Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/4wy8_ykoZyxH28U33pWBjC0L38Y.roa
File: 4wy8_ykoZyxH28U33pWBjC0L38Y.roa (raw, json)
Hash identifier: HEy1B62IahIAUyk1dWh4I0P9fDiolIfRMZcBFEEVmgk=
Subject key identifier: E3:0C:BC:FF:29:28:67:2C:47:DB:C5:37:DE:95:81:8C:2D:0B:DF:C6
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0832
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4wy8_ykoZyxH28U33pWBjC0L38Y.roa
Signing time: Sun 29 Sep 2024 07:55:03 +0000
ROA not before: Sun 29 Sep 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Sep 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2098 (0x832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 29 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E30CBCFF2928672C47DBC537DE95818C2D0BDFC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f0:73:1b:4d:76:74:59:5c:e4:e5:00:15:03:
c1:2d:ab:d4:f4:bf:96:d1:2a:57:36:19:78:1b:ac:
a2:54:d0:b6:e3:f6:57:17:02:20:9b:56:a6:f6:b5:
68:f6:a4:7d:30:fd:40:59:66:8c:bb:9d:9d:5b:92:
a2:cf:b4:08:61:be:6f:82:ee:1d:db:99:d8:31:68:
78:77:55:7e:a3:c9:4e:5c:f4:15:54:ea:22:d6:ca:
05:ae:19:c9:5f:46:a5:61:16:45:72:80:16:f9:da:
06:ca:59:3c:c9:47:2c:9c:d3:55:65:4d:c2:7c:a2:
d8:e0:21:8d:5c:22:01:c1:13:7d:57:d4:7b:94:cc:
76:ed:09:33:b5:a4:46:10:a1:97:7b:23:7d:58:30:
dd:a3:e7:7c:48:c8:fa:bb:be:fc:dc:e2:ea:74:dd:
24:d6:4e:2b:e0:2e:4a:1b:69:be:2e:62:6d:bb:f7:
1c:6b:e8:5c:48:91:db:14:bd:07:2a:7f:e0:10:29:
8d:7c:ce:e2:a0:da:2c:8c:ae:e1:7f:cf:de:19:19:
9c:79:f8:a8:60:b6:38:dc:b6:2f:43:54:17:dc:4e:
30:37:d1:56:69:f9:ec:9b:e5:9d:d5:94:0c:bc:d6:
ef:85:ca:93:d9:88:4f:6c:f8:9f:cf:bc:ff:14:a7:
63:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:0C:BC:FF:29:28:67:2C:47:DB:C5:37:DE:95:81:8C:2D:0B:DF:C6
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4wy8_ykoZyxH28U33pWBjC0L38Y.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:8b:38:39:4b:19:e0:00:61:61:fe:76:0a:9e:a4:05:31:fb:
80:d3:e9:7e:28:bc:35:b4:56:67:27:1c:13:11:5f:5e:61:8e:
a4:29:da:b3:17:62:15:9b:92:e6:c0:f2:b9:7f:52:42:f1:ec:
40:9e:bd:3e:d6:0f:8e:0c:14:bc:f0:8d:62:7f:61:98:44:50:
a2:f8:52:11:11:aa:10:1a:33:7d:df:2c:ea:04:c4:b5:5b:1a:
1e:90:28:25:53:27:0d:3a:5f:8d:07:05:f0:16:8d:c5:5b:56:
98:98:2e:c2:ff:16:83:3c:57:c4:d0:74:a4:a9:43:8d:e4:c2:
63:83:ed:73:ce:1f:c2:9f:60:04:fe:cf:ff:09:c7:b4:0c:5a:
ee:96:25:4c:4e:4a:59:85:d7:1a:4e:e4:5e:7a:68:0e:a0:d5:
cf:ce:a5:c3:3d:8d:75:07:98:7e:a7:c6:c1:4a:bb:b4:91:cb:
57:a9:41:8b:f5:a3:3d:3f:04:9d:74:70:5a:25:2f:5d:b9:7b:
8d:c2:54:a2:1e:21:3e:d3:ad:cc:5a:e2:f0:cd:bd:ce:bb:15:
e1:c8:e9:17:de:b1:f6:95:67:57:6a:0d:5e:d0:34:2e:00:84:
30:6c:63:5f:cb:96:3b:32:6e:21:d7:03:d4:75:ca:bf:6f:05:
cc:8b:3a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 13:43:48 2024 by rpki-client on console-fra.rpki-client.org