Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/3x927NYF4JUU_eLxTimLN_w5bGk.roa
File: 3x927NYF4JUU_eLxTimLN_w5bGk.roa (raw, json)
Hash identifier: 78r1BzkKAF2ol4Xp0DRNwHxtMm7WMPh4ybwsm0lP8uI=
Subject key identifier: DF:1F:76:EC:D6:05:E0:95:14:FD:E2:F1:4E:29:8B:37:FC:39:6C:69
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 070C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3x927NYF4JUU_eLxTimLN_w5bGk.roa
Signing time: Tue 27 Aug 2024 15:55:03 +0000
ROA not before: Tue 27 Aug 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Aug 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1804 (0x70c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 27 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=DF1F76ECD605E09514FDE2F14E298B37FC396C69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:42:99:86:5e:17:9a:f7:26:84:8e:46:0d:c5:
56:7d:ab:0f:33:ff:8a:b0:6b:76:1c:76:53:98:20:
6e:b9:8d:fe:ab:bf:95:91:2b:ad:20:ed:36:c0:e6:
75:fa:50:8b:72:46:46:90:5f:01:f2:f5:c3:06:85:
7d:ac:ab:7c:43:b9:a3:f3:16:7f:5a:1e:1d:5e:80:
f7:78:e0:50:5e:ba:d4:c9:b1:03:c6:fd:20:14:94:
15:f3:d7:93:20:ae:e3:49:44:d0:94:99:b6:63:a6:
5a:ab:c7:4f:a2:77:f7:69:f9:b0:4f:4b:99:35:c3:
ba:40:41:5e:a3:be:10:af:b9:1c:9a:11:da:6f:7f:
71:80:de:f2:51:5b:50:73:d7:79:c1:81:3b:fa:fd:
11:a4:e5:ce:b4:7b:f1:62:37:c7:84:68:6f:92:68:
2a:02:8b:89:21:0f:4e:ed:b4:57:87:be:b0:a8:dd:
1e:fc:7c:65:a1:f1:e0:3b:51:9f:62:ec:24:7d:52:
9b:8d:93:44:ec:02:68:16:7a:85:5f:dc:2a:49:d5:
e6:4b:ba:9b:f0:45:0c:bd:24:8d:a9:cc:94:f5:ae:
fe:7d:a9:cc:7b:2d:e1:56:bf:ca:80:63:d5:13:68:
62:29:a6:d1:89:0c:21:6a:94:2e:6f:23:6f:90:20:
b1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1F:76:EC:D6:05:E0:95:14:FD:E2:F1:4E:29:8B:37:FC:39:6C:69
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3x927NYF4JUU_eLxTimLN_w5bGk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
66:71:d1:a1:ab:94:f3:ad:77:b0:97:01:a9:c6:46:68:4b:61:
84:c4:79:ef:f0:10:f2:d5:93:64:49:95:e7:cf:d8:d5:5b:61:
f1:45:8a:7a:62:0a:03:9b:ac:1a:72:1a:90:1d:1d:64:49:24:
12:f5:88:b4:ac:9f:17:59:7f:1d:b6:22:9d:da:4d:63:ac:b2:
ca:9d:50:b0:1d:28:99:ff:f2:67:bd:3a:f9:e9:73:c8:ca:7c:
e3:4e:a4:47:16:a8:d7:61:68:cb:54:6e:74:c0:13:4f:7d:9a:
b4:fc:a8:ec:68:f8:64:1c:0a:a4:ef:f5:f2:f5:4e:ce:97:20:
57:d7:bc:2c:21:07:fa:bc:fb:53:8f:42:c5:e1:ad:47:20:82:
3a:70:24:c3:2d:60:9b:09:82:df:50:4f:ab:7e:6d:53:7b:0f:
e3:b8:18:f3:ec:28:e2:b7:ec:91:ae:4b:e6:93:70:0f:86:4e:
40:ed:e1:ec:ae:fe:cd:de:24:76:a8:24:f7:25:76:b7:47:74:
1f:9f:37:c1:74:84:58:a9:76:e6:d5:b0:ad:43:30:86:89:31:
a5:1d:52:97:a5:da:e8:97:29:3e:31:d2:6a:ff:d8:0d:04:ff:
b8:47:6e:ab:88:06:01:94:6f:a0:f2:90:9b:dd:12:a5:3d:4d:
f6:a8:93:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 21:32:31 2024 by rpki-client on console-fra.rpki-client.org