Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/d5qapzM4U5mMKOY0i6D_nCCI4YE.roa
File: d5qapzM4U5mMKOY0i6D_nCCI4YE.roa (raw, json)
Hash identifier: EGH9N1n+48naNydqQHxbDrwVmUxUdxvOitsXpmKHoBw=
Subject key identifier: 77:9A:9A:A7:33:38:53:99:8C:28:E6:34:8B:A0:FF:9C:20:88:E1:81
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 01F6
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/d5qapzM4U5mMKOY0i6D_nCCI4YE.roa
Signing time: Thu 04 Apr 2024 23:55:03 +0000
ROA not before: Thu 04 Apr 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 502 (0x1f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 4 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=779A9AA7333853998C28E6348BA0FF9C2088E181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:da:54:98:f2:57:b8:7e:cc:fe:83:7a:3d:d3:
c9:0f:2a:d0:12:6c:c2:63:4a:e0:5d:f0:8c:7d:24:
0c:8f:2e:18:cb:e0:14:56:2e:85:4b:c7:0d:17:ce:
85:1d:13:66:ef:22:09:24:bd:a8:56:c6:af:e8:06:
3a:28:94:0f:34:93:52:64:d8:e4:05:73:eb:c0:5f:
dc:ca:f7:4b:66:c2:4b:86:c6:d7:94:3e:a7:31:d7:
31:ff:9a:b0:77:b2:78:dc:23:a5:79:3c:c0:e3:c2:
91:aa:5c:18:2f:2d:f4:aa:25:67:79:84:f0:da:e4:
bc:bf:5f:6b:af:45:0f:50:e1:dc:ca:06:a2:68:9b:
e6:ad:e2:0a:dd:1c:4f:29:31:a8:12:04:be:59:73:
d0:fe:cd:38:51:82:24:0f:7d:10:13:28:8b:06:2f:
41:46:75:95:06:07:dc:d9:66:64:37:34:f9:e8:72:
bd:73:c6:d2:02:16:94:e9:ff:14:81:39:30:8b:64:
9f:9e:f7:66:ec:d2:b9:16:4e:80:0f:9f:fd:a6:f0:
a9:69:32:b7:85:88:1a:b7:d7:e2:c0:3b:3b:53:c6:
a7:ea:42:6f:06:e3:1d:56:70:b9:5d:eb:f5:91:21:
a0:58:77:6b:b7:e9:a7:94:2f:78:ad:21:64:cb:ed:
b0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9A:9A:A7:33:38:53:99:8C:28:E6:34:8B:A0:FF:9C:20:88:E1:81
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/d5qapzM4U5mMKOY0i6D_nCCI4YE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
e0:96:f0:76:2f:8a:5a:21:f6:c9:88:10:58:72:04:a3:02:ec:
15:48:4d:07:12:17:f5:c0:b8:2f:42:9f:7e:0b:0e:98:6a:6a:
2a:55:ad:4d:be:ff:ce:80:6b:b2:23:a0:7c:41:21:93:44:07:
c1:3b:24:29:38:c9:ce:2c:50:da:2e:e2:a0:14:34:c4:28:aa:
82:97:c9:1e:db:5c:fc:b2:4e:b6:02:1f:44:47:96:5c:11:86:
d8:e2:d1:44:21:12:32:de:a5:61:b1:24:4a:30:e6:0a:81:4f:
17:27:ae:ff:ad:d0:a2:c1:01:3c:62:fb:ff:95:84:7c:3b:cd:
59:5c:3e:11:84:ac:19:00:6e:2d:5a:2f:6d:b3:9e:08:fc:30:
33:e4:00:5c:2c:d3:c4:66:1b:d7:ba:6e:f3:09:3b:84:c7:e6:
bc:db:3a:e5:6e:7b:7b:bb:8b:3f:f3:8c:09:85:29:f8:1d:c8:
b4:af:fa:68:9b:d8:7c:78:7a:5c:13:20:c3:0b:a1:94:ea:d8:
78:07:ce:0a:33:11:23:19:7a:38:4c:1c:23:4d:87:f0:35:09:
7d:9e:3a:66:40:0b:69:1e:15:57:58:fb:84:7d:74:4a:a0:d7:
e4:fa:d1:10:d7:8f:e9:76:fb:aa:5b:a2:65:00:36:ac:1b:35:
87:84:4b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org