Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/XOWnJHbftRzGE0JTUov17JbUe70.roa
File: XOWnJHbftRzGE0JTUov17JbUe70.roa (raw, json)
Hash identifier: V/PzUNJkcBczflvI8h+N2zxm6mBsglDDDnf9eJnXpqk=
Subject key identifier: 5C:E5:A7:24:76:DF:B5:1C:C6:13:42:53:52:8B:F5:EC:96:D4:7B:BD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06F7
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/XOWnJHbftRzGE0JTUov17JbUe70.roa
Signing time: Sun 25 Aug 2024 07:55:04 +0000
ROA not before: Sun 25 Aug 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Aug 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1783 (0x6f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 25 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5CE5A72476DFB51CC6134253528BF5EC96D47BBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f6:4a:a1:9c:09:9d:ee:50:60:e5:27:d5:8b:
fc:b1:7f:0e:f0:63:ed:ff:d1:3f:43:56:62:1b:c3:
7a:12:81:87:b9:4c:7c:27:fc:c2:eb:b8:4a:a4:ac:
82:77:1b:eb:d5:57:33:83:93:c9:9b:c7:7b:87:40:
2e:7a:14:7b:84:6f:ec:71:00:5f:8e:a3:09:ae:fe:
e8:2b:eb:7e:a3:0b:4f:da:28:9f:dc:19:c2:23:ba:
17:34:f7:14:70:78:33:ee:15:fd:31:73:0e:39:f3:
5a:ee:d9:4a:90:f8:27:8e:40:63:f6:37:85:34:df:
d2:2f:69:77:d0:34:c8:ae:39:cd:ea:f6:6d:99:58:
cf:05:9d:02:f3:eb:21:2f:43:c0:57:c7:ba:e0:31:
6d:89:2b:b2:c4:ed:b3:4d:75:76:1e:b6:d6:23:17:
cc:a8:7d:12:3d:f2:0e:9c:ef:9a:40:cf:51:95:42:
96:f9:5a:2f:98:78:57:b4:15:ce:6a:7f:61:29:78:
f3:2c:0c:44:a2:e7:8e:02:2e:e5:d3:22:30:87:56:
28:b0:75:54:42:91:0d:9c:f1:49:4e:41:0a:63:61:
d6:d9:bf:7c:d1:0e:f8:c6:56:cc:a0:ad:a5:b1:1f:
58:99:d0:fb:bc:96:c3:c1:22:ce:b3:79:e8:e4:69:
ed:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E5:A7:24:76:DF:B5:1C:C6:13:42:53:52:8B:F5:EC:96:D4:7B:BD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/XOWnJHbftRzGE0JTUov17JbUe70.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:00:99:78:0c:de:92:54:ae:9a:b5:48:0c:21:d7:53:53:2d:
1a:b3:97:2c:68:d8:d7:a7:80:02:e7:cb:2e:ab:ae:eb:d6:ed:
81:1e:8a:89:5f:a7:a4:f7:69:dc:8a:6d:88:55:2e:53:b9:d3:
1d:8a:e9:5c:ff:7a:a8:54:43:f1:b0:a7:b2:f0:48:3d:59:6f:
f4:e4:61:d1:f7:a7:d6:46:50:3d:c9:47:4b:b7:25:f6:6c:91:
56:a3:f6:22:01:9c:6f:fa:b7:93:9e:e0:49:df:c8:a4:ee:83:
5c:30:9d:fd:a0:44:5f:92:bc:66:24:03:99:3e:8a:55:b1:5b:
37:f5:99:e7:40:97:2b:86:05:0b:81:8d:a0:0c:e6:60:f0:49:
c0:9d:17:15:dd:5c:56:44:5b:e7:80:08:e7:b7:35:a4:fe:ef:
ca:7b:86:ef:7d:e7:f1:ab:f1:22:65:af:31:f5:22:06:b5:ce:
96:54:95:55:fc:27:37:eb:57:49:c9:f2:a1:bd:df:fc:ad:b8:
1b:f3:17:d9:d7:a2:96:c1:1c:3d:b6:89:61:ff:c4:8e:7d:79:
a2:eb:d9:29:7c:55:e0:23:8a:58:37:be:69:9d:ed:9f:3b:2b:
11:5c:a0:25:b6:b4:bb:98:87:1b:9a:bf:7f:f2:8f:c3:6f:69:
6c:1d:f4:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 25 13:03:13 2024 by rpki-client on console-fra.rpki-client.org