Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/MVdV2zHXSFnvSu-sk51x8pA27rQ.roa
File: MVdV2zHXSFnvSu-sk51x8pA27rQ.roa (raw, json)
Hash identifier: P6YpGFtv1HjsowdJ2Y2OKaZl9ALRgA+zapz4kWd1rzU=
Subject key identifier: 31:57:55:DB:31:D7:48:59:EF:4A:EF:AC:93:9D:71:F2:90:36:EE:B4
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0944
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MVdV2zHXSFnvSu-sk51x8pA27rQ.roa
Signing time: Tue 29 Oct 2024 15:55:03 +0000
ROA not before: Tue 29 Oct 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2372 (0x944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 29 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=315755DB31D74859EF4AEFAC939D71F29036EEB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:85:20:33:9f:87:72:e0:3f:d7:e3:2e:70:
77:b3:c2:ca:67:33:8d:1e:47:67:30:32:0f:08:c5:
c9:13:4f:b6:3a:fe:4f:c5:da:3d:32:34:fb:06:e1:
f5:e1:35:8f:af:b2:8d:cc:3d:56:ac:db:08:ce:9f:
41:4a:77:d7:25:4d:70:10:56:ff:85:98:42:53:ba:
23:cd:58:a3:66:f3:1e:88:a5:45:96:5c:dc:53:d0:
ad:46:f9:ee:46:07:cc:fb:af:28:66:10:1c:bc:da:
8b:ab:f2:9b:11:a7:7b:2b:a5:6a:33:67:b4:35:16:
42:ac:af:65:71:1f:23:00:5c:8b:8b:d5:69:9c:d9:
75:4c:33:79:7f:0d:fc:23:ad:d9:04:e2:e5:df:a2:
b5:ce:11:57:b1:21:c2:0a:71:4e:13:99:43:73:51:
ce:51:98:2e:c2:85:87:2e:2e:b5:42:56:7c:9e:ad:
2b:62:53:07:72:8e:a8:63:c3:b5:62:c4:cd:98:9c:
2c:4f:7e:7f:67:3b:06:e8:3a:11:01:ae:75:25:69:
c6:92:a2:f9:00:67:e9:ef:26:b5:3c:f0:c6:cd:f0:
88:99:5e:32:89:f2:f7:da:76:4b:df:a9:36:f5:03:
74:22:61:fd:e3:9d:6f:33:a6:44:59:ce:f2:7d:75:
a1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:57:55:DB:31:D7:48:59:EF:4A:EF:AC:93:9D:71:F2:90:36:EE:B4
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/MVdV2zHXSFnvSu-sk51x8pA27rQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:01:54:b2:c3:50:a8:5a:ff:52:5d:44:dc:db:53:29:e8:e9:
5e:3f:04:6f:62:dc:ce:66:81:c9:84:9b:cd:e2:e3:fc:63:25:
e7:71:eb:1e:5f:31:06:f5:fa:54:51:13:c3:cd:73:29:6d:62:
d8:cb:f2:e5:bb:b9:b7:dd:fd:39:97:86:2c:ab:fd:6f:cd:60:
b6:5d:b8:5c:fc:4d:85:59:7b:af:40:91:64:3e:03:5a:3c:46:
f4:dd:85:c6:b8:ef:08:a2:25:6b:a1:c2:f9:f2:82:52:92:31:
3d:c1:5c:30:73:1a:17:d0:26:84:e2:f1:d3:58:d5:9e:07:e1:
e6:8f:4e:11:bf:37:fc:80:6d:a9:70:6b:e7:17:b8:4d:3e:31:
e9:9c:e8:ba:98:67:c1:7d:9d:66:8f:c1:8c:67:fd:0b:00:6b:
59:57:ac:31:89:28:aa:cb:79:71:e9:e5:3e:02:2a:71:f9:2c:
24:23:62:a9:cd:83:52:d7:9e:96:75:27:b0:08:1e:9e:27:ff:
c5:60:f0:9b:05:ce:25:a3:3c:29:2f:c7:72:28:98:ad:e3:ad:
dc:b7:1c:cb:05:d8:82:70:8f:f1:d2:ee:df:d4:1c:28:94:ec:
cd:9d:e4:13:33:f2:3b:7a:c5:5f:60:db:1e:a8:18:4d:47:32:
d8:e0:e9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 22:37:35 2024 by rpki-client on console-ams.rpki-client.org