Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Abyjizob1NQ8uQ7hGlGL_DXBAr0.roa
File: Abyjizob1NQ8uQ7hGlGL_DXBAr0.roa (raw, json)
Hash identifier: UthQ08n5brcrLojPKRNFpLcAROSWiq5qH4R/Lh3fC18=
Subject key identifier: 01:BC:A3:8B:3A:1B:D4:D4:3C:B9:0E:E1:1A:51:8B:FC:35:C1:02:BD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02B0
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Abyjizob1NQ8uQ7hGlGL_DXBAr0.roa
Signing time: Thu 25 Apr 2024 15:55:03 +0000
ROA not before: Thu 25 Apr 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Apr 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 688 (0x2b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 25 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01BCA38B3A1BD4D43CB90EE11A518BFC35C102BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a4:8b:36:54:7b:84:f1:af:44:53:80:10:ca:
5e:e6:7a:36:53:ee:17:4b:ce:33:83:a1:34:a1:28:
d9:66:73:1c:bd:5e:18:9c:1b:47:2a:8c:cc:cd:0f:
8e:00:bf:68:70:b4:3f:c7:8e:c8:43:08:96:08:05:
b9:0f:3d:13:bc:90:f7:b8:cb:f0:ae:ea:73:ed:22:
4a:59:58:09:63:43:d3:97:98:5c:f1:73:53:47:1a:
87:fa:97:27:a2:48:86:1a:df:b4:dc:0b:04:f3:4d:
4b:86:0d:ff:cc:2e:e2:c8:ef:cf:91:82:e0:43:11:
03:3e:cc:6d:71:eb:8f:51:48:cd:94:33:05:8a:e8:
6c:76:ed:84:d1:93:4a:55:cd:aa:a2:b1:0b:ad:a2:
10:7d:e4:31:7a:2c:6f:cc:86:dd:4f:ef:68:3a:c2:
f5:f5:a7:b7:ce:0c:06:46:81:4d:b4:59:e2:02:13:
41:68:b8:f7:f2:5f:39:c7:c1:d1:65:9a:ca:69:6a:
22:9f:2a:d6:b9:51:1e:0a:4b:88:10:0b:86:59:9c:
bf:89:f8:26:59:8c:92:ce:7a:10:f7:e7:fe:80:cf:
62:68:e8:2f:1c:59:0f:b8:b4:c4:27:4f:c1:76:15:
6e:a2:15:1d:e5:94:eb:db:9e:3c:77:d3:eb:a2:6f:
55:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BC:A3:8B:3A:1B:D4:D4:3C:B9:0E:E1:1A:51:8B:FC:35:C1:02:BD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Abyjizob1NQ8uQ7hGlGL_DXBAr0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
77:eb:68:b6:73:76:15:7f:8e:c7:8a:67:d7:9f:d4:ca:6b:91:
91:c2:d1:f2:18:3a:ba:a3:ab:95:83:99:7b:89:d3:27:86:5b:
fb:31:bd:e0:c7:0f:ad:59:0b:66:bc:64:bf:a7:dd:f8:b8:6c:
4b:72:ce:bd:b0:0a:ac:42:aa:d1:3c:a6:23:5c:be:8a:d3:02:
7e:39:ad:2c:5f:32:39:5b:c9:9b:a8:c8:82:2b:0a:7e:97:c6:
a2:1d:53:68:85:0b:bb:b5:63:4f:6e:7f:8d:f3:6c:36:c3:95:
e0:da:b5:2b:6d:a2:1c:4b:1a:2a:e8:65:ab:0f:8c:b3:1c:28:
ad:7e:ad:c8:1c:bf:33:ff:10:98:76:23:ce:1f:f6:9a:eb:3b:
99:61:2a:55:28:0e:12:a7:ed:72:6c:e4:bb:75:6d:62:5d:fa:
02:99:be:45:a5:e2:3a:94:a3:35:eb:a9:82:a7:bc:d0:a8:8a:
71:bb:af:df:db:2e:ac:89:53:70:55:80:ef:30:52:31:f9:d8:
19:93:7f:5d:2b:f0:d2:24:26:be:b0:be:53:88:20:b5:bd:62:
67:69:fc:11:97:1e:ef:5e:c6:5f:98:3f:7b:8b:0b:ff:d3:b2:
97:19:e8:1c:9c:73:89:cd:fa:15:ae:8a:d6:dc:7b:2a:42:3a:
da:4a:3b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:47:28 2024 by rpki-client on console-ams.rpki-client.org