Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/gp1JEDHHzhnpoZnZiUIhN9Snrbs.roa
File: gp1JEDHHzhnpoZnZiUIhN9Snrbs.roa (raw, json)
Hash identifier: BJeaMktthQJt2/+h5nsPcAVsdEYiMGc3iXiAOeKIqAw=
Subject key identifier: 82:9D:49:10:31:C7:CE:19:E9:A1:99:D9:89:42:21:37:D4:A7:AD:BB
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0739
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gp1JEDHHzhnpoZnZiUIhN9Snrbs.roa
Signing time: Sun 01 Sep 2024 15:55:03 +0000
ROA not before: Sun 01 Sep 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1849 (0x739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 1 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=829D491031C7CE19E9A199D989422137D4A7ADBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ba:b3:61:d8:c4:34:72:c4:7f:29:fe:da:f3:
dc:ed:48:1e:fc:0e:6b:ae:15:93:ac:33:86:27:e5:
40:6c:92:0f:72:42:e8:bd:37:54:48:40:d2:af:55:
96:c4:4b:fe:08:e0:62:43:99:e9:83:d7:01:ce:0a:
f2:68:13:e4:a0:25:67:90:00:77:2c:3f:1b:78:10:
6e:d6:61:d3:80:59:e9:b0:bf:00:26:e2:4f:b9:b2:
e4:c6:f8:6f:c6:56:8e:a4:3a:d6:16:39:65:9d:89:
85:15:68:ae:99:36:0d:88:c1:a2:8e:6f:ec:0d:6c:
47:6e:7e:89:91:87:96:fa:4d:92:16:6a:fb:51:9b:
f5:e1:fb:e1:c6:79:88:fa:c8:4f:6e:2f:81:f6:12:
3a:78:ee:48:89:97:f0:e9:fa:5d:69:d0:71:03:b2:
fa:55:b2:78:92:28:07:ba:05:ce:9d:e4:8a:52:50:
39:4f:2d:06:cc:cc:9e:0e:63:13:ab:fa:13:da:b1:
1b:a5:09:28:ef:10:0d:13:71:38:3c:91:97:84:b9:
66:72:11:f6:90:1d:5c:9e:c2:18:f1:aa:66:0f:05:
b0:bf:85:c9:5a:20:3e:d5:79:6e:01:e3:64:55:b5:
5a:34:fb:e3:04:6d:40:45:e8:0c:60:4d:11:cc:bc:
8e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9D:49:10:31:C7:CE:19:E9:A1:99:D9:89:42:21:37:D4:A7:AD:BB
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gp1JEDHHzhnpoZnZiUIhN9Snrbs.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:95:0d:9c:c1:19:90:2b:0d:17:fd:a7:96:0b:45:a3:37:52:
45:42:e7:c9:ad:de:79:99:28:bb:cb:8e:36:6f:a8:e4:d6:c7:
27:34:8f:93:d4:04:17:ed:77:71:e2:79:f9:22:99:2e:60:ec:
d6:c4:90:03:0b:b1:1a:63:03:11:ce:6c:97:9c:b3:ef:7d:e9:
a3:9d:85:3d:d1:bb:77:3e:62:cc:aa:a3:2d:b5:d1:33:ab:e7:
6e:d7:4c:41:e0:06:8b:67:8c:d1:12:0e:37:fd:bf:3e:d1:74:
48:26:eb:de:1b:be:4a:3a:60:ed:10:73:62:f5:a1:63:6c:57:
c9:65:04:a6:21:61:fb:0f:65:f2:ed:57:31:2a:c1:e4:48:31:
79:cc:5d:84:d7:28:b1:a2:5a:77:c3:bb:b3:67:6b:06:db:75:
b1:5d:85:c9:18:c9:7b:d1:20:c8:77:5f:5f:84:21:af:55:59:
04:17:49:d7:ba:95:6b:2c:7f:9a:7f:6f:d7:2b:eb:aa:1b:95:
ec:ed:1b:75:06:e6:5e:7a:bd:23:01:73:31:64:62:1c:44:a4:
a0:d1:11:8b:d8:c0:b0:c1:df:d3:d0:ed:50:6c:30:aa:2b:15:
73:ce:29:97:74:7b:35:aa:00:a0:5b:fa:e8:9c:68:1c:64:c0:
f7:2d:fd:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 22:01:57 2024 by rpki-client on console-ams.rpki-client.org