Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/uyqXz_T8gQHu0wpIziju9k68a8M.roa
File: uyqXz_T8gQHu0wpIziju9k68a8M.roa (raw, json)
Hash identifier: KYaT83g2PIrmvC3njTQrDRL5MMDFxWxPz9dTu1SVtHI=
Subject key identifier: BB:2A:97:CF:F4:FC:81:01:EE:D3:0A:48:CE:28:EE:F6:4E:BC:6B:C3
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 8B
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uyqXz_T8gQHu0wpIziju9k68a8M.roa
Signing time: Sat 24 Feb 2024 15:55:03 +0000
ROA not before: Sat 24 Feb 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Feb 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139 (0x8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 24 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=BB2A97CFF4FC8101EED30A48CE28EEF64EBC6BC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:b8:d6:ea:21:a3:8d:d8:3e:74:75:47:d9:
b8:13:59:b8:c4:69:e8:82:e8:ba:8f:23:d0:63:df:
64:d1:27:86:9c:e5:4e:f5:8e:10:00:da:d8:3b:d7:
ae:c1:1c:fa:ca:f4:95:7e:e4:f5:1e:27:14:39:d1:
7c:f9:63:ca:7c:f6:99:b7:74:5c:c5:e6:62:df:b1:
8b:13:88:73:ab:7e:3e:4c:35:5a:25:ac:c2:43:34:
c4:8d:de:b7:d5:d6:b3:1c:aa:d6:a4:c6:26:43:60:
a7:0b:ee:a7:0d:cd:d6:bd:72:1b:e8:2a:1a:73:bc:
7d:67:74:9a:11:7d:20:05:f8:bc:e3:e4:a2:ea:8a:
67:7b:e1:9c:58:c6:ef:c9:10:07:d7:63:71:a2:46:
69:60:2a:cf:72:ce:28:01:14:1a:7c:73:dd:53:90:
1e:27:08:4c:38:4e:48:6c:f0:46:c8:f6:71:09:41:
22:79:6d:44:c8:67:ce:e2:52:d5:1b:7e:e7:de:3e:
47:05:8a:f1:15:81:0b:e9:c4:f9:e9:b9:16:f7:b5:
94:b3:7c:c8:67:e4:c3:11:db:3e:cc:86:84:45:cb:
9b:1d:78:75:48:6c:fc:7c:d3:2f:76:19:2f:41:f3:
f7:95:e6:ae:9f:9c:68:51:c2:7a:65:75:5b:fe:9c:
83:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2A:97:CF:F4:FC:81:01:EE:D3:0A:48:CE:28:EE:F6:4E:BC:6B:C3
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uyqXz_T8gQHu0wpIziju9k68a8M.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
02:dd:2a:dd:2a:b2:2c:48:d4:c4:70:6c:2f:90:a5:6b:9d:c1:
13:bd:c9:a7:22:53:9d:55:33:e4:cc:44:2f:82:52:14:9d:b0:
94:97:86:93:3d:94:5d:e9:f3:ac:33:a1:f8:99:40:e4:4f:58:
64:ac:16:00:d6:fa:e9:69:b1:03:58:7e:17:dd:b9:fa:18:6d:
a9:16:28:38:20:26:c2:0d:bc:a2:71:a9:4d:66:1f:0b:47:80:
cc:06:c8:5f:fb:36:22:53:62:9f:37:6e:45:9d:54:dd:c4:6a:
4f:df:26:ad:a5:d1:e8:d5:13:99:5a:35:8e:17:4e:97:1b:da:
69:98:cc:65:50:c8:9e:6a:c9:c5:5d:4f:ab:dc:21:79:c5:42:
29:75:40:e4:5a:bc:59:25:fa:d6:85:b2:6f:c5:85:e8:a3:b4:
10:d0:49:cc:cb:73:96:a4:ec:42:44:36:39:21:66:40:ae:06:
48:54:03:0d:79:e7:23:cb:07:4c:4b:95:f7:41:59:dd:00:02:
c9:22:21:e9:bf:7d:4c:32:f8:66:56:e5:f0:f7:3f:7f:a7:44:
69:e2:44:dc:33:c2:2c:92:5b:42:48:85:31:fe:3d:25:3a:0a:
c6:2d:56:de:cd:f5:35:0f:70:82:57:fe:bb:3e:2e:3c:74:50:
66:be:f1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org