Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/GDCHKAM4xVIOP7TVQ--p37G_5NA.roa
File: GDCHKAM4xVIOP7TVQ--p37G_5NA.roa (raw, json)
Hash identifier: w1liHoFevyFVoomw6Hb5wdIJMF+YACxILji5tshZHXY=
Subject key identifier: 18:30:87:28:03:38:C5:52:0E:3F:B4:D5:43:EF:A9:DF:B1:BF:E4:D0
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 032E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GDCHKAM4xVIOP7TVQ--p37G_5NA.roa
Signing time: Thu 09 May 2024 15:55:03 +0000
ROA not before: Thu 09 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 19:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 814 (0x32e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 9 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=183087280338C5520E3FB4D543EFA9DFB1BFE4D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ec:79:b0:d9:e0:97:44:ce:2f:38:0f:24:5f:
76:28:82:08:c9:bc:29:99:73:4c:42:b2:f6:7d:af:
85:04:0b:ad:e4:bb:09:e1:d6:61:50:4b:0d:fc:66:
9c:e8:b6:2e:36:38:26:cd:c4:ec:87:4a:8d:e0:b5:
85:ff:72:bc:91:ad:c3:e3:f6:b8:de:9a:3a:31:86:
4e:af:11:92:50:aa:c3:b8:2a:e8:fb:1b:98:a7:a2:
5d:ea:ab:d8:ce:36:7f:10:3f:c7:13:4a:0d:95:fe:
48:fa:b3:6f:4d:ac:5b:f6:ad:c1:a5:01:4a:6a:fd:
0d:13:ab:c6:19:06:0c:7e:12:41:aa:a1:b8:5e:ba:
54:1c:93:c7:d2:04:f8:7b:8c:23:26:92:70:af:b1:
ff:b7:73:2c:02:52:ee:14:54:55:9a:b4:e0:51:78:
dc:ee:33:9d:31:ec:e8:3a:17:0b:45:f6:7f:59:fb:
5e:64:c8:05:4e:2b:7c:6d:58:a4:99:e7:36:7e:13:
39:e6:df:b5:73:59:23:63:bc:b2:bb:cc:94:71:d3:
90:c7:63:df:68:81:8b:e3:03:11:41:18:d8:a0:5e:
12:96:ce:82:7b:aa:17:99:e7:0d:9b:2d:dd:cb:35:
56:80:d5:ca:b6:e1:57:cb:40:44:ee:c8:29:35:6b:
03:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:30:87:28:03:38:C5:52:0E:3F:B4:D5:43:EF:A9:DF:B1:BF:E4:D0
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GDCHKAM4xVIOP7TVQ--p37G_5NA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:6e:98:e8:86:41:e6:44:5b:90:24:1f:86:ec:ef:f0:9b:e5:
44:8e:89:e5:a3:e4:18:06:21:d5:91:c5:e7:5a:5e:82:6a:4e:
30:21:a9:3e:75:06:ba:f7:a9:7f:00:cd:66:df:34:e7:3e:db:
7e:f6:46:88:1a:05:28:8f:6d:cd:1b:c2:41:0a:aa:fc:20:bd:
16:08:31:dc:01:12:a4:7a:09:38:a2:85:a6:6e:b9:00:01:28:
05:16:cb:a3:55:4f:ee:9e:fa:a0:8a:48:7a:81:78:ad:81:1e:
ca:98:3d:26:2d:82:2d:55:89:90:76:40:65:ed:40:ba:eb:05:
c0:e7:7e:d4:26:5a:09:a9:4a:39:bc:e9:5f:33:6c:f1:73:c5:
1e:68:f3:e8:bd:e5:25:0e:5f:28:18:78:94:08:97:5f:20:f8:
2e:71:06:83:ac:6e:30:37:96:28:7e:38:92:e1:4e:0b:3f:e4:
30:0a:e9:ea:8b:a7:a9:0a:35:22:bd:3d:92:89:63:b7:e1:1c:
b4:cf:82:0e:3e:55:5a:bf:e0:5f:cd:1e:5a:f9:6d:d8:3a:bd:
8b:8e:7f:05:29:f4:46:eb:d8:b5:a8:5b:0c:2e:ed:4e:cd:b9:
ce:79:ed:c7:c6:0e:d8:05:39:aa:de:0b:20:8a:b8:88:b6:de:
0c:40:07:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org