Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/wyNFOp8gu53rCMZZWAdVWpjQhYc.roa
File: wyNFOp8gu53rCMZZWAdVWpjQhYc.roa (raw, json)
Hash identifier: 3XKY2aY0Tf2+iZuW8WRWnQO1XKmFhi1JMWwbwUloKpw=
Subject key identifier: C3:23:45:3A:9F:20:BB:9D:EB:08:C6:59:58:07:55:5A:98:D0:85:87
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 88
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wyNFOp8gu53rCMZZWAdVWpjQhYc.roa
Signing time: Sat 24 Feb 2024 07:55:03 +0000
ROA not before: Sat 24 Feb 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Feb 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136 (0x88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Feb 24 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C323453A9F20BB9DEB08C6595807555A98D08587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ba:26:93:0d:54:5a:ad:2e:13:c5:f6:a8:2c:
69:2a:f1:b8:d0:fd:33:45:11:ac:5a:f5:5b:d9:74:
db:72:68:83:dc:20:67:f7:64:db:02:9f:47:3e:09:
40:d6:43:d3:c2:53:94:ab:03:fc:f0:3b:b7:52:52:
49:68:c8:2d:7a:d4:ad:79:8b:9e:64:ab:de:82:3d:
b2:fa:ae:75:8d:99:dd:4a:e2:fe:b5:40:52:f8:2a:
de:09:83:30:19:76:48:a9:38:86:b7:0e:91:b3:8d:
9d:4d:62:64:9b:19:42:51:78:37:e4:62:00:29:03:
87:e9:53:17:1e:3c:2d:49:73:ea:f1:8f:09:59:be:
98:37:7d:62:50:f9:54:56:d4:90:7b:4d:4e:c1:34:
d0:e8:2b:b5:b5:23:99:f5:5a:e7:3a:d0:1c:9b:3e:
53:0b:a6:6d:03:dc:0d:8d:8d:90:3c:d3:03:45:d0:
bb:06:ee:71:e3:d1:16:36:7b:5b:0f:1c:ad:f6:10:
99:4b:48:42:df:35:a7:61:39:21:80:ba:d7:10:a7:
eb:a7:6f:ca:73:a6:d0:d7:1b:41:b6:ef:fb:84:66:
e4:aa:c6:32:6b:ad:d7:6e:33:a8:8f:7a:cc:8e:ec:
0f:09:9f:18:c7:12:2a:a5:47:03:ae:5b:2d:2e:30:
85:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:23:45:3A:9F:20:BB:9D:EB:08:C6:59:58:07:55:5A:98:D0:85:87
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/wyNFOp8gu53rCMZZWAdVWpjQhYc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b1:02:7d:7d:f5:fc:c2:e6:c0:3d:6e:c4:87:ea:3e:32:d0:
8d:1d:6e:d2:a0:21:d0:c0:10:05:3a:32:0d:f6:65:5d:f8:57:
5f:86:a8:c1:ff:95:a1:2c:9e:e5:6c:f8:fc:a7:e9:81:46:04:
78:cd:25:fc:71:e3:ea:3b:64:89:83:23:63:2b:7a:50:d8:65:
38:c0:91:be:56:0a:ba:02:3c:73:a2:e3:e3:d8:11:e6:b5:62:
d2:e7:03:bf:b0:94:c1:7a:b7:8d:76:11:da:3e:14:88:29:42:
30:3d:1b:34:db:d4:56:97:b0:ad:c1:77:8d:63:69:f1:04:7e:
42:78:f5:bd:ec:8c:5d:ec:d5:e8:2f:ec:45:c4:5e:32:3b:ac:
27:a5:d3:00:09:2a:ea:0a:ee:60:7c:56:49:74:dc:36:b4:e8:
e6:37:b5:09:39:9d:9f:53:2f:3e:ec:88:ac:9c:c7:19:27:07:
3f:40:a4:b6:0c:e1:71:e3:94:21:d4:72:80:87:01:44:b7:cf:
7f:41:9e:57:63:9c:21:86:b4:d6:93:77:63:13:8f:65:47:f1:
c6:73:3a:f1:72:06:e3:03:b0:d0:1e:4e:f4:48:8b:dc:84:b5:
b0:84:95:d2:5d:03:1f:99:62:30:1c:03:a7:21:11:6a:c6:97:
ce:31:98:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 13:43:55 2024 by rpki-client on console-ams.rpki-client.org