Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/FeX7x2OXM0G89KNcPVlFPABl1ZA.roa
File: FeX7x2OXM0G89KNcPVlFPABl1ZA.roa (raw, json)
Hash identifier: xKZnHsW9+yN3Aw0kaOAJxidBV99csqGt43le5F2RAos=
Subject key identifier: 15:E5:FB:C7:63:97:33:41:BC:F4:A3:5C:3D:59:45:3C:00:65:D5:90
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0901
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FeX7x2OXM0G89KNcPVlFPABl1ZA.roa
Signing time: Tue 22 Oct 2024 07:55:02 +0000
ROA not before: Tue 22 Oct 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 10:45:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2305 (0x901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 22 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15E5FBC763973341BCF4A35C3D59453C0065D590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2d:54:fa:b0:1d:c7:8a:ae:0d:3f:0a:79:1d:
13:48:f2:7b:43:bc:e8:12:05:6d:8d:be:17:54:00:
8f:84:9a:f6:6b:02:26:50:22:42:ba:5f:6c:bc:dd:
e7:66:d4:32:f0:e2:2e:93:de:ce:5f:d3:1b:67:d8:
de:82:87:06:17:5a:29:f1:86:3b:a5:ec:02:56:e6:
7d:4c:8d:41:08:2f:75:13:84:98:14:24:4a:b0:00:
2f:94:fc:d3:b7:08:09:31:94:16:36:6b:64:fa:36:
84:01:54:69:76:0c:e8:c9:a6:33:56:a8:50:6e:4e:
5d:c4:4b:71:be:2d:69:f1:40:80:ac:17:85:f9:a8:
4f:9f:45:8c:6a:b9:14:67:17:3d:bd:b1:8c:64:db:
0b:17:4f:28:ed:c1:02:8b:57:05:be:9c:12:db:03:
39:fc:4a:c3:2f:dc:83:8b:d5:10:bc:75:31:97:fe:
e2:ba:25:e1:64:f7:b3:b5:70:78:6c:13:0a:dc:be:
3e:93:d2:86:25:6f:2b:3f:32:47:7d:9a:1c:b8:b3:
57:05:ca:c9:31:5e:69:2f:07:64:d7:b6:76:48:07:
dc:21:f7:0c:da:69:8d:f0:7e:5a:fd:ac:be:3a:f1:
03:2d:b7:a9:3d:ec:74:3d:ff:0d:0e:9e:ec:40:5b:
35:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E5:FB:C7:63:97:33:41:BC:F4:A3:5C:3D:59:45:3C:00:65:D5:90
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/FeX7x2OXM0G89KNcPVlFPABl1ZA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
be:75:18:d4:40:f8:92:97:4e:f1:72:d8:dd:0d:b3:c3:04:ef:
34:a3:04:3d:0b:68:22:68:84:72:44:54:6f:0e:98:2e:56:98:
53:5b:e9:a5:55:2d:df:1d:73:1e:04:d0:af:0c:ce:08:fc:c0:
d4:7d:9f:a9:1e:05:ed:75:1d:3f:09:f7:ea:9a:eb:a4:ed:aa:
fc:34:74:4d:41:76:e3:e8:b4:4b:2f:2d:a5:4e:6c:cf:0c:0a:
54:23:2d:43:38:37:2b:6c:4d:0a:35:94:ad:cf:bd:2c:d6:83:
60:b5:bd:66:39:24:de:cc:04:b4:2a:30:0b:cd:c6:88:a4:d3:
f0:36:0d:fc:68:1d:72:5a:f7:a2:1c:ec:79:96:f6:49:31:e7:
26:c9:51:a5:59:9c:bc:47:dc:f0:b9:5f:52:e3:48:c9:ec:20:
e5:0b:5d:05:87:ab:37:ce:79:a9:b9:4e:81:ed:50:73:50:72:
76:7f:84:69:53:52:26:fa:15:2e:3c:d6:8f:a8:ac:53:7c:36:
bd:74:ec:a0:78:17:fd:a3:cc:c5:a3:4d:ec:cb:c7:27:9e:fc:
88:3c:92:48:ae:52:9c:1e:aa:ab:39:87:27:97:f8:8b:bd:6e:
7e:41:31:c6:ed:39:fe:48:48:1e:85:ae:0b:20:a1:f4:e3:52:
b0:9e:a5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 13:52:11 2024 by rpki-client on console-fra.rpki-client.org