Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5DC2ofYzdZ_zV9wL3UVBe7XjFEs.roa
File: 5DC2ofYzdZ_zV9wL3UVBe7XjFEs.roa (raw, json)
Hash identifier: YNJlFwNEm/kWCaSaml7sEykpLyCIj+9IjQUeG/jFbUo=
Subject key identifier: E4:30:B6:A1:F6:33:75:9F:F3:57:DC:0B:DD:45:41:7B:B5:E3:14:4B
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05A4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5DC2ofYzdZ_zV9wL3UVBe7XjFEs.roa
Signing time: Thu 18 Jul 2024 15:55:03 +0000
ROA not before: Thu 18 Jul 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1444 (0x5a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 18 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E430B6A1F633759FF357DC0BDD45417BB5E3144B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6e:6e:de:48:5f:02:50:4e:71:43:c6:37:59:
12:06:15:0e:e8:e6:42:83:61:31:67:85:5b:dd:d4:
e2:2d:55:78:53:80:3f:6f:5e:8f:79:1b:95:b3:4e:
c3:1e:38:d2:b3:e3:85:1b:a6:8c:7e:bc:77:e3:59:
46:89:72:19:ec:b3:7e:b6:1f:eb:23:c6:53:4d:97:
6a:6b:6c:28:6a:c9:3b:e5:45:79:87:1e:ea:14:72:
ea:2d:10:d5:90:0a:6d:44:d7:46:14:38:bf:ec:11:
e1:a9:7c:bd:53:6b:7a:5c:e6:75:f0:51:78:80:80:
83:14:e7:c7:ed:81:1f:51:f6:c9:b9:82:9d:5f:9c:
ae:86:53:32:ac:bf:c5:e2:08:0b:a0:42:5c:a5:b7:
88:65:da:38:7e:c5:e2:f9:37:72:d0:d1:ec:0e:ef:
ca:d9:a2:96:02:dc:6e:ca:0e:ae:d7:e4:11:03:ec:
2b:50:53:59:19:a2:54:8a:ea:2b:17:6c:c4:9c:6c:
68:88:13:3b:c8:60:48:41:9d:c2:10:28:14:5a:93:
47:b1:bd:cc:82:9c:8b:4d:2e:cd:96:51:c1:22:c3:
62:3f:a1:4d:37:2d:e7:5f:29:92:c5:34:e5:70:6c:
8f:18:b4:6b:a0:56:3f:b1:4b:d7:f7:f1:36:e8:ad:
7f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:30:B6:A1:F6:33:75:9F:F3:57:DC:0B:DD:45:41:7B:B5:E3:14:4B
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5DC2ofYzdZ_zV9wL3UVBe7XjFEs.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
83:82:59:9e:33:d8:d1:ee:33:cb:d2:84:b9:6c:a7:7b:5d:f0:
04:e3:8f:b9:1a:d4:04:f5:fb:b0:ab:47:4b:3b:a8:ea:e4:07:
e3:d5:06:3e:72:0d:6c:11:c9:97:2f:75:2f:2a:cd:b1:52:d5:
09:f2:70:d3:ff:40:5c:ef:12:ce:1d:4c:bf:3a:5e:d3:0b:c2:
b6:0e:e6:94:7c:39:99:f0:16:ed:c6:f9:2f:b5:57:e9:1f:63:
5c:b4:48:bc:9b:9c:9e:7c:55:21:be:77:31:cf:26:4f:f5:35:
c0:d7:40:a3:08:66:6d:c9:3f:af:0a:24:db:27:08:06:60:92:
c7:17:aa:b1:01:e6:19:34:8c:e4:3d:46:a3:ed:34:ad:00:e3:
14:6f:68:45:f2:cc:16:91:54:44:eb:6c:7a:b2:62:64:dc:3e:
4e:e5:57:13:a4:0a:93:f1:e2:42:00:fc:13:35:30:5e:9e:bd:
5d:ae:c7:8f:91:ce:66:ea:6e:39:21:70:91:76:a1:62:ed:96:
21:27:29:1c:b3:6f:2e:3b:7e:9d:3a:38:ad:3a:e4:13:e2:e9:
7f:73:73:c8:64:eb:2d:6a:7b:29:ef:c8:12:e8:fa:17:97:40:
28:22:b9:f7:ea:f3:a6:3e:e2:f4:d6:47:93:ec:b3:ba:1f:ae:
ec:91:43:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 22:43:49 2024 by rpki-client on console-ams.rpki-client.org