Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/xaVADj5jb-6_F8eAHOxcQh9Cfok.roa
File: xaVADj5jb-6_F8eAHOxcQh9Cfok.roa (raw, json)
Hash identifier: 6SsdpUESeOGVEMrgwJ5r2Lsi6pUsIjGEy3F2uole9HM=
Subject key identifier: C5:A5:40:0E:3E:63:6F:EE:BF:17:C7:80:1C:EC:5C:42:1F:42:7E:89
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02EF
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xaVADj5jb-6_F8eAHOxcQh9Cfok.roa
Signing time: Thu 02 May 2024 15:55:04 +0000
ROA not before: Thu 02 May 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 751 (0x2ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 2 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C5A5400E3E636FEEBF17C7801CEC5C421F427E89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fd:70:61:0d:76:a1:b2:05:01:39:ed:00:18:
bc:96:e9:fc:3f:68:c0:c4:f9:e9:b4:68:11:44:bc:
82:64:fe:98:70:24:86:09:80:6e:81:1c:36:4f:f9:
05:69:16:e5:5a:63:75:d1:dc:6e:e0:b0:48:83:f0:
4c:29:4e:1d:67:07:5c:6c:b3:a0:a9:78:aa:2f:ec:
e4:8e:b7:f4:6e:36:9c:7d:0c:53:58:99:fd:58:99:
b5:72:12:ff:41:0d:12:33:46:d9:c5:df:f8:5c:db:
40:79:e2:46:58:cc:3a:45:65:14:d7:71:34:85:52:
38:62:86:bf:d9:9a:91:c4:d4:f1:b6:b7:35:2c:e8:
d9:c6:ad:92:e2:cf:e1:92:44:46:b6:34:c4:cd:2e:
e0:1d:94:cc:24:a7:af:b7:62:1b:b4:32:a9:6b:1c:
a0:73:56:29:c2:e0:17:77:45:77:90:8f:92:88:4c:
8d:6b:cc:55:3b:d9:51:4e:93:91:66:f6:77:31:47:
b5:f6:b0:dd:2a:34:fa:30:ed:2a:d6:c8:a5:2a:c4:
f3:24:d3:24:5a:21:fe:ff:1d:e5:21:61:5a:11:e6:
55:2c:88:58:d2:cb:8f:ad:02:1d:6b:e1:16:23:6a:
07:f1:7d:38:f5:ac:b8:1f:a1:9b:1a:ba:a5:fb:cd:
39:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A5:40:0E:3E:63:6F:EE:BF:17:C7:80:1C:EC:5C:42:1F:42:7E:89
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xaVADj5jb-6_F8eAHOxcQh9Cfok.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:56:72:f9:39:20:53:e9:ec:f6:ff:0d:43:ec:f4:45:40:77:
33:73:ab:99:e3:a0:1c:08:bd:58:cf:66:72:27:8b:62:44:0a:
fe:a3:e7:c0:4c:2f:4c:26:d1:0d:3b:65:9a:13:92:99:27:2d:
94:23:cb:c1:fb:1f:93:e9:a7:03:03:81:04:00:39:76:eb:ca:
64:fd:48:ed:b0:21:cb:1c:cd:85:89:db:d3:a6:67:2c:fe:45:
b3:91:52:cb:fb:4c:4e:a4:47:33:2d:5e:23:b7:19:2c:cb:b2:
49:62:ed:3e:fa:41:d0:b2:0b:df:9e:48:20:32:32:37:5f:81:
f0:b3:9d:58:b6:57:96:1b:fb:64:6c:5f:4f:29:80:04:6d:c8:
e7:27:0e:cb:ea:9e:fa:0b:58:22:b9:f6:e2:af:8f:2b:eb:18:
1c:3c:24:3e:e3:00:12:58:82:57:2e:79:5a:2a:80:16:e1:b0:
65:e7:8f:84:57:6f:fc:86:3c:06:0b:80:f9:fa:e4:be:69:20:
71:9a:62:e9:37:97:da:bb:39:91:91:38:4d:ba:ef:df:02:18:
94:d2:3c:45:df:59:77:9a:e2:a2:f9:8c:9c:f4:7d:85:5e:b8:
0e:b7:49:99:f4:15:db:c6:ca:91:b0:a4:d3:41:58:e0:4f:20:
dc:7c:d0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 22:39:55 2024 by rpki-client on console-ams.rpki-client.org