Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/WNx11R_FPopzCkM6CrwW6tjRglc.roa
File: WNx11R_FPopzCkM6CrwW6tjRglc.roa (raw, json)
Hash identifier: YW0C29r5ImujHK5d9GrtT/sV5HTnymjrljGjF6dBYqA=
Subject key identifier: 58:DC:75:D5:1F:C5:3E:8A:73:0A:43:3A:0A:BC:16:EA:D8:D1:82:57
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 093B
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/WNx11R_FPopzCkM6CrwW6tjRglc.roa
Signing time: Mon 28 Oct 2024 15:55:03 +0000
ROA not before: Mon 28 Oct 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2363 (0x93b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 28 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58DC75D51FC53E8A730A433A0ABC16EAD8D18257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:da:a5:a2:be:6b:96:f8:d0:ce:dc:65:f0:b8:
fb:67:12:bf:a2:b3:5a:03:ff:5c:e2:bf:8d:84:f8:
e6:b9:f7:8b:98:41:dc:a5:40:c2:b5:40:65:50:9c:
1e:7e:fe:42:26:3b:3f:dc:15:28:16:5c:10:2d:55:
2e:2a:49:67:c3:53:77:24:79:54:ff:a0:3d:5d:87:
78:07:45:da:a3:5d:36:62:f8:a3:d9:a0:38:11:d8:
54:04:01:65:61:ba:1e:30:28:e9:11:fe:96:55:1c:
c6:fc:a8:6b:f3:5f:d5:33:ae:7f:c0:21:e3:cc:fd:
23:32:cc:c2:ad:11:1a:cc:cb:9f:48:94:59:fe:13:
8c:56:3f:0c:95:aa:5c:a1:00:13:54:3c:1c:5f:37:
f7:d0:d9:20:b7:3a:cb:65:de:68:b8:5b:be:15:82:
25:b6:0b:4f:cc:6b:0f:66:37:a5:ec:74:73:5a:5c:
dc:3f:8e:79:4f:28:0d:f1:03:c1:23:6e:49:41:62:
f7:3c:91:fd:69:ff:ce:44:46:76:d1:47:c3:c6:55:
6f:50:92:1b:68:fb:5d:81:76:9d:4b:58:fc:7f:fb:
4c:da:87:67:84:eb:81:f1:fb:71:4c:db:74:85:13:
15:ca:7b:4c:36:5b:57:61:00:8b:d7:ab:ec:cb:11:
38:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:DC:75:D5:1F:C5:3E:8A:73:0A:43:3A:0A:BC:16:EA:D8:D1:82:57
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/WNx11R_FPopzCkM6CrwW6tjRglc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:a6:de:b6:2b:20:ec:fb:66:1f:fe:d4:46:bd:75:4e:cb:f0:
69:86:4d:68:56:0e:7a:46:87:6b:f1:14:b3:e2:5e:82:54:f7:
82:37:84:5a:45:51:49:2e:42:d5:0a:70:24:3a:4f:c7:8b:43:
aa:8a:67:0e:98:e0:3f:ff:1c:fa:9b:3c:d4:03:bf:4f:2a:cb:
53:c7:d1:3b:48:a2:84:d8:0e:bc:df:ad:42:4f:b6:a8:ed:eb:
79:86:a8:8b:19:fc:95:a3:62:3c:40:95:b9:db:b9:be:e9:05:
f3:a9:2f:d5:3e:63:f2:08:d9:35:06:51:83:82:28:57:2d:b1:
e4:1c:ec:52:7b:05:1a:63:5a:79:78:eb:e6:aa:0f:02:34:4a:
fe:de:52:db:b3:be:6c:82:1e:5e:33:d1:30:40:33:31:53:b7:
63:3a:80:f0:85:19:dd:7d:ac:5f:8d:d0:9b:59:2c:61:af:4c:
f7:fa:3e:31:64:7a:09:39:b1:e2:1d:7c:d2:62:f4:4b:dc:d5:
ad:82:ac:b7:d5:91:7f:84:c7:76:cd:e8:2c:3e:a0:86:e7:7f:
31:c9:7c:69:e3:60:ef:b1:d2:ce:a4:96:08:0a:2c:87:a9:0f:
b2:34:44:40:ac:ab:7d:32:36:6d:a5:ef:bc:ae:13:c7:ba:e1:
94:8c:36:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 28 22:56:59 2024 by rpki-client on console-ams.rpki-client.org