Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/dZpFAakQclAfkhQmkGz2_bAQkPE.roa
File: dZpFAakQclAfkhQmkGz2_bAQkPE.roa (raw, json)
Hash identifier: 1KdajcPj3h0GYBQGl9FrnR6ShwZ5r+nhjUB1AGRAvDE=
Subject key identifier: 75:9A:45:01:A9:10:72:50:1F:92:14:26:90:6C:F6:FD:B0:10:90:F1
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0571
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dZpFAakQclAfkhQmkGz2_bAQkPE.roa
Signing time: Fri 12 Jul 2024 23:55:03 +0000
ROA not before: Fri 12 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jul 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1393 (0x571)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 12 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=759A4501A91072501F921426906CF6FDB01090F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:74:a4:e3:59:8a:33:23:35:45:d3:ef:35:ae:
d3:e1:85:0c:ba:48:11:50:5b:90:81:81:45:84:6c:
9d:13:a8:f7:d5:4e:21:73:ae:55:d2:2a:4d:40:f6:
ff:53:bc:e4:b8:3d:ab:9e:5e:b9:80:ed:c5:b4:8d:
6e:38:22:6c:00:c9:4c:bc:dd:a8:07:b1:66:e1:48:
08:ab:84:61:2c:10:95:1e:61:d0:da:cc:29:40:6f:
e2:fd:76:8e:7e:ed:0c:20:da:1c:3e:0f:d0:bc:1c:
e1:f3:cf:b8:9c:7d:b5:c3:ef:74:74:15:2d:87:ca:
0f:2d:df:de:fc:2d:55:85:30:82:31:e7:b8:d2:cf:
01:3d:14:9b:78:8e:b2:4c:63:c3:bf:d4:ed:40:6d:
9e:a5:3a:1d:50:fb:0b:62:a3:79:a6:db:85:75:87:
22:33:97:e8:93:97:83:31:5d:3b:84:e0:3c:7a:a8:
9f:0e:a2:18:49:a6:2f:c7:82:6b:53:0a:8d:41:05:
79:e6:cc:94:3e:e5:26:f7:09:e9:26:a2:1c:b3:c2:
90:e0:3a:40:01:eb:77:1a:1d:ef:fc:51:3f:75:6b:
90:ed:f7:16:5a:dc:f1:75:31:b4:43:7d:2c:85:b6:
a1:a8:db:2d:10:44:cc:db:82:bc:69:13:3d:24:8c:
40:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9A:45:01:A9:10:72:50:1F:92:14:26:90:6C:F6:FD:B0:10:90:F1
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/dZpFAakQclAfkhQmkGz2_bAQkPE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:ca:e5:81:86:78:4b:b1:18:d9:e5:03:1a:ba:ed:30:4a:a5:
24:c0:6e:0e:d7:1d:15:59:dd:1f:8c:6d:da:ed:f9:9d:6e:c9:
39:54:1d:70:e5:e8:bf:5f:b8:6c:9f:f5:87:55:ff:9d:71:74:
06:36:c3:63:c6:25:a3:84:44:96:ff:7d:fa:26:de:d8:9f:3a:
74:e7:57:f2:41:8a:6c:45:02:39:fb:71:3d:39:ab:cd:84:6a:
45:bd:34:ef:c8:5a:29:6f:b0:ae:8c:e4:92:a7:49:0a:36:e6:
7f:99:62:e4:a6:cc:2b:71:11:4f:c7:fd:27:45:13:8e:b6:41:
45:79:92:8b:6f:1e:82:75:de:ad:32:32:9a:6a:52:72:3e:fd:
93:8b:c8:7b:de:cf:f8:1b:79:09:13:d6:9e:ee:ec:4f:e8:45:
01:8a:34:db:8d:98:61:29:00:84:31:04:78:76:f0:ce:07:87:
26:9a:5f:5f:00:f6:91:81:79:94:4a:03:e9:8f:80:be:65:4a:
28:7b:09:dc:cd:2c:80:71:cf:b6:77:34:c3:c7:83:c1:e4:f8:
d0:1c:9a:98:d3:88:41:09:f9:03:2f:f5:1e:16:1c:15:ab:30:
d8:89:86:78:50:85:d2:25:fd:72:0f:ab:27:f8:e9:98:43:a2:
20:ba:e4:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 13 04:42:32 2024 by rpki-client on console-fra.rpki-client.org