Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/AX3c60lHZFlXF2ZJxGIWps5XAmw.roa
File: AX3c60lHZFlXF2ZJxGIWps5XAmw.roa (raw, json)
Hash identifier: IHNXubwjHre7VXPaqbfzPtKjDribDTDGGcaeOjL1QwI=
Subject key identifier: 01:7D:DC:EB:49:47:64:59:57:17:66:49:C4:62:16:A6:CE:57:02:6C
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 080E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/AX3c60lHZFlXF2ZJxGIWps5XAmw.roa
Signing time: Wed 25 Sep 2024 07:55:03 +0000
ROA not before: Wed 25 Sep 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2062 (0x80e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 25 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=017DDCEB4947645957176649C46216A6CE57026C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:48:08:64:5b:c1:76:d5:21:f9:48:3b:81:5a:
c4:f4:fd:c7:2c:75:ec:52:5e:f9:5b:0e:c9:85:77:
a4:45:5d:44:eb:b5:d6:a0:95:76:a7:83:f3:49:a6:
ce:2b:00:b3:ad:b8:ba:29:ad:71:8e:d0:d2:b8:f4:
57:b5:0b:84:8c:5f:ad:d0:f2:5a:79:e9:be:63:af:
04:3e:89:74:62:69:4e:9d:e5:8e:b6:b7:de:e8:1d:
ad:18:26:d5:d0:cb:28:6d:b0:aa:88:73:90:48:76:
d8:a5:cd:a0:96:8a:d0:0e:4c:dd:d8:a8:9b:67:10:
0c:65:9f:b2:21:f1:50:fd:f3:76:86:b0:23:d7:78:
70:f3:e5:85:d2:51:6f:11:cb:17:e7:9f:36:93:52:
c3:3e:07:84:7c:27:90:0b:ca:c2:f8:23:97:7e:ec:
4a:50:c2:ef:46:a3:2b:bb:2e:a4:19:30:e8:40:ce:
d5:30:9c:0a:5a:20:ad:e6:bc:75:93:a2:fd:62:b4:
d6:b7:e9:dd:e4:62:11:f9:94:ea:a1:12:e1:e7:76:
2e:c1:79:28:c8:e4:84:0f:d6:e1:a8:26:9b:a1:38:
bd:3b:40:05:c3:56:0e:c7:4e:6f:c3:6f:20:04:46:
2f:94:d4:46:18:f5:e9:7f:d2:81:c2:09:7d:14:cb:
8c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:7D:DC:EB:49:47:64:59:57:17:66:49:C4:62:16:A6:CE:57:02:6C
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/AX3c60lHZFlXF2ZJxGIWps5XAmw.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:d8:fd:ce:7e:14:0c:20:a2:a0:ab:35:de:24:3a:71:f6:c2:
5b:8d:d9:64:5b:19:69:61:c0:18:05:3d:e5:19:a0:3e:26:58:
93:5b:6b:c5:04:3f:18:0a:3e:77:bf:55:b1:89:a0:9a:eb:58:
5a:4a:ce:50:06:77:5a:35:a6:27:ff:f4:f5:28:6e:1c:dd:ae:
3e:8e:d8:1d:ab:89:02:1c:05:5b:21:0a:ec:0b:93:56:7b:f6:
0e:ec:36:cf:42:a3:8f:5b:64:6c:9f:bd:0d:53:dd:24:55:9c:
94:2b:e1:cb:34:e2:30:6b:0b:bb:e7:21:18:13:d1:3a:69:29:
1d:3f:ab:18:b8:66:e4:d4:8f:9b:c7:c6:8b:04:96:f3:18:75:
10:4a:73:d3:9b:96:84:33:3e:d5:a3:ff:99:9b:be:0a:36:48:
d7:7b:c1:48:7a:d7:d0:3e:7f:3c:dd:1e:12:a5:c7:07:9c:84:
14:bd:e3:8e:3e:c5:59:94:d0:79:af:2a:2f:c3:b2:e8:f3:3e:
5b:33:34:c7:55:fb:87:97:c1:13:7f:c5:54:a7:05:d0:43:61:
ba:48:69:27:03:11:fb:47:fb:52:20:1f:29:84:df:07:1c:3c:
f9:18:3e:6f:1e:0e:cc:00:d0:b3:ab:d0:78:f5:fc:f8:49:c3:
42:46:db:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 16:29:51 2024 by rpki-client on console-ams.rpki-client.org