Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/7xUlVONkrHP3pz146IZRKYS81L0.roa
File: 7xUlVONkrHP3pz146IZRKYS81L0.roa (raw, json)
Hash identifier: U4RfddcOmlbEi1wrCIwxgq7Cjg6WgikwUy1tUcCx3jI=
Subject key identifier: EF:15:25:54:E3:64:AC:73:F7:A7:3D:78:E8:86:51:29:84:BC:D4:BD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 08A4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7xUlVONkrHP3pz146IZRKYS81L0.roa
Signing time: Fri 11 Oct 2024 23:55:02 +0000
ROA not before: Fri 11 Oct 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Oct 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2212 (0x8a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 11 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EF152554E364AC73F7A73D78E886512984BCD4BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:46:8f:66:6b:a8:fc:95:f7:3e:80:d4:34:ea:
3f:4f:1f:d6:63:35:df:db:fc:b1:8c:cf:0f:b5:9f:
bc:de:91:35:33:d0:bf:fc:bc:74:c2:d9:37:cd:b2:
8d:f6:d3:33:6a:a8:73:c1:de:b5:e5:25:f2:d6:27:
4e:e7:c7:e2:85:8f:b2:e6:d1:fa:67:e3:3f:88:98:
3b:fe:60:fc:2c:7f:50:3e:da:4b:96:85:88:8b:63:
3a:4c:09:c6:3d:6d:21:f5:69:64:3a:3f:62:0a:67:
3a:f9:fb:68:11:e2:53:fd:1a:f2:84:f1:58:22:8e:
77:0a:fd:c3:fb:e0:2c:a7:e5:2c:e6:3e:3d:92:77:
b4:c6:6a:f2:84:3c:4d:3a:5e:69:b3:d6:ce:ef:21:
81:ca:68:cd:93:55:35:80:71:19:5a:7a:8a:24:a5:
7c:5f:db:f9:ad:f2:15:0b:7a:40:af:18:78:52:38:
94:e6:50:5d:5a:80:15:3f:db:ae:fe:cb:7a:cf:71:
2d:94:5b:62:82:da:be:1e:93:fc:05:eb:ea:e9:38:
68:15:44:5b:d1:2e:be:8a:00:88:f3:a0:ad:57:59:
29:7f:4d:85:32:c7:2a:56:86:49:57:be:3e:da:77:
77:93:1a:a9:41:77:94:4a:e5:77:ac:ca:44:7b:9c:
eb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:15:25:54:E3:64:AC:73:F7:A7:3D:78:E8:86:51:29:84:BC:D4:BD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/7xUlVONkrHP3pz146IZRKYS81L0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:0e:1c:bc:75:d7:28:47:a7:be:7d:e9:b8:f1:ac:db:c9:be:
4e:28:2d:ce:ff:a0:4f:7e:22:d6:57:fb:f3:e6:ae:cd:ab:eb:
d5:f2:42:40:15:ab:1d:53:d6:6e:22:87:cc:92:85:5d:cc:31:
16:e8:2d:77:f3:2f:f1:6d:38:1e:da:7d:b3:f3:bf:60:74:d7:
70:e7:4d:b8:1c:90:42:33:f4:a8:ca:d4:cb:21:6b:20:76:d2:
ec:d7:26:f5:bd:3c:5a:4b:54:2e:7f:a7:be:66:de:33:6f:ca:
02:5d:49:27:32:99:39:3b:5f:46:f5:1d:5c:d1:6a:ab:79:d7:
7a:44:93:83:c0:42:af:45:12:9d:26:5c:53:a4:cd:d8:3b:95:
e0:1f:cf:8e:8e:e6:19:d6:dd:af:dc:06:ee:2d:a7:33:af:af:
45:3c:18:9c:6b:8f:ea:88:b4:b1:5c:16:58:1e:85:15:53:71:
7a:c8:25:e1:5a:15:1c:c1:c7:0b:c6:19:e9:cc:40:33:df:a0:
bf:14:f9:59:23:e4:b5:01:2b:38:83:db:e8:23:4b:fa:db:b9:
f8:fe:67:e5:67:2c:58:2d:19:7f:e6:9f:71:d6:df:bd:02:8e:
37:ca:17:5f:4a:01:d3:c9:25:ce:df:05:44:45:6d:52:be:07:
2e:1d:5a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 07:42:45 2024 by rpki-client on console-fra.rpki-client.org