:b9:8e:09:f9:b8:13:
aa:c4:d3:c7:26:f9:0b:2a:51:2b:e4:ce:73:13:9a:65:39:71:
eb:3c:f2:0f:a2:cc:e4:93:15:dd:9c:a2:96:7d:2c:4a:d2:f7:
c7:ce:ea:23:97:ba:c9:60:6a:29:dc:95:72:ba:ad:03:14:90:
44:58:0b:0c:9a:54:3e:e8:9a:89:6b:47:d3:c5:93:1d:b2:95:
9e:65:87:ef:c5:22:9b:61:91:f7:2a:d9:b9:2b:f2:af:5f:2d:
1d:b9:18:d6:11:65:82:a2:4d:f2:f8:4d:54:99:24:aa:03:a7:
fb:2a:65:7d:f7:3c:30:1b:24:a5:ba:64:ae:dc:c3:e0:d0:0e:
4b:44:4c:c2:49:64:7a:de:99:d0:85:f2:68:7a:fe:e9:0f:8c:
00:5a:e2:f3:08:1e:33:98:45:c9:fb:6f:0e:31:e8:7c:a3:cb:
e2:24:01:8d:b8:fe:87:f4:bc:56:1f:1a:40:f0:73:13:a6:8a:
c4:ae:71:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org