Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/uplift/XwMvPJ8fFceCBYYE-tNd9UOA_lc.roa
File: XwMvPJ8fFceCBYYE-tNd9UOA_lc.roa (raw, json)
Hash identifier: sxUUfKXgspdWdMf60FpBeeaVTJDmTk7stdtzR56kkGo=
Subject key identifier: 5F:03:2F:3C:9F:1F:15:C7:82:05:86:04:FA:D3:5D:F5:43:80:FE:57
Certificate issuer: /CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Certificate serial: 14AE
Authority key identifier: 20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
Subject info access: rsync://chloe.sobornost.net/rpki/uplift/XwMvPJ8fFceCBYYE-tNd9UOA_lc.roa
Signing time: Mon 11 Dec 2023 14:51:05 +0000
ROA not before: Mon 11 Dec 2023 14:51:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15562
IP address blocks: 2001:67c:2938::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5294 (0x14ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Validity
Not Before: Dec 11 14:51:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5F032F3C9F1F15C782058604FAD35DF54380FE57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5d:51:a9:ac:7c:34:82:68:98:13:e5:ca:17:
4a:4d:42:f3:36:c2:69:1e:ea:5b:8a:9f:16:2d:be:
75:a3:5b:7d:da:06:2d:51:c4:36:8c:8a:1d:1a:ed:
3c:32:c6:a0:db:dc:68:42:57:c9:05:71:0c:06:f0:
28:a2:d9:9f:cf:d2:b5:f9:3d:d1:b6:94:7e:20:f6:
27:98:21:67:cd:6a:36:84:ef:cd:4b:7d:08:50:25:
01:e8:9e:b1:e4:3a:fc:ac:11:00:9d:4d:16:7c:52:
8d:b8:36:8d:6d:a1:55:b4:95:fe:04:e7:aa:9a:86:
36:1a:29:d7:85:bc:9c:33:64:f8:be:c8:5a:03:52:
68:7c:aa:82:62:77:9a:19:52:59:f0:0c:f7:25:db:
51:a4:9d:22:93:96:b6:1f:ca:fc:b6:f5:3e:42:77:
68:02:e9:fa:01:ba:22:8c:2a:fb:e9:90:6e:4c:11:
26:a4:46:2a:c7:4f:ad:63:d1:44:f0:d4:60:d0:9c:
96:fe:fc:ee:11:19:1d:72:74:c0:0f:32:14:4d:06:
e5:8e:28:f5:54:34:f5:a0:1e:71:43:c1:fa:df:d5:
c5:5f:02:43:84:60:2c:82:0c:89:00:8c:e3:c8:c1:
0d:98:d9:25:93:5a:a7:a9:f3:a2:76:38:60:37:f2:
30:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:03:2F:3C:9F:1F:15:C7:82:05:86:04:FA:D3:5D:F5:43:80:FE:57
X509v3 Authority Key Identifier:
keyid:20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/uplift/IBfMWA0nPFS6MGTNLNavObgEuIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/uplift/XwMvPJ8fFceCBYYE-tNd9UOA_lc.roa
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2938::/48
Signature Algorithm: sha256WithRSAEncryption
5c:e8:70:4b:67:16:37:c9:82:8f:18:48:9e:f8:f8:25:ec:14:
87:62:b3:02:51:ba:5b:32:79:95:4e:61:65:f1:68:43:01:61:
36:8a:8e:a5:4b:ac:1b:5b:32:e9:b5:03:14:fc:56:e3:4b:44:
9e:c9:1d:8f:43:a1:9d:ed:80:3d:3c:9b:5d:3f:85:84:2c:df:
c5:df:cd:df:9a:a6:f0:0c:53:65:b6:b1:e7:26:08:7b:ec:8b:
9f:98:4a:66:8b:5b:f9:26:4d:be:a3:e6:69:37:6e:68:de:1d:
ac:83:4d:aa:24:1c:62:ca:ae:dc:3b:d7:a3:68:44:4a:79:dd:
8e:b5:36:fb:61:c5:75:39:d8:f5:82:d4:1c:66:d1:70:d1:9b:
8f:a6:e7:f5:7a:48:c5:7d:6b:2f:2f:5a:95:18:9a:e9:75:0e:
c3:3c:94:7c:4f:eb:2c:08:64:91:b8:1d:67:3b:a9:48:0f:c4:
39:2b:04:e3:fe:4d:73:fb:bb:b5:bc:0a:db:dd:00:bf:4c:ff:
91:cd:33:31:20:96:4e:20:9f:b4:a2:c0:69:52:5e:57:7e:a4:
ec:7f:9f:51:a2:69:1d:7e:11:b2:5c:92:c9:d2:09:0f:48:4b:
f7:27:3e:18:48:8d:9b:87:6c:28:23:83:8a:0a:5e:cb:09:51:
93:e4:97:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 26 10:19:22 2023 by rpki-client on console.sobornost.net