Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/cHbJJMMoTx-oK0DqEvmRj76PRcM.roa
File: cHbJJMMoTx-oK0DqEvmRj76PRcM.roa (raw, json)
Hash identifier: Rzjb8NnyyHvDd9LsPDnbJDoACbPxmQZ3rhp56t6OgWQ=
Subject key identifier: 70:76:C9:24:C3:28:4F:1F:A8:2B:40:EA:12:F9:91:8F:BE:8F:45:C3
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04F9
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cHbJJMMoTx-oK0DqEvmRj76PRcM.roa
Signing time: Sat 29 Jun 2024 15:55:03 +0000
ROA not before: Sat 29 Jun 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jun 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1273 (0x4f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 29 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7076C924C3284F1FA82B40EA12F9918FBE8F45C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3c:77:0b:da:62:ef:c8:c5:be:aa:ae:e0:dd:
53:4d:d4:e1:4f:21:05:74:db:47:d9:15:33:e6:38:
ca:86:59:d1:00:61:8d:00:06:9b:03:92:76:12:d8:
a4:c7:d0:51:18:48:54:06:bb:66:d0:81:e3:3b:89:
e1:a3:e4:5e:57:1f:37:79:47:44:01:62:3a:ba:cd:
42:06:51:c9:28:b5:8f:20:b5:e0:69:db:cf:8a:60:
c2:a5:9c:d2:48:8a:7a:94:b1:82:a3:83:9a:14:74:
2d:75:47:9e:fd:b2:1b:7a:9b:96:ef:00:53:0e:8a:
14:ef:6a:e9:cd:09:20:3b:8a:f0:c2:b6:a0:06:83:
de:6b:97:c5:06:72:01:f6:9f:60:a8:21:be:5c:56:
0e:08:3b:a0:8a:35:5e:7e:22:c5:62:8f:81:26:ff:
47:d3:ae:dc:0d:36:a2:53:30:d6:7a:ca:b3:0b:9d:
72:1b:8f:f7:58:72:5e:3c:1a:b2:2b:b9:1c:d4:6c:
94:a1:43:d2:72:5a:c7:c4:72:65:e4:8a:d5:f9:97:
74:98:39:ca:8e:9b:e2:6f:a8:54:29:80:77:8d:aa:
fb:37:1c:58:7e:d4:dc:c5:f7:c2:98:7e:5e:28:4b:
62:c9:36:74:78:9b:d2:a1:e2:be:d5:73:46:11:b4:
79:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:76:C9:24:C3:28:4F:1F:A8:2B:40:EA:12:F9:91:8F:BE:8F:45:C3
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cHbJJMMoTx-oK0DqEvmRj76PRcM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
03:87:9e:d8:4a:97:0d:d7:47:24:16:11:85:73:1c:05:5c:89:
bb:06:52:1e:d9:cc:58:0a:e2:2c:cc:5c:d4:14:6e:9d:35:00:
8a:4b:93:72:ed:70:31:c2:80:04:6e:0b:e5:13:ae:a9:60:a5:
29:f6:80:d8:c4:ab:3c:06:e7:99:46:0f:10:75:a5:3a:96:6b:
59:d1:eb:94:1a:83:34:7f:ef:7b:c1:95:50:80:dc:85:37:09:
07:f3:e0:0c:f4:0b:7d:bd:2c:69:72:00:fd:53:48:1d:7f:89:
76:2c:cb:23:c4:d3:d2:cc:63:47:3b:99:76:d5:a7:b3:25:8f:
1c:3c:98:35:89:4c:ab:81:a9:f1:16:c0:db:37:9f:63:86:e8:
57:31:46:4c:8b:f1:bb:65:4d:86:27:98:95:ad:a3:b8:9c:34:
6e:ac:a3:68:16:cc:bb:18:b5:d6:8b:1f:90:bf:24:aa:11:68:
b3:21:8f:73:5f:e0:ba:4b:07:b4:7b:ed:db:93:49:80:58:68:
3d:ad:47:f6:f7:20:74:ac:0d:3d:44:97:10:5c:85:0e:37:7b:
94:cb:87:2d:6a:87:3c:aa:70:dd:2c:0e:b5:b6:7c:4e:6b:eb:
82:48:9a:ea:58:dd:f2:be:34:83:16:0e:ac:ca:e6:4a:3f:31:
99:4f:fe:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 21:06:42 2024 by rpki-client on console-ams.rpki-client.org