Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/deXf6cbKN5p1QSASQO7vF5KlRkE.roa
File: deXf6cbKN5p1QSASQO7vF5KlRkE.roa (raw, json)
Hash identifier: EX+wm4LMEVqgm4zsxmyXskyAvqspAYq84dAljCfLwo0=
Subject key identifier: 75:E5:DF:E9:C6:CA:37:9A:75:41:20:12:40:EE:EF:17:92:A5:46:41
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 91
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/deXf6cbKN5p1QSASQO7vF5KlRkE.roa
Signing time: Sun 25 Feb 2024 07:55:03 +0000
ROA not before: Sun 25 Feb 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Feb 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 25 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75E5DFE9C6CA379A7541201240EEEF1792A54641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9f:b8:db:5e:3a:05:a2:25:8d:35:36:39:af:
b6:13:22:08:d0:fd:75:03:08:06:0b:e7:53:2b:6b:
99:c1:a5:42:f7:44:b9:40:d8:df:bd:3a:e5:4f:13:
90:11:b5:9a:e6:88:e4:32:b7:3f:4d:d6:8c:de:8b:
54:d0:dd:38:7a:89:a8:c1:02:80:d1:17:af:ed:bd:
e9:9f:57:9a:33:e6:fd:25:64:47:c7:96:38:b2:b6:
65:29:77:20:00:c4:cf:6a:4e:cc:c2:86:3b:f6:89:
81:2f:2e:e4:70:6b:1e:6d:89:b6:58:3f:93:bf:db:
d3:35:20:b9:90:cf:a0:80:c6:c6:a6:e4:4c:59:9b:
f3:63:a8:b1:9b:38:5f:fc:75:4a:52:57:db:19:10:
1d:87:9d:22:d7:61:d0:d5:e9:30:10:b0:51:bd:ff:
e6:3b:7b:0e:b9:f4:80:32:51:31:a5:84:c0:6b:6e:
4b:e1:f5:37:e2:e2:52:69:57:ee:59:6f:c6:52:7e:
b2:3f:6c:24:84:18:01:0a:82:91:6e:bc:9b:e9:0f:
3d:f4:68:4f:78:7d:9c:6e:b5:1a:17:64:b8:86:d5:
97:2b:22:ba:ee:79:d0:88:a9:4c:90:56:b6:09:65:
ad:01:68:9c:21:b7:4d:f5:10:d3:c0:64:52:65:ed:
25:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E5:DF:E9:C6:CA:37:9A:75:41:20:12:40:EE:EF:17:92:A5:46:41
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/deXf6cbKN5p1QSASQO7vF5KlRkE.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:de:a7:80:3f:90:db:42:99:4d:66:01:ee:36:90:70:8d:94:
69:fc:40:90:32:17:93:04:5d:df:ad:50:86:5f:6c:a2:1f:c6:
c1:d6:07:b1:fc:27:3f:d6:6a:0c:f0:d1:0c:ff:88:3e:44:d9:
a6:25:03:25:14:52:ac:b9:7c:96:fc:f8:53:61:a8:d0:ac:6a:
3d:75:a8:7a:65:1f:21:bb:42:84:8f:2a:a8:24:d1:1c:0a:f4:
89:67:6d:c9:bc:86:d5:25:90:93:95:eb:ee:e9:2f:3a:98:3c:
26:ec:0b:a4:ec:90:a1:f4:ea:93:03:16:ac:59:65:b3:75:c1:
87:a7:55:2a:b0:c2:17:8a:04:fb:75:69:34:7f:38:6c:e3:08:
51:68:fe:2e:5d:61:3f:af:f1:ef:9f:2e:18:65:65:e8:80:38:
ce:43:24:0e:a2:05:b2:05:9e:34:4c:13:1c:35:85:c2:75:9b:
08:9e:9d:44:62:04:72:12:6b:f9:c9:0a:34:6a:88:88:6c:8a:
db:84:67:f2:5d:b1:44:bf:d4:c9:fb:1b:8c:8f:6c:e6:cb:ac:
e5:60:2f:91:6a:d2:b5:6f:1d:d0:8b:76:b8:4f:cf:e8:24:54:
a5:da:11:49:67:8f:12:33:0c:d8:8b:ca:32:19:79:5c:4c:b3:
38:7a:22:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org