Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/OZTWrq-ClJOTs_13qYfhOHUG8cc.roa
File: OZTWrq-ClJOTs_13qYfhOHUG8cc.roa (raw, json)
Hash identifier: CRbVAD3vkot9vmG+bgttGRD222d70KEXHhjNth+V8rE=
Subject key identifier: 39:94:D6:AE:AF:82:94:93:93:B3:FD:77:A9:87:E1:38:75:06:F1:C7
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 07B4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/OZTWrq-ClJOTs_13qYfhOHUG8cc.roa
Signing time: Sun 15 Sep 2024 07:55:03 +0000
ROA not before: Sun 15 Sep 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Sep 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1972 (0x7b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 15 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3994D6AEAF82949393B3FD77A987E1387506F1C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cf:6f:48:8c:4b:4b:0c:5c:f2:84:81:28:63:
a2:07:f9:1c:24:36:5c:2b:53:b8:03:f6:13:2a:71:
f5:6c:12:97:ed:a9:d3:06:6d:8d:ec:c6:31:00:4a:
76:51:78:8c:af:a2:12:77:f1:8e:c0:0f:a9:f0:2b:
b1:58:d7:d6:ca:86:2d:dc:39:9e:fd:3a:d6:46:cb:
f4:ed:7b:78:0b:12:19:a0:fd:5e:87:f3:b9:d2:5d:
e8:89:30:fb:d4:c0:f2:bb:67:25:ac:a3:97:eb:8f:
5b:22:bf:40:4b:de:90:71:aa:36:cb:b8:fc:96:1b:
c0:b8:84:d7:a0:6d:c5:6d:a0:23:91:e0:0e:62:51:
1a:34:b3:89:5a:44:26:6c:65:26:4b:1c:dc:0d:a1:
3c:38:56:ff:95:17:54:5e:e4:0a:b5:ce:df:3a:39:
60:5b:ce:67:57:ff:73:9d:c6:bc:13:6c:dd:e0:57:
ed:e3:11:75:08:03:10:3f:fe:13:fd:2e:29:2f:8f:
70:65:36:fb:17:96:c9:a3:d4:d5:cb:de:1d:e7:9f:
f7:07:41:ec:e3:0f:67:c9:c5:ca:7b:70:30:f4:1b:
d4:e4:18:df:e3:6b:13:de:f5:19:80:33:ef:b1:12:
14:ed:85:82:7f:c3:6d:a7:72:25:a1:6e:27:c1:b7:
0b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:94:D6:AE:AF:82:94:93:93:B3:FD:77:A9:87:E1:38:75:06:F1:C7
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/OZTWrq-ClJOTs_13qYfhOHUG8cc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:e7:1e:45:c5:47:33:95:03:cc:74:81:df:a6:ef:12:b5:58:
6b:46:78:e8:5f:d7:5f:5c:02:7d:8c:d4:c9:e0:ea:d4:0e:7d:
07:5f:6d:e3:fc:c6:c3:c4:56:07:b0:54:1d:80:dd:4a:a4:d0:
a3:87:79:47:a0:2f:b0:b9:2a:6a:0a:39:5e:f4:5e:fa:e4:69:
9f:d4:b0:a0:06:dd:1b:12:03:c8:27:b1:1a:76:bf:d7:9a:05:
34:43:32:b3:ef:11:c5:b5:b0:93:4e:ee:2b:30:b6:80:31:e5:
ff:be:5e:ee:92:77:f6:25:cc:35:48:5c:43:d5:22:65:82:ba:
d1:27:d2:39:30:d6:4a:ec:25:af:22:62:c1:4c:45:e8:05:bc:
5d:af:67:17:c9:34:4e:71:f4:48:d8:42:65:35:12:5c:40:84:
54:ad:19:a8:27:83:a5:64:34:de:d8:a8:ae:01:ea:dd:f6:c3:
d1:86:62:9c:0f:a4:3e:0e:6f:52:8b:2d:c9:f1:2b:e6:a6:b3:
41:9c:3b:d7:8b:09:96:32:dd:df:cb:78:71:27:d2:56:0c:09:
c4:ef:68:17:e9:86:59:1b:7d:fa:3c:f3:14:79:fb:f6:0c:83:
fb:92:a7:09:10:c0:9b:cd:9d:cf:26:63:ba:40:16:fd:7f:2c:
51:61:76:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 15 14:15:56 2024 by rpki-client on console-fra.rpki-client.org