Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Of3trgnbQfeR8F4QY3CzwG-BjHA.roa
File: Of3trgnbQfeR8F4QY3CzwG-BjHA.roa (raw, json)
Hash identifier: KlQFzIkW/GxQe9rFnJEPyzN2MIna65DnArZ0dcAhBug=
Subject key identifier: 39:FD:ED:AE:09:DB:41:F7:91:F0:5E:10:63:70:B3:C0:6F:81:8C:70
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0559
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Of3trgnbQfeR8F4QY3CzwG-BjHA.roa
Signing time: Wed 10 Jul 2024 07:55:03 +0000
ROA not before: Wed 10 Jul 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1369 (0x559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 10 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39FDEDAE09DB41F791F05E106370B3C06F818C70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e0:01:c9:bc:30:41:7e:36:f7:90:76:66:0e:
eb:92:8a:67:66:a8:90:2a:f0:cd:25:ff:50:9c:d5:
05:46:ee:41:93:f5:61:00:91:53:76:9c:ce:80:d9:
63:38:f6:ca:26:76:24:8d:40:93:c4:f1:2d:e3:09:
05:35:0d:de:e5:8c:38:27:81:43:af:85:55:76:e5:
fb:ad:a2:e4:32:23:ff:0a:e3:ac:05:02:d5:61:40:
45:20:15:1c:e2:11:9f:2d:b6:13:8d:91:13:76:da:
a2:fb:29:87:e8:dd:e1:0d:bc:7c:15:e2:61:fa:47:
14:2a:20:0a:c0:f9:08:71:55:cb:2b:3f:42:67:0a:
72:13:f2:df:9a:5e:4f:30:3e:66:92:b1:eb:46:b1:
ff:7d:92:48:4a:9e:da:7a:b4:e0:4c:11:bc:56:3f:
c9:64:0a:f1:25:6a:fd:01:e2:32:21:06:cd:8a:e9:
62:cb:26:6a:30:be:46:bb:4d:60:e9:31:58:c6:ed:
c0:fd:f2:20:91:4b:13:76:00:cb:d7:7e:23:49:5f:
56:7d:24:13:bc:78:8e:3a:a9:1b:e0:d0:4b:ec:c7:
6a:1a:e4:d3:13:45:3a:c5:b6:c5:d1:6d:26:39:fe:
48:b1:28:42:eb:e3:14:70:62:0b:8e:67:30:74:ba:
80:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FD:ED:AE:09:DB:41:F7:91:F0:5E:10:63:70:B3:C0:6F:81:8C:70
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Of3trgnbQfeR8F4QY3CzwG-BjHA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
67:2e:2d:8c:9b:3a:dc:84:03:34:8f:d9:80:72:eb:86:4e:ca:
ca:d7:73:3d:9c:25:86:9e:11:3b:3d:de:e0:1b:dc:79:cc:d9:
ab:22:ce:34:45:1f:47:73:b5:6e:47:f9:e1:20:87:49:0f:46:
de:76:32:a6:64:00:8a:b4:02:01:74:7d:c3:d3:a7:a4:65:e8:
ba:05:90:4f:be:67:b8:98:9b:ad:04:ad:80:a1:fb:cc:38:d4:
b6:6d:bd:f9:18:59:32:61:65:28:fa:34:0a:67:96:70:f5:3c:
48:59:75:f5:84:e6:94:1e:16:51:ef:af:a9:e2:61:31:71:b2:
90:03:a7:88:b5:10:23:ba:5d:b6:88:81:ef:0b:5a:e9:5e:7f:
82:25:06:90:63:80:a0:46:91:b2:eb:35:6e:9e:c8:27:a1:5a:
80:75:32:76:d3:28:de:46:f9:c1:3c:fb:ed:f0:64:68:47:35:
72:a3:d7:62:21:ba:3a:94:15:1c:04:b8:bf:4d:7e:7f:9c:1e:
ea:76:84:b1:93:f9:16:64:6b:15:3d:c7:e0:65:4d:e1:29:c0:
11:e4:12:f9:62:26:71:eb:61:d3:64:d3:89:e4:01:ff:c6:94:
cf:5f:f3:fa:c9:66:e3:52:3d:c4:88:50:fe:87:38:61:f2:5a:
b0:12:3d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 14:24:15 2024 by rpki-client on console-ams.rpki-client.org