Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/URHtYlvqPtN7vh-7uBcoaz2Ucyw.roa
File: URHtYlvqPtN7vh-7uBcoaz2Ucyw.roa (raw, json)
Hash identifier: UrFwogEUs27Z8tcAij+nARXEWVtqYgfrg/rLiwCH1jI=
Subject key identifier: 51:11:ED:62:5B:EA:3E:D3:7B:BE:1F:BB:B8:17:28:6B:3D:94:73:2C
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0859
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/URHtYlvqPtN7vh-7uBcoaz2Ucyw.roa
Signing time: Thu 03 Oct 2024 15:55:04 +0000
ROA not before: Thu 03 Oct 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2137 (0x859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 3 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5111ED625BEA3ED37BBE1FBBB817286B3D94732C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7d:2b:75:e2:84:d3:79:5e:68:6f:38:77:23:
16:6b:a1:c8:0b:be:17:b3:14:ca:a6:35:a5:2d:53:
06:f1:c9:9c:ab:f0:5d:f8:d0:e1:e9:b1:2b:48:2c:
14:aa:e5:05:4b:01:8b:3b:26:75:ea:af:02:50:1f:
af:3b:74:b5:c4:94:5b:03:f9:88:0f:4c:84:88:1f:
e1:ed:56:30:ac:b4:d2:d3:3e:08:44:2f:20:57:0b:
4c:be:04:1b:76:d9:7a:92:fe:45:8c:05:8c:15:95:
7d:6f:10:82:08:fe:dc:37:07:38:28:91:0a:90:40:
ec:ac:cb:ef:65:7e:7e:88:c1:6c:e3:11:96:08:6b:
aa:54:c7:21:fa:5c:ea:90:27:b4:fd:71:39:43:31:
12:7f:0a:2a:5f:de:3a:35:34:4f:f8:c6:2c:0f:66:
1c:1b:e5:de:68:6c:31:a6:4a:99:99:75:50:4a:bc:
95:46:57:c7:62:aa:1b:62:51:89:ea:e0:7e:b6:5d:
95:89:78:bb:cb:9e:f4:17:c7:a2:4a:4a:8c:8c:84:
32:91:ee:ae:35:c0:72:c8:4c:9c:b0:ae:f3:a6:0b:
29:4f:bf:7b:08:0a:b8:34:91:a2:09:42:e6:a6:93:
0d:ea:83:3e:a3:4e:a8:9c:e2:13:af:42:91:af:b8:
32:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:11:ED:62:5B:EA:3E:D3:7B:BE:1F:BB:B8:17:28:6B:3D:94:73:2C
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/URHtYlvqPtN7vh-7uBcoaz2Ucyw.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
57:01:6f:49:d8:13:29:e7:99:1e:f0:9e:dc:0f:fb:a8:8a:b6:
2b:ee:2e:fd:4e:6b:2e:a8:97:f9:80:00:9c:f2:77:0b:18:0b:
35:94:7c:c6:32:b2:22:1d:52:c3:6a:01:ef:ce:50:86:e1:57:
85:30:f9:b4:f9:b0:14:fa:20:13:61:ce:8a:b7:49:b6:4d:03:
5f:bb:b6:be:21:2d:64:86:83:b7:9d:d4:7f:56:be:94:31:d9:
d5:2a:a0:db:78:79:83:d0:93:f5:dc:5d:4f:a4:b3:73:55:2c:
7f:d7:80:06:51:f1:d5:df:01:5e:90:64:6b:92:c3:14:ca:b5:
5b:de:06:b6:03:ce:9f:1c:ad:bd:b3:36:1d:53:cd:a9:a7:3c:
bf:43:08:54:63:bc:70:4d:42:6d:b5:5d:0d:22:9f:59:e9:d2:
83:6c:bb:12:94:a8:67:e6:ce:ca:58:93:01:fa:7b:b8:89:3f:
5f:0f:04:fc:dc:e5:c0:8b:1b:89:93:bc:ac:ad:99:da:b4:02:
3f:21:45:d9:bd:2f:ce:98:cf:22:91:f7:57:f0:12:25:01:3c:
54:27:0e:60:7f:f3:95:b9:b8:96:a9:6a:35:8b:da:85:e1:0e:
a0:92:dc:7e:48:29:88:02:0d:d9:09:c2:64:c4:4d:d5:e2:c4:
14:b4:7e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 23:28:32 2024 by rpki-client on console-ams.rpki-client.org