Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/VTrioR1Es-FoVMcsIUbSvzwuTiI.roa
File: VTrioR1Es-FoVMcsIUbSvzwuTiI.roa (raw, json)
Hash identifier: oX76bMDCUXLAQ2Wh7T/5+2fc1KXaIl4dn4a5vaATWWA=
Subject key identifier: 55:3A:E2:A1:1D:44:B3:E1:68:54:C7:2C:21:46:D2:BF:3C:2E:4E:22
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0472
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/VTrioR1Es-FoVMcsIUbSvzwuTiI.roa
Signing time: Fri 14 Jun 2024 15:55:03 +0000
ROA not before: Fri 14 Jun 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1138 (0x472)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 14 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=553AE2A11D44B3E16854C72C2146D2BF3C2E4E22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:58:b9:1a:09:28:de:59:84:68:29:08:b3:a7:
c0:cc:01:2b:c3:c2:7d:94:dd:f1:1b:1e:2d:00:ee:
95:6d:7d:11:8d:55:1b:b8:23:bc:f9:41:6f:a4:7a:
c5:7c:96:52:bf:4e:59:bb:09:88:5a:6a:19:a7:1c:
2b:a3:95:ec:3a:b6:26:9f:e3:29:9e:de:d1:aa:57:
01:ee:55:a1:94:85:35:50:e5:8a:e8:c1:46:d3:94:
ff:5e:1f:fd:5b:4e:b0:c3:95:44:70:4f:5c:e3:10:
0a:f3:b3:6b:76:36:b0:8d:e4:82:ce:69:e1:11:58:
68:07:62:70:7b:77:36:d4:06:69:9a:f8:42:f0:1e:
90:6f:80:2a:da:86:4d:26:62:72:05:e5:e0:6b:28:
30:bf:f6:d2:ef:d5:36:53:f4:e0:0a:3c:03:21:b0:
57:98:16:9e:b0:12:07:14:9e:06:d1:4e:c6:5f:69:
ac:c2:c5:53:97:00:91:da:74:52:b0:c0:06:74:6a:
ab:62:cd:25:0d:d1:ad:a7:1d:8d:a2:72:c0:50:12:
48:32:62:23:69:8c:94:54:f9:f4:27:d7:6f:91:a5:
a2:48:98:54:ce:e7:b2:d7:0d:cf:f0:33:0f:78:5c:
8f:f2:0a:9c:91:3e:04:9b:57:6a:0f:47:ec:dd:f8:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3A:E2:A1:1D:44:B3:E1:68:54:C7:2C:21:46:D2:BF:3C:2E:4E:22
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/VTrioR1Es-FoVMcsIUbSvzwuTiI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:3b:19:ab:b5:37:c0:1d:32:b4:22:75:82:52:a9:d5:3c:f4:
72:70:f1:38:ff:40:3d:e5:a3:91:f7:34:ab:96:44:a5:bb:e7:
33:4c:29:91:8d:86:09:90:cf:7b:0d:66:c1:79:20:7b:37:e7:
b4:44:4f:e6:a0:df:ee:3e:f8:97:c7:a7:d4:26:ac:0a:08:08:
31:52:49:3b:d2:89:a8:4c:33:ee:49:02:55:d0:fb:6b:8e:9a:
9c:13:98:4c:dd:8b:51:d5:b1:a1:3f:52:fa:d5:7e:b7:f1:93:
50:a0:e6:a2:22:80:af:0c:0c:43:4b:2b:e9:51:5c:e8:14:38:
2b:21:45:12:f2:0a:45:5a:0d:e8:dd:17:e7:e8:9b:1d:e1:ba:
77:bc:dc:5f:2e:2e:ca:7a:27:ca:f4:bb:6f:86:d9:8e:2b:c9:
ee:dd:01:ed:ed:e0:0c:f9:08:e3:39:87:a6:f4:bd:26:33:8e:
56:21:9a:0d:86:4b:31:44:c3:a7:49:d1:8d:d7:13:d3:8c:30:
ad:3e:e1:d2:14:7b:5a:9a:ce:fa:7f:6b:c2:8d:76:54:6c:5d:
1e:2c:fd:f3:9d:e5:05:2a:db:c5:8f:a6:91:d8:1c:f8:73:8f:
b7:e8:27:71:ac:1d:9c:88:31:d6:8f:43:42:11:be:cd:7f:ce:
26:ae:e8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 21:10:43 2024 by rpki-client on console-ams.rpki-client.org