Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/77VIovAjreUTajL_lI9j0902xk8.roa
File: 77VIovAjreUTajL_lI9j0902xk8.roa (raw, json)
Hash identifier: JBlk0M5RqhLFTf/SwWA2yP+i/M/sxupDxJEO4CjhDec=
Subject key identifier: EF:B5:48:A2:F0:23:AD:E5:13:6A:32:FF:94:8F:63:D3:DD:36:C6:4F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06E2
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/77VIovAjreUTajL_lI9j0902xk8.roa
Signing time: Thu 22 Aug 2024 23:55:03 +0000
ROA not before: Thu 22 Aug 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1762 (0x6e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 22 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EFB548A2F023ADE5136A32FF948F63D3DD36C64F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2a:6c:fa:63:ba:eb:72:95:e8:48:35:ff:89:
c5:31:30:36:78:2a:56:cf:17:87:44:e0:ba:81:99:
09:1b:e3:5e:04:89:08:ea:7b:02:d7:08:bd:6f:72:
af:ce:e2:3d:a4:58:33:5a:38:e5:57:1a:cd:ca:97:
2e:3f:e1:09:4f:d2:0b:cd:f3:fe:e1:b2:06:6a:44:
d6:42:2f:eb:f5:d8:bd:26:22:d9:f4:09:ea:85:dd:
37:f3:68:46:83:58:03:7e:c3:ec:1b:0f:4a:1e:40:
df:ec:38:ee:89:96:06:a8:36:8a:63:28:c2:34:ed:
e1:9c:13:42:c8:b3:fc:97:03:cb:18:35:e7:8e:83:
2d:54:30:4b:bd:21:af:89:28:3f:8d:39:14:f5:fe:
95:aa:f6:7d:98:3d:6d:a2:63:a7:fd:03:27:8a:6f:
06:2e:76:e5:4a:fb:f7:8d:6e:fd:c6:4d:d4:92:a8:
9c:59:aa:6e:d0:c2:e0:0d:45:be:4c:29:39:bb:0c:
aa:a1:ec:fc:19:0d:f7:eb:f8:49:23:1f:e9:40:ba:
f8:93:54:f0:fe:7f:7d:ca:3b:3b:72:83:27:aa:0c:
89:a0:5c:af:e3:a1:9c:d3:23:0c:ff:99:97:55:01:
11:1f:5c:50:d7:80:c8:40:7e:e9:92:12:25:24:0f:
3d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B5:48:A2:F0:23:AD:E5:13:6A:32:FF:94:8F:63:D3:DD:36:C6:4F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/77VIovAjreUTajL_lI9j0902xk8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:6d:be:a9:1b:53:1f:d5:2e:34:a5:c4:5a:d8:ed:1e:b9:7f:
0f:16:89:b4:47:de:12:ef:17:0d:72:fa:7f:c7:35:37:0a:34:
72:9e:47:9f:93:37:4a:21:c1:08:64:ad:28:39:f0:04:91:94:
22:5a:80:e4:e3:8e:89:e2:db:2b:86:1a:a0:ed:04:4f:f0:d6:
7e:aa:0f:1a:62:86:53:fe:5f:e2:52:ab:3b:42:27:7c:e6:f4:
8f:12:57:de:90:71:68:4b:34:75:85:fc:e7:4b:21:92:20:74:
f8:40:f1:ea:79:51:93:00:f7:c1:a4:4c:0c:f4:f4:1b:cc:7e:
79:37:0a:9e:2c:f5:10:38:e9:9f:21:26:31:c9:6b:e1:80:40:
1a:15:a0:63:3b:26:aa:58:45:3f:86:53:e5:e3:d6:86:51:fb:
64:27:90:2f:ac:9c:8f:a8:93:d3:1a:34:7c:c3:5b:fc:22:15:
17:fd:e3:88:d0:69:67:ca:aa:ad:57:b0:42:e4:14:58:a5:a4:
ac:81:59:57:b9:b7:3e:7d:b0:c3:a6:c9:49:33:af:23:f2:1d:
c1:cc:64:d4:b2:2e:79:94:0c:39:38:b0:0c:da:9e:37:99:ec:
f5:6f:1c:b0:ac:6c:7f:b3:5d:43:5d:1c:d8:f9:bb:47:11:6e:
b6:c8:bc:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 07:45:53 2024 by rpki-client on console-fra.rpki-client.org