Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/RFNVl26qIAeLKPauDBwqcj23a34.roa
File: RFNVl26qIAeLKPauDBwqcj23a34.roa (raw, json)
Hash identifier: qGIjYUyU42yt48UTJcdNUQaAcCdltikeZNxUwhVvw/s=
Subject key identifier: 44:53:55:97:6E:AA:20:07:8B:28:F6:AE:0C:1C:2A:72:3D:B7:6B:7E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 021D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RFNVl26qIAeLKPauDBwqcj23a34.roa
Signing time: Tue 09 Apr 2024 07:55:04 +0000
ROA not before: Tue 09 Apr 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 541 (0x21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 9 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=445355976EAA20078B28F6AE0C1C2A723DB76B7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b7:88:b1:fc:ef:4e:66:e1:2d:89:94:2f:94:
5a:1a:c6:34:7e:25:6b:01:e9:e9:7e:89:51:fe:37:
3e:1e:1f:3b:fb:76:01:2b:61:64:e0:70:40:99:e0:
60:98:3b:db:d2:d7:92:a9:a6:b8:b8:3c:f3:e2:f1:
da:e9:b8:1c:dc:52:fc:47:52:9d:be:42:48:22:36:
34:09:b2:9b:12:d3:31:60:fc:e7:8c:17:a4:3c:ae:
1c:f2:ae:9b:55:2c:10:95:36:16:3c:10:38:a5:a3:
99:58:c3:74:13:37:db:10:22:df:c9:35:9c:1c:4a:
40:fc:cf:1a:6e:ba:78:6d:41:89:53:85:aa:47:8d:
20:1e:38:c2:87:04:f7:43:8f:bb:16:0b:e5:a0:71:
d7:82:d5:1a:c3:bd:57:b8:04:8d:e3:0a:3d:c9:a3:
38:21:68:11:1a:d1:b3:a9:04:e6:88:4c:f2:7e:57:
26:14:96:86:ca:ed:6d:65:80:c2:01:1c:d0:2c:ad:
6b:ef:e5:ab:27:4d:e1:9e:9c:7f:6d:6f:9c:7b:8f:
f1:1b:52:ef:10:9c:ff:19:e6:04:96:ec:33:9d:56:
bd:ab:cd:ce:bf:61:1c:9b:82:b4:3f:49:53:fd:fb:
cf:83:4e:f9:2b:5f:13:c8:b3:32:42:02:c0:46:e2:
bc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:53:55:97:6E:AA:20:07:8B:28:F6:AE:0C:1C:2A:72:3D:B7:6B:7E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RFNVl26qIAeLKPauDBwqcj23a34.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:58:aa:2b:6c:9a:1c:21:cf:63:44:b0:f0:da:c8:9e:54:fd:
5f:36:c2:47:91:be:a9:fd:81:72:d4:68:61:82:b0:f9:93:c9:
9f:44:52:e4:63:c1:22:d6:0b:54:de:57:36:45:0a:53:24:b7:
dd:62:e5:6c:2c:c4:22:dd:33:7b:72:72:71:5c:81:f6:ab:11:
6d:6e:40:e1:cd:56:87:49:68:85:aa:5b:28:7a:88:78:80:ee:
f7:64:56:87:a4:f8:46:8e:cd:ca:cf:89:7b:10:97:36:08:9b:
a4:76:92:88:f8:1d:17:9f:29:1e:2f:90:79:3f:c6:73:d2:63:
8f:9c:10:7b:b0:cb:43:4f:d9:13:48:7c:9c:cc:1b:27:f8:db:
e9:3d:8b:b2:03:95:45:29:dd:69:00:80:f2:5f:0f:30:53:6d:
1f:94:50:87:2a:8c:9b:78:da:45:80:4e:14:4a:15:34:aa:91:
4c:b2:4e:fc:1c:57:18:ad:84:83:c7:bf:47:fd:f8:3c:3b:a0:
c9:d3:9d:cc:10:02:fc:09:c7:c8:ea:16:4d:cb:3c:24:2e:69:
59:ab:20:a1:bb:24:3c:9e:d9:e9:d2:80:7c:9f:0b:15:c3:d9:
46:97:51:1b:85:5e:d8:6a:82:03:4a:b3:70:f0:b8:95:69:05:
c1:48:e9:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org