Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/N3vSz5V0CPYAvh-1VR0avF9RGQY.roa
File: N3vSz5V0CPYAvh-1VR0avF9RGQY.roa (raw, json)
Hash identifier: Y+q+LAK7Q1Ya1pces95WSPj+Wfz4FOiqZPykC4/I69E=
Subject key identifier: 37:7B:D2:CF:95:74:08:F6:00:BE:1F:B5:55:1D:1A:BC:5F:51:19:06
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 024D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/N3vSz5V0CPYAvh-1VR0avF9RGQY.roa
Signing time: Sun 14 Apr 2024 15:55:04 +0000
ROA not before: Sun 14 Apr 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 589 (0x24d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 14 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=377BD2CF957408F600BE1FB5551D1ABC5F511906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fc:3b:1a:61:e3:cd:78:e4:4f:ac:95:aa:f4:
0b:f1:67:50:ab:1e:82:2d:20:a1:db:f1:a9:ff:df:
80:80:30:22:68:98:c3:19:e0:2d:3b:88:67:69:64:
eb:05:7c:01:88:a4:7e:3e:7b:b6:66:04:d6:07:a5:
c7:4c:c4:6e:7d:ce:75:71:76:a7:20:f8:1f:13:58:
36:22:ca:74:43:d9:37:6a:2f:0d:b7:1c:dd:53:15:
77:aa:dd:27:0b:e6:61:a8:c5:8f:64:7c:aa:ce:ff:
5a:6d:a2:06:6f:b0:6c:2b:cf:16:3c:ce:17:fa:ac:
28:5b:12:54:6c:3f:77:a9:63:93:0d:4e:ec:94:eb:
fa:84:7d:84:ed:c8:3e:68:13:a6:ed:33:a3:47:93:
5b:93:f0:a7:b5:88:e4:f6:8f:42:61:96:26:4c:0d:
e9:cc:7e:a0:14:0e:0d:49:0d:a0:15:25:1c:f6:7e:
40:fc:a3:69:8f:9e:8d:3c:0b:f2:06:3f:01:1c:ed:
c6:f3:63:d8:a0:3a:e0:30:96:4e:16:42:81:d1:47:
ce:94:7f:bb:ce:63:6b:5d:bc:23:ed:94:3b:f0:dd:
d1:ab:62:19:da:b8:94:90:01:04:2a:ea:13:33:fe:
e5:cb:61:e7:22:0c:50:29:f9:e3:57:35:48:7e:28:
82:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:7B:D2:CF:95:74:08:F6:00:BE:1F:B5:55:1D:1A:BC:5F:51:19:06
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/N3vSz5V0CPYAvh-1VR0avF9RGQY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:04:ae:8f:ed:0c:68:d1:45:5e:eb:30:cf:f9:79:69:21:b6:
96:28:c9:8c:4f:26:fb:60:14:29:fb:07:ff:a9:ce:12:04:76:
6c:3e:cd:d0:6c:c6:53:5d:32:11:09:aa:e3:da:c7:9a:3a:50:
09:d7:e9:9c:27:6f:db:32:ed:ff:87:07:49:66:1d:67:c7:00:
c6:43:1e:41:84:e8:a0:aa:38:53:45:9b:4b:79:36:f9:1d:78:
7a:a2:6b:b0:89:d4:f2:e5:3a:12:33:84:e7:9f:ce:5e:5a:fb:
eb:9b:6d:60:d4:26:0c:b8:d4:73:c6:79:8a:80:45:22:9a:00:
01:7f:fa:cf:28:8f:8c:db:10:c5:05:74:42:3c:89:78:ea:7d:
c8:59:5d:92:3b:10:21:c3:b4:7f:09:c3:89:6e:b8:51:f5:87:
9a:34:dd:ed:41:4e:b6:03:15:ca:84:c8:2c:5b:85:d9:c9:b4:
cb:7e:2d:ec:1b:f5:b1:0a:ad:c9:09:81:63:bc:c3:50:ad:5e:
da:89:14:6e:8e:25:3c:cd:1a:3b:c5:67:9b:a0:c3:d9:41:e6:
18:b4:21:ae:d3:8a:f1:00:73:e7:01:41:8c:19:8c:81:bd:06:
33:06:e3:5f:42:7d:64:7a:1d:bc:d2:34:dd:10:99:f2:3c:f4:
d6:e4:b1:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org