Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/efhqaa056lZUdHGghS8LWWXCpa8.roa
File: efhqaa056lZUdHGghS8LWWXCpa8.roa (raw, json)
Hash identifier: jCNaEjw34yNyH75rlWLTas56yocAjvQx/7CcDWUg2j4=
Subject key identifier: 79:F8:6A:69:AD:39:EA:56:54:74:71:A0:85:2F:0B:59:65:C2:A5:AF
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 020E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/efhqaa056lZUdHGghS8LWWXCpa8.roa
Signing time: Sun 07 Apr 2024 15:55:03 +0000
ROA not before: Sun 07 Apr 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 7 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79F86A69AD39EA56547471A0852F0B5965C2A5AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9d:a3:20:df:d8:0d:70:02:ca:ad:8d:c7:df:
1e:a9:cc:26:6c:47:06:9a:e7:f7:ed:4d:f3:51:2d:
3b:d6:cd:60:fb:7e:25:2b:c7:29:f0:42:8f:5a:2f:
c7:d5:65:c1:df:62:a0:15:d0:54:f3:26:f4:b9:68:
cd:f8:21:a4:9c:23:21:b3:87:ed:74:97:d9:50:db:
5c:7a:5f:f1:80:75:af:92:83:80:2a:6c:6e:9d:e4:
42:b5:dc:ac:94:0a:bb:1b:a5:ed:bc:d0:a6:01:d3:
71:4e:28:62:4b:be:b6:07:41:0b:6e:e5:bf:7c:f0:
51:15:da:0c:72:1f:63:c0:a8:e7:db:7d:a1:c7:05:
d7:78:2f:fa:f7:54:cf:74:94:33:7b:17:2a:5d:28:
3f:fa:1f:a1:a3:f8:7f:6d:e0:95:9f:c9:ce:05:ef:
64:77:9b:c4:f5:e8:a5:50:23:ef:88:87:31:cf:35:
8b:7f:00:6b:80:ba:04:03:ae:c3:fa:25:0b:77:f4:
66:e6:0e:ab:69:e0:25:fc:29:54:68:ce:2c:9d:2d:
3b:10:7f:15:1e:8c:2b:c1:64:d9:0a:98:cc:86:0b:
99:88:c6:2f:1f:41:b8:e8:39:39:cb:c7:9f:e2:67:
07:70:0d:48:9b:5b:00:8f:62:5b:4d:58:f2:48:76:
e6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F8:6A:69:AD:39:EA:56:54:74:71:A0:85:2F:0B:59:65:C2:A5:AF
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/efhqaa056lZUdHGghS8LWWXCpa8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
21:b1:30:91:dc:12:4d:cb:cf:85:36:9f:14:ad:25:af:0a:b2:
ee:37:9e:62:23:87:33:ea:53:4b:e7:b3:77:33:ab:62:1c:86:
43:98:b1:e6:e8:45:34:7c:f8:b3:4c:f7:40:5a:6e:39:39:2b:
48:63:4a:c1:b7:25:1e:dc:9e:9f:64:5e:52:9d:79:b4:e4:7c:
30:c6:6d:66:bc:3e:84:59:48:01:40:16:0e:36:92:4d:82:5b:
da:9a:3d:22:51:3b:41:09:d4:40:1e:bd:8a:70:90:a5:38:b4:
2b:3a:ee:20:7e:63:4f:af:e1:99:18:3b:eb:e4:ea:23:17:8b:
b4:af:f7:46:37:f4:85:a7:cd:74:69:6d:5e:2d:fb:62:ad:bc:
d1:51:cb:95:7d:48:2f:e5:aa:72:c0:fd:82:66:96:d1:4b:8d:
d2:61:85:7d:02:f2:57:8c:ba:a4:f7:24:29:9b:9f:18:e1:3a:
17:cd:93:78:0b:f6:3f:e3:33:ec:3e:b6:cc:00:0c:5c:ea:38:
75:09:40:98:09:b1:db:b1:53:6e:bd:e2:61:7f:cf:df:b4:26:
38:03:47:2d:a9:40:e1:8a:30:73:83:c1:06:2d:24:cb:5b:b4:
4c:35:bf:eb:69:97:b5:44:13:32:b1:0d:8f:60:1f:ce:ff:f8:
7d:4a:21:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org