Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/fRF3BxukR5cjCL0n8iVh5jpXxEk.roa
File: fRF3BxukR5cjCL0n8iVh5jpXxEk.roa (raw, json)
Hash identifier: DhrudUw+Ntq5WwtjbROhYx/6wRrNSn5dSov4YYeCtWc=
Subject key identifier: 7D:11:77:07:1B:A4:47:97:23:08:BD:27:F2:25:61:E6:3A:57:C4:49
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0313
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/fRF3BxukR5cjCL0n8iVh5jpXxEk.roa
Signing time: Mon 06 May 2024 15:55:04 +0000
ROA not before: Mon 06 May 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 787 (0x313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 6 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7D1177071BA447972308BD27F22561E63A57C449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:da:4e:fb:29:e1:12:9d:fd:0f:0a:8e:82:a9:
af:26:c8:8e:a8:67:8d:a5:fe:db:66:49:3a:f2:b0:
d5:03:0e:9a:36:78:5d:8a:40:45:ed:79:56:99:48:
f0:1a:4a:cb:f7:55:2d:27:72:af:e3:3f:65:6f:99:
91:90:f6:72:16:d9:31:a6:92:fa:d4:0e:cd:79:3e:
bb:b3:f2:09:1b:52:c9:22:fb:cc:4f:22:ec:0f:1c:
5a:96:dd:95:26:04:28:3b:c9:f6:71:09:83:42:72:
b5:88:dd:ed:33:95:7f:40:e1:e1:9b:75:6a:63:f1:
28:8f:63:6b:46:d5:b3:22:5b:01:71:28:95:73:74:
33:57:95:b9:2c:a7:f3:b3:11:f7:85:96:16:45:af:
cb:26:d5:db:91:93:01:31:f7:13:f6:f6:1d:05:ca:
cb:80:40:a6:06:e1:a1:e9:79:42:5d:bc:b7:4a:90:
02:16:21:66:fb:59:db:03:7d:30:49:ab:0c:f5:6a:
84:63:ff:a3:38:95:5b:a2:51:10:85:ef:59:e6:0f:
ad:1a:c5:79:24:ff:fe:ed:f4:1e:fe:47:0d:27:f0:
5c:fc:8b:38:8d:85:0c:55:5e:3a:a0:15:95:79:f9:
80:7c:64:2a:9e:d7:18:99:4f:b4:67:55:a8:5a:86:
13:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:11:77:07:1B:A4:47:97:23:08:BD:27:F2:25:61:E6:3A:57:C4:49
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/fRF3BxukR5cjCL0n8iVh5jpXxEk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
50:c0:ac:7c:f8:5d:9e:f1:24:17:c1:7c:b8:d7:3c:43:99:5b:
55:0b:c7:00:7f:25:fe:09:6b:d2:79:ad:7f:ba:c9:35:6b:96:
a5:2e:ba:95:70:41:6a:33:d1:87:bb:b1:b1:87:00:64:65:88:
2c:88:6f:a2:46:28:18:6f:23:3b:90:0b:5e:e7:03:de:8e:23:
c7:c9:17:6f:7b:ab:85:8f:26:68:a1:71:d4:e1:1e:5d:4c:7c:
c6:e8:5f:db:e9:27:e3:d9:c2:3f:ff:c4:17:ad:d8:be:72:97:
f0:67:cb:bc:85:76:9a:a5:a4:56:ef:ed:1b:7a:65:83:b7:17:
d6:e5:f2:f8:ad:9b:4d:63:68:72:d8:6e:b8:44:93:f3:b6:dc:
2b:73:6f:64:11:f2:57:a8:f7:86:f8:e0:97:72:92:ee:7b:fa:
7f:7e:cd:e2:6f:a9:23:a0:9e:40:ce:82:a0:f6:dd:10:66:db:
29:d0:66:db:3d:aa:78:19:62:36:20:f2:d5:99:59:32:c1:65:
0d:ce:a2:59:d0:e2:2d:3e:93:0e:7f:94:7c:aa:47:06:0e:a3:
ba:51:d5:25:c4:a3:a5:7f:fc:00:25:3c:13:0c:88:a0:04:0f:
1c:a6:1c:ce:73:cc:1b:6d:32:41:7b:3e:e6:d9:49:19:88:a3:
d8:ef:2c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 00:09:18 2024 by rpki-client on console-ams.rpki-client.org