Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/rYJb1J7cY1dTS72bhKLUTOCmMUU.roa
File: rYJb1J7cY1dTS72bhKLUTOCmMUU.roa (raw, json)
Hash identifier: +rCqPha9AIq6ub2/HshSD0DbjW6V0gFYzknYUBu2hys=
Subject key identifier: AD:82:5B:D4:9E:DC:63:57:53:4B:BD:9B:84:A2:D4:4C:E0:A6:31:45
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0A13
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rYJb1J7cY1dTS72bhKLUTOCmMUU.roa
Signing time: Thu 21 Nov 2024 15:55:02 +0000
ROA not before: Thu 21 Nov 2024 15:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2579 (0xa13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 21 15:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AD825BD49EDC6357534BBD9B84A2D44CE0A63145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0c:54:86:b0:f5:bc:e0:72:eb:db:81:4a:3b:
09:88:35:71:39:c2:50:5c:d5:5b:c2:17:bc:4b:f4:
b1:16:04:b6:d4:7d:e4:d8:14:b4:b4:8c:82:bf:5a:
c7:4a:04:3b:37:6a:ef:85:d1:a0:6c:78:68:b3:d2:
4d:2e:ea:69:52:20:9d:c6:b4:70:22:82:e6:b1:6b:
41:b7:c3:07:94:74:4b:5c:f3:7e:21:af:5c:49:1e:
2d:0c:e1:3e:35:11:b9:9d:e0:65:2a:c1:61:7b:5e:
45:d6:b6:19:fa:06:a4:76:52:f4:c8:ab:d9:65:4b:
18:53:3f:cd:f1:cb:9e:d4:92:b2:fb:52:9d:e9:7b:
b1:5a:66:4a:42:8d:39:82:8b:d6:d2:67:46:18:a8:
a1:4d:c3:ce:b9:27:1a:15:1f:b1:79:9f:6a:f3:3b:
9d:a4:49:98:1f:ee:18:67:c2:96:24:0e:51:b6:3e:
7f:a2:ac:52:b3:05:79:27:20:1a:b6:bd:db:c8:dd:
b8:9d:43:aa:b7:36:ea:b6:66:0e:96:91:56:79:6c:
a2:4e:54:81:a4:f3:0a:9e:9c:fb:71:99:dd:34:e9:
aa:8f:2b:2e:dd:bc:83:52:ef:e3:da:5b:46:5c:9d:
53:41:a4:16:63:12:c2:fe:40:bc:f1:e9:0c:23:5b:
97:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:82:5B:D4:9E:DC:63:57:53:4B:BD:9B:84:A2:D4:4C:E0:A6:31:45
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rYJb1J7cY1dTS72bhKLUTOCmMUU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:72:92:4a:95:cf:a8:0c:20:b0:0f:09:af:f9:12:f2:e5:d9:
e1:a7:66:4f:80:f6:f9:23:18:82:5e:75:ff:9e:85:4b:4c:8b:
10:4e:46:33:4b:be:c4:0c:dd:a7:6b:4c:d0:f5:f5:df:4f:5d:
53:30:0c:44:18:a2:8b:02:ba:49:f4:82:b4:a6:e4:d1:59:c2:
6a:c5:c7:be:cc:a8:2e:df:64:23:5c:ae:f5:d5:43:01:e4:99:
88:98:74:e3:0f:82:2d:5a:75:ed:c0:68:37:0e:5a:17:a7:1e:
49:84:06:6d:c4:20:d9:5f:c7:cb:e9:26:ba:1b:72:cc:43:13:
27:1b:ab:79:8c:f0:b6:67:13:bc:88:19:13:8c:57:f4:75:22:
55:98:1f:e6:0a:0a:ba:0c:22:2b:bf:73:97:8f:79:5f:5d:cb:
dc:f6:39:70:de:97:6a:81:fe:f8:fc:19:af:98:7b:c7:49:5d:
e9:06:d0:2d:c9:59:8c:b8:10:92:5b:69:7d:a7:49:71:5a:42:
cb:b7:ed:e0:bb:20:c4:1d:19:ab:96:d3:d2:ec:98:7e:ff:fd:
79:8c:2d:cc:03:a6:4c:97:c4:d2:d5:3d:bd:44:b5:e7:23:19:
58:dc:cb:83:2a:fa:01:b1:2f:23:7e:ea:09:86:99:ca:b0:cd:
44:c4:89:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:32 2024 by rpki-client on console-ams.rpki-client.org