Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/pfeXHjlggaVSu-mN52VUDODE8QI.roa
File: pfeXHjlggaVSu-mN52VUDODE8QI.roa (raw, json)
Hash identifier: nsuvjVw9cPglepCKEAil+X+FoqhpwfmmqPr7qyLv1EQ=
Subject key identifier: A5:F7:97:1E:39:60:81:A5:52:BB:E9:8D:E7:65:54:0C:E0:C4:F1:02
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0322
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/pfeXHjlggaVSu-mN52VUDODE8QI.roa
Signing time: Wed 08 May 2024 07:55:03 +0000
ROA not before: Wed 08 May 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 802 (0x322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 8 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A5F7971E396081A552BBE98DE765540CE0C4F102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:57:25:ee:dd:79:2a:16:3f:bc:4b:49:7f:a4:
ff:19:da:d4:60:58:d5:d2:b5:d8:73:22:1e:00:84:
9c:46:42:71:1f:f1:46:a9:2c:ee:b3:12:63:04:31:
ec:f7:ca:53:67:ff:2e:71:70:0d:8f:68:f8:16:87:
3c:12:a2:82:c9:9a:fe:e8:44:b4:3d:dd:73:13:bb:
f5:68:50:41:da:97:f6:52:7b:18:e8:1f:99:f2:7e:
98:af:64:15:41:47:49:69:32:41:cf:8c:bc:e7:e1:
17:4e:2b:51:b5:f7:0a:9a:f1:b7:06:72:90:43:1f:
80:9b:72:46:cd:0a:7e:ae:91:a8:c6:11:e6:05:f9:
a9:80:9f:33:a1:5e:93:72:66:cd:8b:f1:68:88:4d:
70:5a:9d:4d:17:36:a8:e6:ae:84:cc:79:4d:83:c4:
7f:e2:01:45:36:0f:07:a0:36:19:2c:86:a2:5e:a6:
54:3c:9e:fb:59:84:68:3b:8d:6b:5e:6c:9c:80:65:
da:6a:41:68:6e:e5:00:fe:4a:b7:cb:a4:58:e4:27:
ba:33:c0:0a:86:4b:53:99:b0:3d:41:c8:af:e5:cb:
ce:6d:7f:dd:7b:8f:ce:8a:e7:2d:e8:82:e7:c0:e6:
46:f7:35:32:6d:22:78:9d:08:45:37:f2:a9:26:04:
4e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F7:97:1E:39:60:81:A5:52:BB:E9:8D:E7:65:54:0C:E0:C4:F1:02
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/pfeXHjlggaVSu-mN52VUDODE8QI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
34:7c:1c:71:b3:9d:6b:b8:70:c2:12:96:66:5c:c5:42:71:6b:
cc:2c:c1:ae:cd:32:88:33:fa:ac:b6:96:16:6b:b6:6a:9e:e7:
17:96:37:6e:ca:0f:07:fd:b7:16:44:b1:11:9e:0f:6a:6f:99:
4b:65:99:51:25:6f:cc:eb:e1:6c:04:40:97:a6:48:fd:63:5b:
7c:15:bc:c8:17:4a:02:9c:7c:39:65:2f:1e:b1:9f:96:52:eb:
a2:9f:8f:d5:57:c1:17:5f:d8:04:50:99:59:a3:fa:2a:04:ae:
82:8c:31:bd:e6:68:05:ff:01:64:b3:30:dd:b2:ac:39:db:e5:
a8:ad:7e:bf:8c:7a:d0:fc:28:07:65:eb:86:6f:a8:89:f0:32:
cc:57:be:85:de:8a:3b:99:b8:cc:6a:41:6e:63:2d:c3:26:0f:
8d:73:10:76:4c:5a:57:0d:82:67:76:45:cd:ba:c5:d5:de:f5:
00:71:21:20:d9:b9:5f:ce:10:79:b5:a8:2e:20:fd:42:f7:3a:
a4:41:f1:57:a1:e9:c2:c5:20:8b:de:fa:81:31:f2:da:e8:c8:
4a:29:f0:65:a0:20:cf:91:5b:69:e5:1a:ab:43:20:e9:ce:33:
d5:9e:21:d8:a9:2d:eb:8d:37:55:19:9b:6d:50:40:f2:94:3d:
12:35:3f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 16:42:12 2024 by rpki-client on console-ams.rpki-client.org