Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/-8unKAe1VBgl211pXdR1CuviYtI.roa
File: -8unKAe1VBgl211pXdR1CuviYtI.roa (raw, json)
Hash identifier: RY02DiRes0hOOjjABqlF9S2JOXAfh9VU5pixCebs+GA=
Subject key identifier: FB:CB:A7:28:07:B5:54:18:25:DB:5D:69:5D:D4:75:0A:EB:E2:62:D2
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0691
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/-8unKAe1VBgl211pXdR1CuviYtI.roa
Signing time: Tue 13 Aug 2024 23:55:03 +0000
ROA not before: Tue 13 Aug 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1681 (0x691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 13 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=FBCBA72807B5541825DB5D695DD4750AEBE262D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2a:af:bf:b4:99:f4:41:4d:3a:bc:26:15:46:
88:69:72:2c:07:b5:3f:1f:ca:70:22:87:7c:2e:93:
9f:5f:19:29:81:5c:88:a9:85:32:c6:81:7d:5f:11:
e3:0b:d4:d3:45:16:4c:68:18:11:ec:b9:20:13:d5:
c8:fe:ca:0d:21:9c:48:5e:32:65:bb:3f:08:d0:7a:
8e:ac:df:3f:bf:4a:23:ff:eb:f7:d7:36:46:d5:bd:
64:c2:8d:f1:72:18:85:fe:b9:e3:c7:01:d3:9c:f6:
43:9c:95:7b:35:37:aa:2c:0b:07:fd:79:47:f3:e0:
10:1c:da:73:28:2e:58:c9:e4:ac:c3:5e:83:4b:54:
8a:77:a6:7f:8f:5f:98:22:b1:52:db:93:95:f1:0b:
5a:21:dd:60:2b:f2:81:f6:43:86:14:7a:3a:c8:61:
32:d7:6f:e8:ee:67:47:d4:3c:8f:b5:40:a2:bf:4f:
17:47:fc:2d:a4:5c:6d:ca:81:49:1d:43:73:db:cc:
80:22:50:62:15:0a:66:53:2f:02:47:ef:66:44:f0:
12:a9:c2:4d:75:cc:c6:19:85:b6:5d:df:bf:5c:de:
a6:9f:9f:1a:2c:cd:a3:eb:ec:3a:fd:11:ed:fa:93:
cb:cd:68:f1:50:7c:a7:11:36:e9:81:73:4b:e6:c1:
d2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CB:A7:28:07:B5:54:18:25:DB:5D:69:5D:D4:75:0A:EB:E2:62:D2
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/-8unKAe1VBgl211pXdR1CuviYtI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
91:df:0c:69:89:02:b5:6f:47:73:bb:85:48:61:1b:0f:5c:00:
84:00:9b:05:9b:6a:35:38:97:c5:9e:ea:a1:d8:3c:70:44:b7:
03:b0:40:87:9a:8f:87:0b:d6:41:7f:34:d8:f3:b3:fc:8e:a2:
25:1f:82:19:67:bb:1c:f5:6e:29:a9:33:4b:ad:f1:82:bd:9e:
b1:1e:71:e0:3b:9a:1e:9d:f8:38:7f:58:a4:e8:f5:38:a1:69:
ad:d8:7a:48:63:27:b6:34:b0:49:4d:f2:a8:a1:77:cc:c2:e5:
03:72:bb:8f:15:f1:b9:66:88:0c:d1:ab:7f:45:98:45:d8:d2:
44:34:8b:9e:9f:31:2e:a7:47:96:b5:c7:93:3f:da:5d:73:c5:
f0:55:40:ef:5b:e5:7e:23:a6:40:c3:60:03:83:b6:fe:61:39:
56:b2:e7:48:f2:11:71:41:48:e0:d1:14:af:67:bd:ca:b0:e0:
09:88:93:e9:da:7f:9c:87:7e:92:0c:e1:1d:13:7b:0b:8a:f3:
52:8d:c4:7e:fc:37:4a:5b:cb:a7:47:93:74:d7:17:20:c6:0e:
23:c3:e3:22:20:78:eb:23:15:7a:2f:ef:f6:1b:d3:e4:44:97:
e6:31:94:40:f9:40:2b:73:08:71:10:11:ef:c2:44:a0:a7:f4:
26:0d:72:ad
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA4MTMy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEZCQ0JBNzI4MDdCNTU0
MTgyNURCNUQ2OTVERDQ3NTBBRUJFMjYyRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuKq+/tJn0QU06vCYVRohpciwHtT8fynAih3wuk59fGSmBXIip
hTLGgX1fEeML1NNFFkxoGBHsuSAT1cj+yg0hnEheMmW7PwjQeo6s3z+/SiP/6/fX
NkbVvWTCjfFyGIX+uePHAdOc9kOclXs1N6osCwf9eUfz4BAc2nMoLljJ5KzDXoNL
VIp3pn+PX5gisVLbk5XxC1oh3WAr8oH2Q4YUejrIYTLXb+juZ0fUPI+1QKK/TxdH
/C2kXG3KgUkdQ3PbzIAiUGIVCmZTLwJH72ZE8BKpwk11zMYZhbZd379c3qafnxos
zaPr7Dr9Ee36k8vNaPFQfKcRNumBc0vmwdLBAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU+8unKAe1VBgl211pXdR1CuviYtIwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLy04dW5LQWUxVkJnbDIx
MXBYZFIxQ3V2aVl0SS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAJHfDGmJArVvR3O7hUhhGw9cAIQAmwWbajU4
l8We6qHYPHBEtwOwQIeaj4cL1kF/NNjzs/yOoiUfghlnuxz1bimpM0ut8YK9nrEe
ceA7mh6d+Dh/WKTo9Tihaa3YekhjJ7Y0sElN8qihd8zC5QNyu48V8blmiAzRq39F
mEXY0kQ0i56fMS6nR5a1x5M/2l1zxfBVQO9b5X4jpkDDYAODtv5hOVay50jyEXFB
SODRFK9nvcqw4AmIk+naf5yHfpIM4R0TewuK81KNxH78N0pby6dHk3TXFyDGDiPD
4yIgeOsjFXov7/Yb0+REl+YxlED5QCtzCHEQEe/CRKCn9CYNcq0=
-----END CERTIFICATE-----
Generated at Wed Aug 14 06:57:09 2024 by rpki-client on console-ams.rpki-client.org