Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Ax0_fktD05cRuWQKTyg3VIoHqnM.roa
File: Ax0_fktD05cRuWQKTyg3VIoHqnM.roa (raw, json)
Hash identifier: osG288lcuFsbaqbV4o4qcCmW3hYOAGdsf8VW4LlvNRg=
Subject key identifier: 03:1D:3F:7E:4B:43:D3:97:11:B9:64:0A:4F:28:37:54:8A:07:AA:73
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 019C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Ax0_fktD05cRuWQKTyg3VIoHqnM.roa
Signing time: Mon 25 Mar 2024 23:55:03 +0000
ROA not before: Mon 25 Mar 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412 (0x19c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 25 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=031D3F7E4B43D39711B9640A4F2837548A07AA73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b3:72:c2:4b:4a:90:7a:2c:f1:e2:4d:e3:00:
87:3a:84:67:93:ac:cf:57:f5:9d:1e:10:47:af:85:
c4:ac:d4:62:bf:53:8f:7e:3a:ae:76:8c:02:dd:21:
f0:4a:d2:d5:c4:82:61:6a:ab:54:25:82:36:e3:f0:
01:eb:d8:d0:dd:96:66:9f:d4:17:e6:19:93:9b:64:
55:d1:5b:20:98:0c:b1:52:9b:26:30:a4:11:49:c8:
e2:59:f2:f4:c4:0c:a5:fa:a2:40:3a:fb:da:5c:a6:
24:c1:1b:3f:23:77:32:fe:17:dd:05:f8:b3:aa:41:
34:79:02:28:c5:01:4d:52:91:e4:ce:46:43:21:55:
03:3c:26:ff:5b:98:21:61:b4:a5:c4:b0:be:27:65:
0f:07:af:d8:c7:d3:af:d0:73:7e:c6:a8:82:13:bc:
15:19:7c:de:2e:7b:dc:8f:3a:04:e7:39:3a:0c:5f:
c7:c2:8d:39:1e:a1:d3:0d:ba:10:d3:35:43:c4:ab:
31:6e:ac:22:9e:54:bf:43:f4:c6:32:8b:28:c7:53:
71:96:1f:97:f7:c9:31:c6:e0:94:66:ba:58:cc:f1:
2f:7b:49:05:a2:b1:06:16:5d:bd:f5:47:8a:96:72:
ca:b0:9b:a3:de:89:28:82:43:60:12:3c:1a:47:a3:
d6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1D:3F:7E:4B:43:D3:97:11:B9:64:0A:4F:28:37:54:8A:07:AA:73
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Ax0_fktD05cRuWQKTyg3VIoHqnM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
14:18:84:10:6a:fc:1e:b0:0f:1e:85:98:29:f7:4c:0c:76:bc:
a2:0e:a9:64:18:b5:e6:ac:4f:f2:16:6f:1e:01:7e:51:2a:c9:
eb:00:92:b6:1d:b5:7b:59:8e:b9:13:ea:84:63:48:47:af:58:
8b:22:a8:48:24:67:cb:bb:57:09:71:e2:d3:f2:54:34:26:70:
c7:eb:9c:7b:84:c5:29:f7:c4:4c:78:e2:f1:66:58:35:e6:f4:
a4:3a:09:2f:e9:10:52:0e:c7:c2:13:5d:25:01:9a:dd:fe:61:
a1:40:fc:2d:5a:8b:78:94:9a:5e:56:5f:21:73:cf:47:5f:f8:
d4:7c:2d:66:2a:6f:8a:f4:e6:43:32:35:68:04:02:22:15:bb:
64:63:65:2a:ee:16:47:b6:f2:58:7a:54:fc:85:8b:f4:27:e4:
e9:7e:66:80:3e:af:13:82:19:ed:0f:ce:68:a7:1a:e4:5e:50:
9e:04:00:bd:c3:65:54:25:2a:7b:06:f8:fa:3e:42:6b:8a:a5:
70:04:41:be:da:50:07:ed:20:ee:92:d9:ed:76:07:80:0f:57:
ab:6e:0f:01:5f:d0:d6:63:42:80:8c:96:60:75:84:52:66:de:
2a:04:b0:2b:e9:ef:ae:6a:d5:8c:4f:5e:6f:e5:0e:1d:b8:64:
66:96:24:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org