Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/FL-BdZMiChAKvA47vil3C0r4BPc.roa
File: FL-BdZMiChAKvA47vil3C0r4BPc.roa (raw, json)
Hash identifier: dH5jRiQjIfgN96rv4baHYRFk6EaRC5hKBudegXjk6eo=
Subject key identifier: 14:BF:81:75:93:22:0A:10:0A:BC:0E:3B:BE:29:77:0B:4A:F8:04:F7
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 076F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FL-BdZMiChAKvA47vil3C0r4BPc.roa
Signing time: Sat 07 Sep 2024 15:55:04 +0000
ROA not before: Sat 07 Sep 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Sep 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1903 (0x76f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 7 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14BF817593220A100ABC0E3BBE29770B4AF804F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:30:4f:c9:e7:43:31:56:d0:48:8e:eb:da:c4:
10:e2:8c:60:b2:e5:2b:2b:7d:43:6b:44:dc:1c:36:
d7:fb:f5:94:68:5d:7d:9f:c9:13:54:d1:20:69:06:
cf:7d:e6:28:da:d7:05:57:19:cb:c9:c4:05:1d:0e:
5c:f3:e8:fc:fe:79:eb:d7:79:7f:f3:a0:f1:5c:52:
72:da:e2:08:5c:72:62:9a:65:f5:94:b9:aa:49:09:
0a:1c:5a:62:62:ae:b0:2e:13:11:83:1d:bf:5b:63:
f6:d5:2b:06:af:64:de:74:87:53:de:05:b2:8c:4a:
de:64:2e:52:16:99:ee:23:65:72:d8:a5:2e:bd:c0:
f1:45:eb:f2:04:8b:0e:86:15:cd:4a:41:ff:8e:18:
70:d5:6c:ae:a1:b3:ec:e8:58:65:8c:f9:64:bb:d3:
0a:87:1f:23:e6:e1:06:01:bb:99:16:0e:02:21:43:
59:28:d6:af:79:93:53:91:54:18:f2:13:95:60:07:
a2:9c:99:5f:b0:8e:15:06:4b:40:eb:4a:2a:ed:ea:
07:f5:b8:4d:ff:44:3a:c1:25:2a:87:af:4f:41:15:
e6:62:91:fe:03:42:46:ca:e9:20:4d:b9:43:c0:8a:
d0:83:e8:99:dc:ab:26:56:66:b9:df:05:74:5b:8f:
37:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BF:81:75:93:22:0A:10:0A:BC:0E:3B:BE:29:77:0B:4A:F8:04:F7
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FL-BdZMiChAKvA47vil3C0r4BPc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
de:be:5c:78:a7:ee:34:85:e3:aa:7a:f2:36:f7:84:af:0d:57:
7f:cb:7c:1a:ed:e8:7c:68:98:7d:0f:18:0c:83:0e:9d:f1:c2:
25:c9:2b:47:3a:c6:5b:b8:6a:4d:67:c8:80:08:5b:84:3f:8a:
d1:87:41:79:ae:5d:bb:38:0f:f7:2a:ea:3b:47:81:85:dc:c3:
d0:bf:9b:a7:5c:8a:2f:a4:04:36:6c:75:48:bb:79:79:03:68:
4c:02:72:4d:6d:55:14:a1:3c:91:39:e2:d2:5e:d4:c8:3a:58:
b5:e3:a7:1e:d4:20:da:20:6f:34:fe:51:2c:9c:15:a4:d7:92:
66:54:50:89:3d:ce:df:ff:c8:14:92:3c:a4:1b:45:75:d6:0a:
89:67:93:79:8e:69:17:9c:16:7c:88:86:dc:3e:c9:8f:fa:6e:
9d:55:22:9f:0e:e3:ca:d9:3c:cb:ce:43:e0:ce:f8:0a:26:ef:
2d:15:7b:8d:3a:fc:ab:02:86:df:2e:ab:12:94:d1:d3:da:af:
83:6f:61:25:e3:b4:e6:32:b4:06:98:69:b9:77:1c:0b:54:1c:
19:ce:1f:24:7a:9b:34:85:79:8e:b0:1d:de:81:db:da:b6:98:
5e:45:ca:f1:c0:b6:fc:57:00:85:ff:0f:bd:f8:46:f8:c8:03:
49:05:8f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:14:01 2024 by rpki-client on console-fra.rpki-client.org