Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/m8h-8obr831m-yZbtdTJc0JEJ5k.roa
File: m8h-8obr831m-yZbtdTJc0JEJ5k.roa (raw, json)
Hash identifier: v628OEWMTRDZbr7n/ReRkxLCKvdX9WLYPb9BZhgobFw=
Subject key identifier: 9B:C8:7E:F2:86:EB:F3:7D:66:FB:26:5B:B5:D4:C9:73:42:44:27:99
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 046C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/m8h-8obr831m-yZbtdTJc0JEJ5k.roa
Signing time: Thu 13 Jun 2024 23:55:03 +0000
ROA not before: Thu 13 Jun 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1132 (0x46c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 13 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9BC87EF286EBF37D66FB265BB5D4C97342442799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c2:6d:c5:c4:85:f6:81:e8:bf:1b:c5:e8:c1:
09:40:e8:72:a2:0c:3d:64:d6:64:c0:fe:7a:de:08:
36:cb:ad:a6:0c:15:86:83:49:06:5e:36:8b:f0:9c:
fa:8c:41:ef:d8:14:d8:01:4b:45:b9:92:34:ca:b5:
4b:7c:64:63:ee:00:90:c4:45:8f:39:5c:ca:7b:53:
23:4e:f2:83:d8:d8:7d:9c:79:20:23:5c:51:00:65:
52:0a:d0:a4:a2:db:1c:3b:10:2b:36:04:9e:1f:f9:
be:f7:b5:c1:92:7c:96:21:bc:0d:ed:bb:8c:87:78:
be:48:2d:a5:45:c2:fe:c9:32:28:91:b8:53:f7:df:
a2:4d:12:59:4d:2e:7e:75:b4:57:06:79:dc:c0:d5:
8b:7c:f0:ea:e3:44:29:26:b1:ac:14:96:f4:d0:cf:
ea:58:1a:53:8d:c6:2e:2b:ca:fa:4f:4c:92:ea:b2:
00:12:92:21:84:6a:e9:66:f5:0f:aa:28:f1:47:79:
38:07:4a:21:68:b4:28:70:ac:85:58:44:1a:ad:0e:
2d:56:dc:9c:6d:1c:06:05:72:78:44:1a:d0:f4:c3:
3a:33:a1:45:c7:75:72:d4:1d:cc:75:cf:c2:32:ea:
18:63:a6:0c:c3:7d:71:4e:99:0e:6e:23:b6:fb:75:
4c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C8:7E:F2:86:EB:F3:7D:66:FB:26:5B:B5:D4:C9:73:42:44:27:99
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/m8h-8obr831m-yZbtdTJc0JEJ5k.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:bc:fe:20:d4:75:43:99:af:b4:b0:ae:4c:93:98:51:95:6f:
4c:00:9f:29:d2:f7:35:ff:cc:26:1b:91:94:fe:7f:bb:47:bd:
dc:71:bd:d2:36:78:27:7a:a7:96:28:bb:16:a0:6c:65:c7:00:
75:26:69:f0:ce:e6:21:a8:92:d3:54:b7:29:84:d4:d6:f1:9c:
b2:0c:30:0f:5f:20:59:7c:a1:61:f0:8f:af:46:1f:93:63:6d:
e2:ec:c0:eb:9a:5e:f6:a2:12:92:8b:90:50:79:b2:d3:e1:ee:
a2:b3:fe:1c:de:8f:79:7f:49:ea:8b:9a:ea:de:ef:24:8d:61:
d5:ea:29:12:65:f1:87:16:b0:74:39:5b:fa:55:07:93:6a:53:
b2:92:92:ff:98:14:fe:7b:ef:81:b3:0c:56:ec:b2:88:e4:00:
0f:f6:32:fe:c8:7f:ed:16:77:52:b7:12:38:56:3f:2b:e2:9f:
14:79:b6:c4:e3:fa:a9:8c:c1:e6:45:b9:68:7a:13:b0:a7:89:
9f:f4:64:bc:b6:b4:a0:24:3c:93:7c:6c:10:49:fd:6d:40:da:
74:f3:70:69:e4:e5:a4:75:06:be:73:61:aa:27:b1:23:3b:af:
b2:b6:b4:26:32:5a:f7:fe:cb:e5:ff:0e:dd:88:9e:1f:48:7c:
76:7c:b1:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 07:34:39 2024 by rpki-client on console-fra.rpki-client.org