Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/rUAwaeJh7osGLfMJovUIs9DbaP8.roa
File: rUAwaeJh7osGLfMJovUIs9DbaP8.roa (raw, json)
Hash identifier: yCtpRV26cHpfOV4kpsGQWznlCexXWHSvMs4vUOuwOLU=
Subject key identifier: AD:40:30:69:E2:61:EE:8B:06:2D:F3:09:A2:F5:08:B3:D0:DB:68:FF
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0556
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rUAwaeJh7osGLfMJovUIs9DbaP8.roa
Signing time: Tue 09 Jul 2024 23:55:03 +0000
ROA not before: Tue 09 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1366 (0x556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 9 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AD403069E261EE8B062DF309A2F508B3D0DB68FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0b:48:f2:cc:27:8a:14:a6:0d:6a:cc:4e:6d:
48:5a:77:3a:23:79:dd:4b:72:e3:a8:fc:4a:78:50:
40:fd:cf:aa:82:33:80:f9:ba:8c:6b:b2:1c:9c:f5:
33:df:11:d4:1b:e0:a4:26:95:b1:5f:c4:ea:03:46:
08:ad:4f:32:f8:56:ac:0d:3d:da:29:3c:af:5c:97:
f7:45:ac:c9:2f:b6:9d:18:ae:84:47:1f:e6:ec:d3:
23:5e:8a:75:91:8a:57:c6:11:b7:64:b1:59:51:1d:
ab:dc:76:42:9c:de:64:bd:2b:07:58:10:a4:f8:92:
26:47:2c:22:8c:26:e0:2e:21:b2:20:51:d1:4b:be:
9f:59:69:5c:ba:5b:6f:ce:d7:01:6d:3f:00:9d:be:
27:e6:74:38:c2:56:99:d8:52:b0:af:20:cd:ba:c7:
03:6a:26:0a:de:a3:b5:82:54:7b:41:64:9f:f7:ee:
c9:52:8c:f6:d3:9f:56:9f:68:af:f5:98:a4:69:d8:
79:1d:eb:52:be:b6:76:fb:bb:b2:02:1d:ea:13:fe:
65:53:89:41:72:15:cb:8e:77:3a:50:9d:b7:bf:39:
58:61:99:10:88:a9:1e:e0:aa:52:6f:bb:d1:52:e5:
f4:26:53:fb:39:c9:c7:52:e0:f9:0a:20:a1:ff:25:
1c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:40:30:69:E2:61:EE:8B:06:2D:F3:09:A2:F5:08:B3:D0:DB:68:FF
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rUAwaeJh7osGLfMJovUIs9DbaP8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:b4:3b:83:29:08:4d:dd:43:a0:47:67:c8:35:67:cb:e9:b2:
d2:b2:a9:a4:79:81:ba:75:07:c5:8a:bd:de:d8:f1:fe:ce:da:
d1:a8:cc:b1:e8:15:ac:18:74:2a:e9:32:a2:29:ef:77:7c:27:
a5:39:53:2c:14:4c:9b:5e:26:5c:e2:85:aa:7a:3d:2d:cb:4e:
2f:ab:73:70:94:ec:2a:96:6e:58:51:68:39:f5:6c:14:28:28:
0f:6b:c4:ae:6e:9d:8f:9a:bb:33:5c:65:e5:8c:0d:a2:e2:50:
02:70:27:d2:7f:5f:66:00:96:d0:97:5b:78:59:5e:3f:0c:5d:
9a:07:57:59:b4:59:6b:36:78:b2:a6:ba:dc:35:d6:66:7e:62:
ba:1a:0f:a2:3f:2c:d4:75:03:87:f7:57:bd:20:34:24:06:69:
b4:fd:26:b8:0b:d6:e3:aa:83:42:f1:e0:6a:3a:33:88:bf:d5:
67:6a:99:a7:9a:65:03:a0:de:08:f5:69:15:c5:f5:f3:40:e8:
2c:12:da:22:f1:c7:b7:eb:f0:24:84:9c:95:1c:e9:f8:df:6a:
9b:00:f5:a9:0c:40:90:6c:da:7d:fc:3d:d9:fc:1b:31:bc:e3:
cb:ad:3a:f7:79:58:88:f0:66:b6:de:29:80:e0:e6:66:1f:a8:
56:cb:c6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 05:20:47 2024 by rpki-client on console-ams.rpki-client.org