Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/PvDwzXuzc4dfXx6TGcte4b1lhRc.roa
File: PvDwzXuzc4dfXx6TGcte4b1lhRc.roa (raw, json)
Hash identifier: V/zV2btexYLyjNf8DALgfKQ7A9TDbb/UfY7b6nUORI0=
Subject key identifier: 3E:F0:F0:CD:7B:B3:73:87:5F:5F:1E:93:19:CB:5E:E1:BD:65:85:17
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 03C4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/PvDwzXuzc4dfXx6TGcte4b1lhRc.roa
Signing time: Sun 26 May 2024 07:55:03 +0000
ROA not before: Sun 26 May 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 964 (0x3c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 26 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3EF0F0CD7BB373875F5F1E9319CB5EE1BD658517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fb:87:b0:2b:a8:e3:02:aa:a3:01:f1:df:1b:
a6:8d:ac:54:a5:1e:36:15:4c:57:e0:89:3e:ff:5f:
f4:38:af:d7:81:94:5e:f7:5b:4a:35:cb:65:bb:23:
12:c8:ef:f8:54:a5:cb:57:c9:70:19:e1:d1:9b:ea:
a5:78:e5:21:54:cd:50:34:63:b3:e2:f2:87:e6:31:
82:af:df:8f:63:02:09:c5:6c:e8:77:f7:bf:46:fc:
aa:4c:94:e5:c5:9e:aa:1d:a8:ee:5e:bb:9e:8c:da:
3d:d2:d8:dc:13:ab:78:ae:0b:59:e6:56:4a:6b:c7:
43:c2:6d:b7:40:78:d8:c4:75:3b:b9:fe:e0:aa:d6:
78:82:1a:e9:0a:f8:06:fc:de:04:b4:3c:99:04:81:
e3:ef:20:b4:72:ee:47:03:21:ae:d4:c4:9e:a0:7d:
11:5b:27:6f:cc:25:2f:e7:b1:70:0a:29:12:2d:85:
37:24:28:07:56:b4:62:8f:84:79:42:4a:0b:7b:95:
82:d9:82:9e:1c:02:1e:6f:b6:ef:05:d8:ba:4b:4d:
cd:fa:58:80:2e:13:b8:6e:4f:59:3d:4e:63:f7:e6:
e5:1f:cf:f7:00:a7:de:26:67:b9:e7:08:2d:11:29:
38:7f:91:f2:e6:36:84:4d:07:cc:30:70:ec:ae:e7:
18:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F0:F0:CD:7B:B3:73:87:5F:5F:1E:93:19:CB:5E:E1:BD:65:85:17
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/PvDwzXuzc4dfXx6TGcte4b1lhRc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
87:5c:72:4a:78:e3:c4:e7:73:b2:19:9b:42:c1:0d:ae:9c:b6:
bb:ca:12:f8:06:a9:ee:55:6c:5d:a4:f6:65:a3:c1:88:6c:8f:
a1:31:fb:bc:15:47:0b:47:fe:f5:59:3a:dc:b3:68:f5:a2:96:
f1:37:0e:5d:e6:de:ef:c1:ff:8a:5e:aa:ae:b0:ad:83:68:70:
8d:1b:37:b9:ae:60:97:e1:aa:35:1c:39:71:37:7d:a8:43:f1:
86:81:d7:d4:fd:2e:10:88:09:73:97:56:fc:21:93:21:19:82:
fc:0a:f8:45:79:2b:75:4a:c7:b3:56:18:ca:11:c0:a9:90:fc:
ce:cc:f7:d0:91:1d:61:53:63:1c:b7:a7:e1:14:1e:92:4b:be:
7d:71:c9:ea:da:95:a9:7b:be:6b:e1:1c:89:e5:dd:b8:e9:22:
09:cc:d2:35:2f:15:25:dc:dc:58:e0:6d:02:ac:a4:8b:4b:e0:
da:b5:83:7d:14:ce:ac:d8:ef:e6:b5:ee:3b:34:4d:1d:cd:d8:
3b:ca:fe:0b:d5:47:4a:4b:28:cd:a3:5a:4d:3a:38:fa:0b:93:
53:59:39:fc:e0:f3:a5:ed:04:69:5b:36:76:da:26:73:f3:0a:
69:48:ca:43:8f:ff:3f:cb:0c:10:e9:d4:9c:95:83:d0:51:b5:
5a:e3:e2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 17:36:13 2024 by rpki-client on console-ams.rpki-client.org