Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/IOwsOl5MubGIggXmCxAwiCqY2U0.roa
File: IOwsOl5MubGIggXmCxAwiCqY2U0.roa (raw, json)
Hash identifier: jgniFmtaoR+4GldgxH4c4FsTp8DWzYce46Vp7LuGJ/U=
Subject key identifier: 20:EC:2C:3A:5E:4C:B9:B1:88:82:05:E6:0B:10:30:88:2A:98:D9:4D
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 067F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/IOwsOl5MubGIggXmCxAwiCqY2U0.roa
Signing time: Sun 11 Aug 2024 23:55:03 +0000
ROA not before: Sun 11 Aug 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1663 (0x67f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 11 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20EC2C3A5E4CB9B1888205E60B1030882A98D94D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b2:92:5a:7f:4a:b7:4f:60:89:f3:b0:39:a0:
99:64:cd:64:3d:00:cd:db:fe:04:2e:fe:8f:c3:3f:
88:b0:4a:70:bb:6e:0c:e5:5c:05:89:de:05:68:fe:
19:c8:5d:67:81:7e:85:96:7d:61:63:56:97:ac:f7:
68:c0:8d:e2:d2:f2:d8:bc:6a:fb:40:a6:51:17:86:
09:54:ba:ae:85:c7:f6:22:20:f7:e2:08:29:1f:3e:
60:93:43:35:a7:d1:62:a1:99:22:5f:bf:92:06:fc:
73:51:1f:46:76:27:15:af:ec:dc:3e:ee:b6:c5:74:
c3:bb:5c:bd:1a:7f:38:16:cc:32:c6:b6:34:af:84:
57:b7:66:9f:9c:ee:b1:c6:ea:87:db:24:f9:42:b9:
47:e4:b8:c9:c7:1c:bd:4e:c3:92:6f:58:a0:c5:f1:
6d:27:62:3f:65:ac:62:71:d9:e1:24:f8:1f:97:ca:
68:c2:22:ab:52:e3:e0:1b:d6:99:2c:f6:13:ed:8d:
3c:58:ec:0e:d9:6e:df:6d:80:38:9a:0a:17:90:31:
b0:cd:8b:5e:c7:9c:aa:10:91:53:2d:d4:49:0f:4d:
95:5f:5d:0f:66:45:78:35:1c:63:f8:4b:12:e7:a5:
96:cb:8f:cd:1f:78:ca:5b:9c:0b:0e:79:fe:3e:6b:
25:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:EC:2C:3A:5E:4C:B9:B1:88:82:05:E6:0B:10:30:88:2A:98:D9:4D
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/IOwsOl5MubGIggXmCxAwiCqY2U0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:e6:f2:2b:6c:18:7b:0b:a8:e7:5d:a0:2a:da:63:56:b3:63:
ae:2f:4f:43:20:99:5e:39:11:c1:c1:5d:bf:7d:b6:1a:a3:f7:
fe:e1:16:d3:de:fe:08:0c:a0:29:dd:b7:39:4f:d5:0b:b7:ec:
f7:c7:7e:99:7e:29:d0:5a:5f:5e:17:f3:e1:8d:92:90:32:3f:
50:33:ec:3d:f5:e9:3c:be:4f:46:6f:08:57:c2:c5:e5:a5:28:
5c:22:45:16:57:74:6d:10:2a:04:d5:52:f5:78:b1:b8:71:59:
c3:e2:b0:ec:66:6b:89:53:e8:e5:e9:b7:4b:02:26:d0:6e:0d:
b9:c4:27:3f:ac:d0:06:1b:33:32:e5:99:dd:4d:84:29:87:4d:
b8:77:0c:37:42:57:39:32:aa:74:eb:26:41:ae:4b:43:f4:7b:
17:6b:7e:ea:b5:a9:9d:64:7f:00:8a:6a:77:8a:bf:2f:8d:f8:
04:c0:4e:d9:2d:64:4a:0a:71:75:c9:da:56:30:f5:b5:5f:5f:
80:1b:c0:3b:46:49:51:d5:5c:bd:88:72:06:3b:00:26:ea:37:
f4:3e:e3:64:15:5d:cf:8d:e5:61:a9:0b:82:fc:4a:21:66:ae:
4e:4c:5f:29:c5:c4:c9:78:fa:ad:d3:1c:6d:28:99:73:d2:e3:
b8:9f:fb:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 05:43:53 2024 by rpki-client on console-fra.rpki-client.org