Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/SBVm8f1C3lvytzIiCQhpSmUblHQ.roa
File: SBVm8f1C3lvytzIiCQhpSmUblHQ.roa (raw, json)
Hash identifier: o1Et3GHxYGtHYWKenYVCfO12acLAJPFeZC8D78BULNM=
Subject key identifier: 48:15:66:F1:FD:42:DE:5B:F2:B7:32:22:09:08:69:4A:65:1B:94:74
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 022F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/SBVm8f1C3lvytzIiCQhpSmUblHQ.roa
Signing time: Thu 11 Apr 2024 07:55:04 +0000
ROA not before: Thu 11 Apr 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 559 (0x22f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 11 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=481566F1FD42DE5BF2B732220908694A651B9474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ef:57:99:1e:ca:a5:47:0c:0d:70:0f:44:de:
12:c6:4b:22:30:34:48:2b:09:7f:31:ec:12:bb:3c:
07:b3:6f:17:ca:7f:17:5f:a1:c9:8f:34:0a:df:14:
fd:12:93:f9:b9:72:9a:1d:2c:ff:6c:9c:3a:30:54:
7f:d5:00:4e:f0:af:f9:82:cc:13:9c:15:ee:f7:3f:
c1:00:df:96:d7:2e:f5:5a:bc:9f:ae:18:60:40:15:
3a:ea:e2:bb:f9:b4:14:6d:8a:23:fe:cd:24:79:6a:
0b:95:42:da:a7:32:83:5c:da:e0:14:c6:c2:67:8a:
31:8e:6c:f4:fe:99:13:6e:af:ce:f0:91:d3:23:5f:
8d:e1:d1:2f:84:af:ea:a5:de:84:00:5e:fa:a5:04:
3c:97:86:22:7c:70:1b:78:e6:e7:ca:ca:8e:ab:0c:
c5:fb:eb:09:10:28:33:be:dc:47:4f:34:c9:51:35:
12:95:a2:81:54:9d:10:7c:20:e8:6c:a2:43:c9:d2:
8a:0c:6f:22:91:e7:68:ad:72:38:70:9f:bb:82:be:
9e:d4:ef:b2:ba:ea:06:ad:01:47:a6:e3:1d:c7:ad:
c8:8e:cd:4d:47:56:29:85:51:9a:1e:7f:60:2b:e8:
26:11:39:d9:02:34:34:d6:2a:e4:c8:1c:58:46:d7:
79:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:15:66:F1:FD:42:DE:5B:F2:B7:32:22:09:08:69:4A:65:1B:94:74
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/SBVm8f1C3lvytzIiCQhpSmUblHQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:e6:7f:9c:5c:b1:52:f8:50:08:10:4b:8f:84:07:49:e0:0f:
b1:3d:ee:50:2c:bb:d5:6d:fe:d0:51:c3:69:bc:45:36:b1:23:
48:16:81:86:4b:c3:0a:91:7b:e0:03:b5:b6:0e:6e:31:15:c7:
17:6c:70:0f:cb:d3:37:2b:0f:59:bf:7e:4b:21:b1:0f:5e:ce:
27:93:38:fd:77:89:d2:fb:06:5e:e0:ef:e0:e9:e9:bd:02:d8:
ce:28:bf:96:aa:0a:36:fd:49:f8:58:a4:3b:77:56:70:af:7e:
0a:f0:cf:b5:1d:99:88:7a:88:a8:49:80:8a:d8:52:5e:07:f0:
da:7e:c3:c3:db:4d:7d:17:ee:ca:3e:0c:17:25:e5:18:1d:09:
7d:52:65:69:63:af:60:ea:a1:36:40:5c:c6:d2:01:52:c1:b1:
c3:9b:08:04:41:c4:17:70:04:d3:97:5c:aa:f5:69:4d:33:4d:
65:8c:ec:f5:bb:3d:b8:96:ea:33:4c:d1:89:fb:95:47:77:f7:
7b:84:78:85:9a:3b:db:b2:b4:96:02:bd:9b:8b:ed:f7:cc:9d:
5f:3a:4f:2c:73:09:b0:c1:58:30:62:59:7d:63:44:17:63:59:
ba:f0:25:b5:1b:f1:56:75:0b:82:94:e0:6f:1a:08:fd:ef:9a:
b4:08:da:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org