Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/O7keo1929ygi6t7Zexil_6XCKCg.roa
File: O7keo1929ygi6t7Zexil_6XCKCg.roa (raw, json)
Hash identifier: YBErkmV9EptOZCWsFau2x/YzHUu8nOkyjCB3qKqEQks=
Subject key identifier: 3B:B9:1E:A3:5F:76:F7:28:22:EA:DE:D9:7B:18:A5:FF:A5:C2:28:28
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04E1
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/O7keo1929ygi6t7Zexil_6XCKCg.roa
Signing time: Wed 26 Jun 2024 23:55:03 +0000
ROA not before: Wed 26 Jun 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jun 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1249 (0x4e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 26 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3BB91EA35F76F72822EADED97B18A5FFA5C22828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ff:29:4d:b5:e3:ff:de:77:dd:40:b0:fc:da:
12:d5:7b:6a:db:dc:57:81:07:da:d9:14:9f:e3:30:
74:d3:d5:09:67:72:aa:f1:1a:63:9c:ef:8b:51:5c:
d8:7c:f7:8c:de:22:7f:81:d3:8d:ea:70:61:34:56:
6e:8c:65:98:25:25:41:bc:5c:1e:d2:4b:71:48:e4:
95:a7:13:8a:05:af:c3:56:8e:43:b6:a0:83:24:84:
b0:8c:57:6b:0b:06:79:42:1a:a4:f2:1a:51:19:5c:
e3:8b:e4:0b:54:71:cf:66:3f:9b:ac:77:86:56:4b:
0b:e6:ba:fe:fe:c8:27:07:a3:49:99:94:91:9c:9c:
32:26:00:3a:1d:e2:2b:84:d8:d8:fa:c5:df:16:b9:
76:be:2c:c9:4a:76:7c:6c:87:9f:b6:b5:e5:25:71:
82:59:50:17:69:3c:c3:36:63:69:d5:5d:77:79:fd:
7f:c7:c9:b7:18:ae:0b:4e:09:f2:a9:bd:a5:9c:ca:
e5:fc:5f:b0:08:47:9f:ba:36:0b:39:c2:b0:dd:48:
fe:9d:fe:5d:a0:aa:30:f0:00:d9:89:48:8f:df:10:
14:71:e3:22:15:02:3b:17:d9:ab:c0:68:3c:59:db:
14:4b:82:92:a5:67:68:91:f5:9d:ad:31:c8:6d:a2:
5e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B9:1E:A3:5F:76:F7:28:22:EA:DE:D9:7B:18:A5:FF:A5:C2:28:28
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/O7keo1929ygi6t7Zexil_6XCKCg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:8b:55:8c:90:49:64:72:bd:00:e4:e5:c5:46:20:cb:9b:cb:
64:10:0e:1a:6f:9d:ff:ee:1d:74:f0:81:82:7c:7e:d6:d1:58:
45:31:6c:3c:a4:5c:85:b3:99:12:38:29:ac:59:be:b1:64:7e:
9d:0d:f8:8d:f2:6d:85:37:6f:ac:5a:d9:03:59:54:92:a6:8a:
ea:12:17:6c:66:a3:7e:aa:a5:43:c2:11:de:9d:32:de:d2:c4:
f0:1b:dd:5e:26:8e:b7:76:7b:81:17:f5:d9:2e:63:33:1b:9f:
53:9d:a1:17:b7:20:d4:ac:30:47:55:7b:da:52:99:52:c3:6d:
41:be:41:7b:24:90:7d:7c:bf:fb:bc:90:9d:69:b9:c7:2b:8c:
03:d2:67:da:32:ce:f1:76:d3:a5:cd:12:2a:4b:4f:ce:e0:a3:
7b:4d:4f:e6:66:da:df:9b:98:0d:20:9d:de:7c:a4:96:c5:ea:
ff:3c:0c:6f:54:0a:11:61:5e:ff:a0:3f:0e:36:21:af:c3:e5:
7a:82:5f:a5:36:fc:d2:2c:b8:bb:2d:8b:0c:98:cb:23:45:d0:
b1:be:33:86:99:5d:ab:4a:e1:03:52:7b:97:6c:62:03:35:7e:
79:7c:80:8d:25:d0:10:7d:91:84:a2:6c:06:30:9b:e3:86:1e:
d9:5d:eb:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 07:00:50 2024 by rpki-client on console-fra.rpki-client.org