Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5KIgojccLT4ULPEAEOGlpr1asPY.roa
File: 5KIgojccLT4ULPEAEOGlpr1asPY.roa (raw, json)
Hash identifier: Yu7OloIua7jXhB4eRjnrKZfsq8BzabIAqFeCxwzXjVA=
Subject key identifier: E4:A2:20:A2:37:1C:2D:3E:14:2C:F1:00:10:E1:A5:A6:BD:5A:B0:F6
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0451
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5KIgojccLT4ULPEAEOGlpr1asPY.roa
Signing time: Mon 10 Jun 2024 23:55:03 +0000
ROA not before: Mon 10 Jun 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jun 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1105 (0x451)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 10 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E4A220A2371C2D3E142CF10010E1A5A6BD5AB0F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e1:e5:34:ae:8e:28:bb:28:b0:a7:98:f0:63:
f9:97:4b:11:1c:89:aa:71:e2:e5:84:b8:a5:3b:02:
92:3f:52:f3:52:4a:0f:ff:a8:1a:2b:b3:0d:43:b1:
79:c0:fc:d4:5d:de:1b:94:5b:3d:5b:db:62:f3:6c:
78:d9:55:bc:04:1f:69:1e:4d:0b:2a:58:96:a8:c0:
d8:4d:4b:6a:c1:fc:f8:2a:bc:5b:0e:81:4e:5a:02:
81:a5:80:88:74:1c:f3:20:a6:d2:b7:ed:81:68:e8:
5d:10:b0:1a:3d:10:06:f3:99:58:3e:5e:73:49:fd:
3f:a5:5c:74:68:99:26:de:bb:fd:2e:3a:bc:aa:96:
2d:8f:98:31:7d:76:a2:94:93:35:e8:28:1b:a9:9d:
24:c7:ee:25:e4:aa:d6:95:94:52:8a:be:01:75:18:
1a:fc:70:c6:a1:86:39:82:45:45:76:25:45:09:2d:
2b:65:ba:21:49:18:73:0b:3c:e0:16:85:18:85:03:
a3:0b:b6:ff:1b:c7:53:e4:3c:00:55:c8:18:8f:60:
95:28:ce:64:aa:c5:64:4e:db:9d:b0:ea:d2:2c:32:
31:6a:6e:d2:8d:93:d2:61:a8:08:0f:e0:a9:74:3c:
51:d3:b4:fd:1f:ae:a8:b3:0d:5c:10:09:7e:f9:b0:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A2:20:A2:37:1C:2D:3E:14:2C:F1:00:10:E1:A5:A6:BD:5A:B0:F6
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5KIgojccLT4ULPEAEOGlpr1asPY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:69:3d:14:d0:cf:0a:78:98:7c:46:9b:61:6b:bc:1a:32:6f:
69:0b:79:0c:d0:87:8a:8b:3c:39:04:ec:d9:7c:c5:ad:c8:a7:
40:04:89:85:7a:1e:82:e2:6b:1e:24:5a:2c:57:67:e8:9b:d3:
04:be:a4:63:09:bd:7c:84:54:06:aa:7f:f1:5b:ad:1a:39:ca:
81:37:eb:16:ac:16:d1:ae:be:b7:38:4f:e1:c0:26:4b:1b:4e:
cb:85:59:38:c7:e8:eb:b7:48:24:37:b8:db:47:ec:c8:07:4d:
bd:96:7d:a5:67:0c:67:e4:24:96:da:ff:38:25:0b:6b:27:8e:
79:a2:6c:f4:22:a2:44:3a:c2:52:2e:07:53:d5:a1:dc:02:db:
fb:04:e8:bb:06:49:64:fc:8a:d2:30:d8:90:06:bb:dc:74:16:
a8:f6:9f:02:c8:b6:c4:b9:84:43:d9:ce:1d:c9:3a:7d:41:3a:
e7:62:68:be:17:f8:46:30:0b:3e:bf:4e:a5:4f:19:90:6a:8f:
b7:e8:05:fd:d3:a8:f4:48:23:88:e8:5c:9e:bb:d7:ab:21:27:
ec:b2:df:4c:5e:b8:28:b2:fe:6c:9c:4c:d2:e1:b7:eb:c5:f1:
39:5e:ca:87:1d:d9:c8:98:f4:84:64:74:52:5a:bf:8a:dc:b0:
2d:ba:a5:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 05:57:32 2024 by rpki-client on console-fra.rpki-client.org