Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/YDr8HZtuGJVDtZnsRy84KH9c86A.roa
File: YDr8HZtuGJVDtZnsRy84KH9c86A.roa (raw, json)
Hash identifier: 7MjQGg8stKQ6aVyy7WHFHh44yEY2+YaIBezH0RahT1A=
Subject key identifier: 60:3A:FC:1D:9B:6E:18:95:43:B5:99:EC:47:2F:38:28:7F:5C:F3:A0
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 054A
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/YDr8HZtuGJVDtZnsRy84KH9c86A.roa
Signing time: Mon 08 Jul 2024 15:55:03 +0000
ROA not before: Mon 08 Jul 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1354 (0x54a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 8 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=603AFC1D9B6E189543B599EC472F38287F5CF3A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f5:99:35:c0:8d:3d:b0:0e:c5:14:45:dd:37:
3b:bf:84:f1:c7:6a:a2:7f:2a:45:10:a9:c1:c3:83:
97:e7:37:83:55:3b:c7:40:43:5f:c3:c0:cd:dc:7f:
71:58:37:36:89:60:c6:a0:dc:f0:95:d1:99:76:56:
2e:34:0c:aa:04:0a:6e:c2:33:0a:9a:de:68:a4:60:
92:7a:fc:cd:76:4c:ca:d3:78:73:03:01:34:83:0c:
d0:ff:fa:d2:24:56:57:13:cf:71:5c:6a:7b:be:6b:
22:40:fe:5e:72:12:b5:85:1e:f3:6d:1c:47:a1:f6:
c9:8a:d7:86:54:17:48:3f:d2:a1:fd:24:8c:1f:bf:
4a:88:e6:c9:bd:50:cf:49:f3:26:ec:f6:54:f1:54:
21:35:b9:9f:7b:e2:98:01:34:3f:72:f7:74:ee:6b:
36:39:24:59:fe:02:22:8d:6b:a7:7b:0a:54:7d:8f:
74:89:34:8b:73:f9:b8:77:b8:e7:7f:0e:2e:8a:2a:
5e:7b:7a:7a:c9:cc:ae:99:d8:6d:92:29:f7:78:ee:
5a:c2:06:f5:18:b0:a8:47:a8:e0:ae:c1:c8:de:0b:
4f:b2:d9:70:7a:45:ee:34:1b:38:80:8f:b0:73:89:
fa:b8:54:1e:1c:2c:80:22:f4:65:4b:d7:ec:93:b9:
9c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:3A:FC:1D:9B:6E:18:95:43:B5:99:EC:47:2F:38:28:7F:5C:F3:A0
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/YDr8HZtuGJVDtZnsRy84KH9c86A.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
17:c0:c9:1b:fe:54:d9:46:59:5e:25:b8:f9:91:07:e7:94:95:
a1:ee:74:e9:09:08:6e:6a:37:a0:f9:e0:6d:a0:b5:d7:7a:e1:
c3:60:21:89:6b:2a:b2:68:dc:21:04:0d:40:75:6f:9f:ac:5d:
ee:57:0e:8c:ce:69:1c:f9:b3:05:0a:e2:c2:54:da:04:c3:74:
1f:d4:9c:ba:15:af:c3:6e:9a:93:db:51:15:ff:08:6c:e0:18:
eb:14:85:b8:34:e2:80:13:a9:fb:1a:2c:d1:b4:c6:57:42:ac:
f7:81:90:45:ef:8a:2a:42:68:75:83:1d:92:b1:39:9f:bf:96:
93:56:f8:3f:92:5f:78:af:27:50:a8:6a:e6:7f:c3:b6:50:19:
48:8b:b4:79:9e:3c:fb:4f:ad:44:33:aa:4a:74:9c:08:b4:41:
4e:7e:2b:db:a9:b2:ad:8b:c3:d5:a4:ac:bc:7d:5b:cb:78:7d:
8c:90:e8:40:0a:ba:33:58:8e:77:99:e1:42:60:0c:04:c7:b0:
47:ae:54:71:08:5c:38:d9:e5:bc:3c:bf:9b:16:47:0e:f1:c1:
d1:f6:2a:71:41:26:9a:fb:2d:16:12:11:d4:35:b3:bf:61:f4:
3a:bd:fc:40:50:f0:8f:38:77:e1:76:3f:33:77:b2:39:fa:9f:
01:80:4a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 21:54:37 2024 by rpki-client on console-ams.rpki-client.org