Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/i2PKugU2s1x4bhsZzXprpOIlFSI.roa
File: i2PKugU2s1x4bhsZzXprpOIlFSI.roa (raw, json)
Hash identifier: SyW5rHX4iP2fdB+D500tvfVkYH8yegJnS94Y6pYRGtk=
Subject key identifier: 8B:63:CA:BA:05:36:B3:5C:78:6E:1B:19:CD:7A:6B:A4:E2:25:15:22
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 073F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/i2PKugU2s1x4bhsZzXprpOIlFSI.roa
Signing time: Mon 02 Sep 2024 07:55:03 +0000
ROA not before: Mon 02 Sep 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1855 (0x73f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 2 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8B63CABA0536B35C786E1B19CD7A6BA4E2251522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a7:8a:fe:94:7b:dd:d8:6a:f1:88:7e:95:c5:
e3:ec:67:a9:00:07:6a:89:21:e4:2f:1e:7c:4c:6b:
3c:f0:cd:25:2e:d2:f1:56:1a:98:b1:0f:86:97:7e:
e1:c7:b6:6b:8a:4c:c5:64:5f:3c:c5:34:80:34:b0:
64:c5:b4:55:cf:57:45:c0:2d:d4:57:35:ab:d4:c7:
d0:0f:a7:65:53:c3:8f:0c:b9:b6:a1:5c:87:7c:88:
41:0d:6d:f8:51:59:a2:4b:f2:bc:cf:ec:70:9e:a6:
8b:65:d6:1a:f6:c1:b3:2a:65:48:20:40:de:0a:d8:
d6:90:28:dc:70:60:d5:29:8f:80:fe:d2:56:15:b6:
de:89:bd:42:d0:8b:0a:79:c8:ef:3a:39:26:5e:d7:
24:42:53:88:79:27:63:20:f7:d3:69:61:21:80:db:
6c:83:ca:6e:fb:31:4c:99:fa:60:9b:ad:07:1c:bd:
f1:4b:95:46:b1:41:bf:f7:3c:70:0f:d2:f6:d4:8a:
d9:88:aa:cc:ce:a4:8c:0b:77:30:b2:1d:52:d0:f9:
b0:3e:1a:79:51:3e:f2:d6:b0:7c:e8:f7:1f:58:27:
41:58:40:cf:c9:26:3a:b2:88:91:6d:36:05:16:0d:
72:c6:d8:0e:64:ac:44:e8:06:0d:c1:ce:d9:ec:67:
82:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:63:CA:BA:05:36:B3:5C:78:6E:1B:19:CD:7A:6B:A4:E2:25:15:22
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/i2PKugU2s1x4bhsZzXprpOIlFSI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:4b:c8:eb:79:4d:3e:ec:25:50:fb:98:76:54:7d:18:48:2e:
0c:4f:3e:54:ab:45:6e:3e:ea:9d:2f:f7:ba:44:40:51:9d:9d:
d6:87:cf:32:3c:3c:7d:2c:77:24:61:6a:57:64:a2:f2:47:4f:
4a:10:69:1c:d6:1e:52:6f:c9:51:cc:53:90:1f:bf:97:15:89:
42:71:ec:f0:d7:f7:b4:2b:28:c3:d1:e0:b5:e5:41:60:ac:63:
ae:0f:1f:69:da:d8:b4:8d:0c:5d:d5:c1:2e:d3:f7:1b:e6:16:
aa:74:87:24:a9:84:c3:89:cd:93:eb:27:13:98:3b:fe:7e:9e:
c3:69:42:a8:59:70:4f:91:78:7a:60:3b:b7:ad:dd:2c:d1:e4:
18:3d:72:6c:79:93:0f:e7:3c:95:ba:0e:ef:d6:a6:a3:fa:ad:
7a:27:14:0c:6e:98:22:a3:ec:e6:67:1d:66:3a:02:0c:af:49:
d6:78:87:d5:85:a9:42:c0:9e:1d:4b:4e:d1:39:e3:24:63:4e:
5c:c5:1a:c6:b2:90:85:45:10:9c:a4:e0:ad:08:d8:50:76:2e:
fb:0c:1b:37:40:0e:5f:8c:a4:d5:b6:70:95:66:77:77:46:0d:
d3:d8:3a:0e:d4:20:61:68:b1:e9:4f:7d:5c:5a:84:55:69:94:
16:3e:5a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 15:00:46 2024 by rpki-client on console-fra.rpki-client.org