Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/zf8dpzZ2tFhKEXKxhXbOS7HBncg.roa
File: zf8dpzZ2tFhKEXKxhXbOS7HBncg.roa (raw, json)
Hash identifier: pRNb30psO/Vc/W2RZl8vsR+gsEM2z3QqWbNX8pysPLE=
Subject key identifier: CD:FF:1D:A7:36:76:B4:58:4A:11:72:B1:85:76:CE:4B:B1:C1:9D:C8
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 029E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/zf8dpzZ2tFhKEXKxhXbOS7HBncg.roa
Signing time: Tue 23 Apr 2024 15:55:03 +0000
ROA not before: Tue 23 Apr 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670 (0x29e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 23 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=CDFF1DA73676B4584A1172B18576CE4BB1C19DC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f0:36:8a:fe:a8:ea:f4:f7:e4:fb:1c:95:37:
5a:5d:91:84:92:59:cc:d3:86:05:5b:5d:98:cb:39:
bc:01:02:46:e7:67:89:3e:a1:bc:2f:05:87:ed:bd:
58:4a:88:b8:a6:d7:cc:cd:48:a6:f0:bd:53:ff:a4:
90:d5:d7:0c:cc:4d:bb:30:e7:5f:e4:60:ff:7e:00:
4f:f2:19:c9:a9:cc:95:8d:de:a2:4d:30:6d:5d:aa:
2a:19:28:a7:f0:f4:e5:1c:c6:6e:01:b8:7e:34:ed:
df:0d:c3:07:a8:68:03:43:0b:e2:c5:6d:60:21:61:
d6:af:07:08:a7:30:48:b0:fe:7c:9c:2a:9b:d7:22:
b6:fe:d8:6f:63:c4:92:84:70:58:01:e6:92:80:af:
70:0e:11:e6:04:20:ac:f3:4c:5b:9a:fa:8e:60:cf:
5e:b3:8a:2f:f4:77:2f:e8:e2:05:88:d4:15:2a:03:
a8:2f:ee:b7:16:70:98:a8:64:e3:07:98:0f:44:2d:
ba:a8:79:6b:ed:44:64:c6:e6:9e:b0:45:2d:53:ff:
25:e3:59:7e:bf:77:36:08:85:36:01:c3:1c:4b:ff:
78:30:70:7d:36:95:ca:c8:9f:8f:b7:e5:dd:7d:68:
45:d2:1a:ad:a1:47:4c:4e:a4:e4:90:17:7f:31:95:
00:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:FF:1D:A7:36:76:B4:58:4A:11:72:B1:85:76:CE:4B:B1:C1:9D:C8
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/zf8dpzZ2tFhKEXKxhXbOS7HBncg.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
24:59:b8:b4:03:61:2d:6f:97:58:61:da:85:0d:3c:71:d4:e2:
90:a7:a3:77:2f:30:37:48:af:17:4e:ff:74:b1:9e:a4:a9:90:
6a:9d:fd:b6:c1:38:d6:64:f8:b4:c6:74:4b:f0:60:c3:b3:9f:
56:ab:da:0d:4c:9f:9b:be:e8:39:3e:9e:37:57:d3:fe:63:d7:
63:ff:c4:f5:ee:17:cc:54:02:bf:62:d3:7d:02:e7:5f:3d:d7:
76:f8:6b:d4:72:c4:9a:f5:37:e7:b3:27:57:f0:e9:9b:8a:5d:
e6:86:35:6f:a3:d0:fb:b3:24:fc:f4:56:1c:df:00:ca:41:96:
c7:27:10:a3:a3:f3:77:b9:29:bd:8b:eb:0d:e7:15:a6:be:8f:
f5:e6:eb:d3:7c:d8:3f:94:d8:a1:a1:36:4e:e0:46:4c:c2:de:
2a:65:2c:ba:26:6b:34:ee:73:de:9c:f7:63:2c:ee:3d:d8:de:
db:c1:5a:74:81:3f:8c:36:b4:44:89:b3:67:2a:6e:1b:64:01:
c5:b8:47:ca:c7:64:b4:2a:68:55:dc:8e:15:14:74:37:a5:3a:
40:37:0b:31:f2:45:34:1f:1f:1e:21:42:ab:a1:09:99:0c:7c:
7b:8a:82:33:8a:65:51:67:6e:fa:52:0a:be:a9:fc:e1:c5:35:
da:64:21:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 22:12:03 2024 by rpki-client on console-ams.rpki-client.org