Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/lQMzUFOZ5rRhEM_iEBSMl9fMqd0.roa
File: lQMzUFOZ5rRhEM_iEBSMl9fMqd0.roa (raw, json)
Hash identifier: yvkbQDI9Xoq4v/VeNhfeqhXV7aI/khAvdffGGknX9vQ=
Subject key identifier: 95:03:33:50:53:99:E6:B4:61:10:CF:E2:10:14:8C:97:D7:CC:A9:DD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02F5
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/lQMzUFOZ5rRhEM_iEBSMl9fMqd0.roa
Signing time: Fri 03 May 2024 07:55:03 +0000
ROA not before: Fri 03 May 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 757 (0x2f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 3 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=950333505399E6B46110CFE210148C97D7CCA9DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d7:ef:98:e1:91:67:26:ea:20:01:7b:58:32:
89:b9:0e:f3:6d:16:33:94:6f:d5:0e:16:f4:1d:bf:
b9:3a:18:46:39:84:52:17:a3:8d:20:a8:11:b3:e7:
79:d7:04:69:a0:51:33:4a:bb:62:75:8d:a4:cb:44:
d1:b4:0f:03:f8:6d:fc:ad:6c:34:09:76:19:e0:59:
93:fd:65:56:d1:3f:c2:3c:62:79:15:dc:82:9d:69:
31:8e:f6:2a:d7:2c:28:fb:d0:ca:ec:c7:2e:7b:d8:
11:2f:13:23:c1:d2:b0:19:5d:a6:b1:0b:41:10:83:
c2:f6:1e:f8:b7:c8:f4:75:76:1d:29:51:af:e7:86:
d9:8b:2e:9d:72:1b:27:e6:b9:4b:f1:4a:a3:bf:df:
8d:ba:fa:c3:2c:5c:fe:99:e4:fd:b5:99:82:2b:ee:
88:88:23:05:0c:61:08:a6:a7:33:e9:bc:1c:7f:b9:
8f:3d:09:f4:0f:cd:36:d3:94:98:74:2f:83:00:a8:
6d:b1:9b:28:78:94:c8:c1:4e:06:0d:09:28:40:0f:
57:b5:a4:fd:32:c5:a7:ee:37:2a:08:6d:01:2f:c9:
1b:7c:79:39:ff:08:c7:ac:43:29:86:cb:84:47:7f:
6b:56:0b:a1:43:d0:cc:99:63:94:c5:6c:32:11:0a:
94:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:03:33:50:53:99:E6:B4:61:10:CF:E2:10:14:8C:97:D7:CC:A9:DD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/lQMzUFOZ5rRhEM_iEBSMl9fMqd0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:73:05:e0:11:58:5d:c0:f4:6e:c1:6a:71:da:45:37:94:26:
bc:52:ab:c7:72:c4:dd:f5:8f:5c:03:aa:34:92:30:f9:8b:c6:
6f:45:47:17:b8:22:b1:f0:50:5f:71:00:f1:34:a3:1a:15:83:
da:7b:e4:c0:aa:f4:bd:60:f3:03:9a:06:da:b4:56:e9:06:e8:
50:e6:1b:c4:63:b1:9d:e4:67:3d:61:12:b5:00:63:ea:65:db:
19:28:33:58:ec:0b:96:72:53:13:9d:dc:ff:82:90:82:fb:d2:
f4:39:ce:04:30:c8:ca:f9:2c:9a:7d:54:96:cd:bb:93:03:dd:
66:d3:08:1b:29:b6:5c:9f:90:41:f8:3a:79:93:73:b2:a0:19:
96:fc:75:9c:83:a7:8d:ea:4f:16:6f:c8:06:ff:d7:69:cb:fa:
c6:0d:c7:b6:09:5b:57:c9:3e:2f:04:c4:ee:ed:30:41:03:7c:
90:e0:34:c6:52:ed:fa:d3:63:0b:56:de:62:06:3b:9b:84:bf:
7b:de:79:c6:7c:49:20:0e:fc:a6:c8:a0:c8:b0:f4:c9:09:af:
29:86:fa:95:8f:b5:6f:ac:35:51:4c:55:89:ee:67:37:56:f3:
c3:0e:8c:22:98:b3:76:d6:68:d9:b2:ff:b9:e0:9e:e1:21:ad:
e1:5d:98:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org