Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/wo71XICfTqTVbgL5hAZFrmNVLQc.roa
File: wo71XICfTqTVbgL5hAZFrmNVLQc.roa (raw, json)
Hash identifier: /CZBdHk20sfxL8s48uMD/I3h7UG/3qS/56h4cIfY2Zs=
Subject key identifier: C2:8E:F5:5C:80:9F:4E:A4:D5:6E:02:F9:84:06:45:AE:63:55:2D:07
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: BE
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wo71XICfTqTVbgL5hAZFrmNVLQc.roa
Signing time: Fri 01 Mar 2024 07:55:03 +0000
ROA not before: Fri 01 Mar 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190 (0xbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 1 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C28EF55C809F4EA4D56E02F9840645AE63552D07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cf:a8:eb:df:27:d6:e0:01:8c:8f:0f:f9:64:
65:60:39:44:ae:65:49:6b:fa:ff:f0:75:5a:c3:99:
52:10:3f:3f:8e:e6:54:08:4e:c4:8d:f4:cd:79:63:
ff:43:55:cf:9a:2e:60:89:0a:bc:7f:9c:da:e3:0a:
b4:ba:7b:71:c0:7e:1a:55:9f:e4:49:e5:bc:e3:95:
e5:cb:8a:96:57:3d:3c:76:e6:0d:15:af:1a:8d:7e:
33:1a:51:16:14:4b:b7:fc:92:3e:09:5b:3c:2d:f6:
52:a1:2f:4e:ba:a5:7e:e9:6b:a4:59:94:ce:6e:eb:
5c:19:0b:58:ce:38:bd:90:0c:5e:eb:ec:11:99:a6:
7f:be:35:36:14:cd:b9:69:9e:01:cc:d1:3c:40:a7:
81:17:f4:b8:ba:0b:25:73:bd:2a:83:e2:70:02:10:
66:d1:53:65:64:c6:d8:e4:ab:32:e4:3a:c9:0d:89:
2d:8c:3a:67:0a:5b:3f:3d:8c:ee:47:79:01:28:63:
60:8b:39:2c:ce:07:03:9e:ba:ea:9d:39:cc:e6:9d:
08:4e:bc:1c:df:45:7f:3c:4d:a3:a7:31:cd:09:e4:
6f:0d:77:5e:2b:4b:f9:82:b9:93:97:ac:1a:71:7d:
35:ae:de:0a:09:e1:c5:38:29:08:0e:1b:aa:7d:9b:
78:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:8E:F5:5C:80:9F:4E:A4:D5:6E:02:F9:84:06:45:AE:63:55:2D:07
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wo71XICfTqTVbgL5hAZFrmNVLQc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ad:9c:7a:59:a7:f7:0a:3e:29:c1:04:e9:f5:13:45:59:c9:
f1:74:65:a4:3f:f6:39:4c:5c:e7:80:8e:77:5a:a0:cd:03:a9:
49:2f:75:3e:ed:c5:fa:cc:44:2a:22:e8:77:b2:bc:aa:cc:13:
b7:5e:e0:37:6d:28:3f:7f:04:e7:77:7c:30:e3:64:b8:3a:c1:
45:a1:53:ac:14:7f:0c:b9:06:3b:88:72:d0:8f:6c:de:23:14:
33:0e:f5:d2:69:dd:1b:bb:7e:97:1e:ea:d2:ff:8c:af:80:43:
15:0a:09:35:02:43:70:14:61:33:55:bd:12:6d:61:26:a3:9a:
7c:bd:bb:2e:57:ca:e6:34:1e:3f:f0:4c:65:2d:9b:8d:0d:50:
ff:05:50:1e:ab:7c:8b:b9:49:c6:dd:80:d8:94:b9:5b:bc:11:
0a:88:dd:7f:c8:6c:9f:40:f5:a8:2f:3e:a0:6a:4f:a9:db:f7:
98:cd:2c:55:a6:db:63:5e:d4:53:5f:ea:34:ff:c8:6e:62:3d:
f6:cd:91:d9:d4:71:66:ad:3e:87:70:55:8d:fa:4a:e0:50:02:
fc:6f:fb:8d:a2:0e:bd:f7:a9:0e:16:5a:02:eb:25:aa:cd:df:
2e:01:4c:93:98:5d:53:ba:b9:87:dd:68:3b:07:22:48:f1:93:
1c:23:bd:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org