Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/eD8t64ovz1t6dEh0zCfLLXEPZXo.roa
File: eD8t64ovz1t6dEh0zCfLLXEPZXo.roa (raw, json)
Hash identifier: lI6nhLBzLJRO51eZvhVEwlH50SzBLyt7YG5+q07uung=
Subject key identifier: 78:3F:2D:EB:8A:2F:CF:5B:7A:74:48:74:CC:27:CB:2D:71:0F:65:7A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05E3
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/eD8t64ovz1t6dEh0zCfLLXEPZXo.roa
Signing time: Thu 25 Jul 2024 15:55:04 +0000
ROA not before: Thu 25 Jul 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1507 (0x5e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 25 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=783F2DEB8A2FCF5B7A744874CC27CB2D710F657A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f5:e7:67:9d:7d:53:22:dd:cc:e6:d2:b3:fb:
52:93:88:18:67:fe:6d:17:3f:e3:5d:fa:de:d4:cc:
79:08:39:dc:67:a1:20:2e:97:03:94:d9:04:a0:5a:
32:61:80:0d:3f:af:ae:39:2c:75:5e:39:65:cd:c6:
a4:70:34:3c:88:88:c6:b0:be:fe:57:ed:d2:c9:e4:
4a:d1:72:a6:ca:17:d2:f8:c8:51:1b:96:eb:76:44:
3b:fd:d2:29:74:4d:9d:a7:bd:18:a7:32:18:56:ab:
a4:c1:49:3b:ac:60:5c:cb:a1:42:b1:57:85:59:4d:
e3:45:38:bb:2f:47:4b:9b:84:d1:af:d0:16:4c:b7:
b6:34:f6:e4:f4:44:dc:83:0f:7e:ac:79:a5:39:81:
9b:0d:bf:0f:0d:14:fe:4c:c7:af:45:eb:52:14:85:
59:f0:3d:c1:ad:ca:91:4e:4c:54:29:f8:75:ee:cf:
dc:6d:35:83:7f:e6:ca:70:fd:f1:1b:eb:0b:92:0c:
51:7d:85:e7:35:19:87:de:62:67:aa:48:78:57:78:
1f:62:f8:e6:dc:07:f5:77:62:a3:ed:f2:6b:00:e8:
d5:4c:e7:e7:d2:95:e9:b7:80:b4:84:65:0b:d7:b2:
14:1c:c6:c1:f5:43:18:39:50:88:ab:1f:b4:e1:c0:
47:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:3F:2D:EB:8A:2F:CF:5B:7A:74:48:74:CC:27:CB:2D:71:0F:65:7A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/eD8t64ovz1t6dEh0zCfLLXEPZXo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:d6:14:92:5d:2a:37:8a:cb:8c:81:a9:9c:f6:c7:43:d8:ea:
d8:fb:b6:2e:a6:13:99:2f:92:e3:be:ab:88:25:12:f4:05:5a:
98:15:19:6f:01:ad:3b:df:a7:62:42:1a:33:89:1f:c6:7d:d8:
fc:ef:4a:55:53:bb:89:09:fa:61:16:f2:e0:d3:26:29:c2:e6:
24:df:af:be:5f:cb:77:9c:7c:e6:aa:23:b0:5e:96:28:e2:4f:
0d:77:5d:e9:4a:af:63:ea:7e:6d:eb:a8:68:80:46:6f:58:a4:
d3:dd:72:20:c7:6c:27:4d:02:ce:9e:94:75:4d:78:78:0b:75:
f7:5d:22:cd:9e:c4:ec:a3:b1:ab:73:0b:1d:59:80:a4:9c:57:
48:ea:5c:57:78:d1:4c:c9:9a:cb:11:8a:a7:b0:d8:b4:e3:4f:
5e:53:65:6c:74:23:43:4c:0b:7e:ec:1e:59:3c:90:24:09:71:
18:32:c9:dc:15:af:46:10:c1:95:e2:ce:44:34:2b:ff:bc:58:
b2:f7:0e:5b:dc:df:53:22:4b:4f:c3:e6:b5:ff:4a:fb:90:7d:
c9:40:0c:4a:af:36:0c:b6:5a:e3:a7:4b:01:a2:5b:ab:e6:e3:
87:13:bb:0a:7d:4f:d3:40:88:99:b8:ed:86:d9:ea:0b:61:d3:
1d:3e:56:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 21:44:48 2024 by rpki-client on console-fra.rpki-client.org