Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/t_1H_fM84dP8NYVHuPwjliDUnPc.roa
File: t_1H_fM84dP8NYVHuPwjliDUnPc.roa (raw, json)
Hash identifier: gtGydnUP4Ra0TcMS7iZou2N6drK/REbqm661pAVjTXw=
Subject key identifier: B7:FD:47:FD:F3:3C:E1:D3:FC:35:85:47:B8:FC:23:96:20:D4:9C:F7
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0724
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/t_1H_fM84dP8NYVHuPwjliDUnPc.roa
Signing time: Fri 30 Aug 2024 07:55:03 +0000
ROA not before: Fri 30 Aug 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1828 (0x724)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 30 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B7FD47FDF33CE1D3FC358547B8FC239620D49CF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d1:5e:fd:96:b3:4c:24:df:ad:33:cc:4a:df:
51:92:61:6b:fc:8f:5f:f4:f4:f6:e5:66:7c:0d:3a:
5b:72:07:e7:91:3b:b8:af:b9:03:dd:fc:15:e2:6c:
f9:42:f3:75:48:f3:35:ad:8a:ef:eb:66:e2:34:44:
12:d6:bc:de:a9:d1:e0:c0:10:4b:7b:d2:2b:6e:85:
bc:3d:06:f6:b6:9f:03:96:d0:fe:8f:21:f4:8f:1b:
8d:fd:6b:65:16:26:33:4c:63:ad:ce:de:fc:58:9a:
e8:1c:ae:ef:bb:5d:54:36:94:5a:90:95:59:9d:d4:
da:26:92:07:c6:31:3f:ca:ab:60:a4:5e:6b:d0:5e:
08:f8:83:97:c5:6e:ca:98:a1:48:79:46:c9:96:ba:
da:94:54:f1:0c:88:e1:70:aa:3a:73:19:98:a7:61:
2d:99:ca:21:0b:cf:fb:7e:17:89:38:2c:12:c9:eb:
17:09:c7:94:63:3e:c7:04:2c:78:90:2f:fe:99:82:
97:77:15:05:e6:21:7e:f0:9a:e8:62:6a:92:cf:ea:
78:b1:25:56:f2:ad:c0:15:66:b9:de:7b:e3:58:e7:
bb:fa:81:74:80:9d:e1:24:61:25:13:9e:68:a4:9f:
9f:e4:4a:b2:b8:4d:46:b1:48:ae:18:27:57:84:f2:
90:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FD:47:FD:F3:3C:E1:D3:FC:35:85:47:B8:FC:23:96:20:D4:9C:F7
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/t_1H_fM84dP8NYVHuPwjliDUnPc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:cc:f9:af:5d:b4:a3:60:39:f9:26:07:83:44:e3:98:31:a5:
1e:23:5a:8c:81:a8:93:39:d9:78:54:ec:65:45:e1:ac:08:05:
2b:5e:68:2c:74:10:d8:2f:f7:e3:a2:34:b0:8a:88:a7:4e:a6:
3e:4f:a2:5c:6d:0b:15:22:e1:96:bb:35:34:e7:7d:d5:ba:4b:
1e:9f:3b:45:2f:eb:90:e8:3f:34:0f:ab:96:91:67:49:a1:4d:
2c:db:28:9b:c4:ec:7c:ca:53:6b:c5:33:f7:a0:b1:58:f2:23:
0c:fc:ba:15:e4:90:32:5b:b7:32:6d:69:11:1b:13:92:d9:29:
b4:1e:09:35:1f:92:a2:fe:c1:db:ec:0e:db:d4:ed:02:47:79:
f6:cb:e5:c7:7a:9d:fb:2e:15:e0:b1:d0:7a:30:a1:4d:a0:69:
3a:76:bc:4f:9d:47:1e:cd:0a:2e:88:d4:f4:c6:f8:89:c3:46:
ae:1a:b1:a1:81:b4:98:6f:4d:15:e9:07:19:e2:3a:78:1a:05:
63:0b:42:ca:f0:56:01:04:f2:2d:2f:77:e5:f7:22:64:21:11:
6c:87:1a:be:e2:01:06:e6:6b:2d:6b:7c:db:0e:ca:69:1b:75:
20:8e:d6:9d:db:6c:a3:fc:a2:43:ec:2b:c8:75:85:69:21:ff:
49:13:22:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 13:52:13 2024 by rpki-client on console-fra.rpki-client.org