Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/LSUIG0pCGEpKPoEMYHyMGksKmg8.roa
File: LSUIG0pCGEpKPoEMYHyMGksKmg8.roa (raw, json)
Hash identifier: L4OCKJiaze8u44yIWielUyE1viEw2R8PrpAi8Tc8ONA=
Subject key identifier: 2D:25:08:1B:4A:42:18:4A:4A:3E:81:0C:60:7C:8C:1A:4B:0A:9A:0F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 049F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LSUIG0pCGEpKPoEMYHyMGksKmg8.roa
Signing time: Wed 19 Jun 2024 15:55:03 +0000
ROA not before: Wed 19 Jun 2024 15:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1183 (0x49f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 19 15:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2D25081B4A42184A4A3E810C607C8C1A4B0A9A0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fd:67:c0:71:af:6d:c3:bd:91:a2:90:53:d2:
60:53:74:e9:ac:d1:19:42:96:4a:f3:3b:f4:aa:f3:
f1:a3:e0:05:9f:13:69:a7:fe:ae:8a:f7:c2:3e:64:
02:8d:cf:3e:b8:a9:80:05:06:16:cf:d5:c5:9e:39:
da:aa:af:bd:4c:89:53:93:25:92:93:f7:50:10:bf:
77:17:71:7b:79:0e:c5:3d:16:f8:fb:15:e2:19:f7:
48:fa:28:cb:d9:2f:40:17:89:5b:7b:f3:cf:b2:61:
f4:dd:b0:7e:ee:6b:d7:09:2b:f8:20:58:90:1e:8a:
47:8f:84:60:f1:19:0f:2b:fa:91:35:b7:fc:67:23:
e1:e1:fc:9d:7c:22:ba:6b:25:55:fb:e3:94:84:d3:
09:b5:2d:53:64:00:b9:75:39:5a:dc:0d:ac:23:41:
35:01:fe:57:e6:15:e5:7d:d9:63:ac:87:57:41:da:
cd:b2:fa:c9:43:27:94:55:ef:87:ad:27:c1:41:44:
b5:28:d4:96:a5:56:ba:18:72:25:e2:e1:7e:b4:cf:
c0:ab:5f:dd:5b:3a:75:a3:e6:87:3e:46:35:91:b7:
e3:07:ff:dd:0f:a0:2d:ee:dd:d5:b7:c9:ff:a7:bf:
c2:d0:98:e8:30:1a:af:ec:5d:d6:d4:d5:fa:04:df:
be:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:25:08:1B:4A:42:18:4A:4A:3E:81:0C:60:7C:8C:1A:4B:0A:9A:0F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LSUIG0pCGEpKPoEMYHyMGksKmg8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
39:75:24:ee:99:1d:8a:46:18:f7:90:a4:df:88:0b:41:9c:e9:
74:66:94:34:5c:1a:9b:6a:57:b4:9c:59:bb:70:66:fa:95:b4:
20:ab:d3:8d:65:f6:b3:6a:ce:bc:09:11:1f:bd:f0:c8:4e:5e:
f2:5b:8a:45:b2:66:21:1b:0b:f4:06:e9:0e:25:8f:2e:1b:f5:
da:1b:12:20:98:3e:eb:aa:da:6a:88:ef:0b:31:d6:ff:e1:52:
d0:ab:26:40:8c:d7:dc:01:ef:85:9d:b2:04:0a:10:1e:8a:15:
86:80:f5:cd:43:e8:b7:33:0a:be:cd:5c:a6:a8:94:63:f6:36:
2a:34:26:d2:a7:ae:af:8c:47:67:2e:c1:16:93:8e:e1:32:f8:
3d:fb:09:eb:eb:e9:69:93:fe:8e:fb:e5:ce:3e:bd:7f:d6:8e:
76:bc:5a:29:ef:95:84:eb:cb:18:5d:a5:94:6d:df:7a:15:9f:
58:54:16:03:73:48:e8:2a:06:a2:7b:65:ae:52:41:6f:bd:46:
b0:72:b1:4f:d4:f5:e4:b3:09:eb:70:08:15:18:33:ff:71:46:
1e:24:8c:a4:70:03:c0:74:51:17:dd:49:8a:ec:87:a8:b7:6a:
12:53:6f:65:b1:45:03:0a:91:8b:52:8b:86:77:dd:4a:80:c8:
43:41:83:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 23:17:47 2024 by rpki-client on console-ams.rpki-client.org