Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/03f3bhORLC-1fcwuMUWlQxy8gjA.roa
File: 03f3bhORLC-1fcwuMUWlQxy8gjA.roa (raw, json)
Hash identifier: vQWamx5dOgLrv+Mu/fUx16zcLO7VLhexpFhTHe0Lb8Y=
Subject key identifier: D3:77:F7:6E:13:91:2C:2F:B5:7D:CC:2E:31:45:A5:43:1C:BC:82:30
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0154
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/03f3bhORLC-1fcwuMUWlQxy8gjA.roa
Signing time: Sun 17 Mar 2024 23:55:03 +0000
ROA not before: Sun 17 Mar 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340 (0x154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 17 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D377F76E13912C2FB57DCC2E3145A5431CBC8230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3e:b9:9d:35:47:59:cc:a8:84:d0:98:37:8d:
d9:4c:e6:cc:66:3b:10:0a:1d:b0:4e:ca:df:43:95:
dd:2b:cb:91:50:1e:64:ac:7a:00:6d:63:dd:4a:1b:
86:5d:71:5d:fb:40:9d:c6:bc:0f:f9:72:0e:c2:c1:
fc:7d:5f:1d:60:fa:df:bc:74:00:98:5e:f0:3a:88:
44:5c:23:d4:ee:9b:f8:93:52:4c:ae:36:b3:1c:e1:
78:4a:68:6a:e3:0e:a6:9d:bc:5e:e7:b8:de:8e:c4:
59:ea:74:74:21:e5:b8:53:d3:28:92:4a:17:c2:16:
76:dc:ba:c8:3a:a9:a8:19:28:ee:12:4d:84:1d:e2:
29:82:22:df:97:30:b4:fe:ae:38:66:69:6f:5f:b8:
73:d3:12:11:25:91:7c:56:a1:82:9d:98:6e:f0:0e:
65:2b:f2:84:25:38:c9:59:68:ec:ff:52:10:4a:49:
66:5a:5d:33:84:87:8d:76:1c:9e:e9:34:76:4d:59:
f5:de:40:9c:3c:fd:74:1d:85:1f:1a:31:a2:b8:de:
31:47:20:13:fb:b3:f4:94:52:6c:93:a0:6a:c3:4c:
dd:fb:83:b7:1c:32:88:13:c7:53:c0:28:5c:4a:22:
40:63:4e:7c:d0:24:0b:f9:c7:40:9e:87:35:e9:97:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:77:F7:6E:13:91:2C:2F:B5:7D:CC:2E:31:45:A5:43:1C:BC:82:30
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/03f3bhORLC-1fcwuMUWlQxy8gjA.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
16:bb:89:99:e6:00:37:84:fa:9f:83:35:4c:59:4d:82:a2:35:
61:a0:39:86:b5:cc:02:fe:f0:bd:52:fd:86:f9:01:8e:44:5c:
47:ca:4a:99:4e:91:90:6d:0c:a3:3f:8e:ba:fa:76:d3:0a:14:
c4:39:1b:cf:d5:ac:de:ca:50:b4:49:92:72:4e:18:2c:55:5f:
55:be:12:69:c6:37:68:c9:dd:1e:06:2b:76:e9:4e:8b:63:f2:
b0:78:81:cf:8b:7e:e0:d7:3d:a8:ce:e7:51:67:3a:f9:9e:82:
2b:7b:38:78:73:06:53:6b:e4:b9:72:97:87:35:08:b7:07:3b:
3c:0b:3d:3a:4e:3b:17:e3:ed:b9:de:18:ed:d3:cd:87:50:05:
cb:f8:3e:85:2f:7c:a8:58:85:62:41:bc:a7:a1:5b:74:fa:d7:
80:b7:7c:e3:01:ac:00:b5:b0:77:ed:8d:e9:aa:9e:61:ba:dc:
4e:77:b0:b8:df:80:58:87:94:cb:e9:89:67:f5:33:65:24:26:
e4:e2:6d:78:a3:09:4b:7c:2f:d1:5e:76:24:97:42:97:d1:26:
06:5b:8b:01:0c:2d:8d:7f:44:50:e2:71:ed:21:93:fe:fd:4b:
ed:11:94:9d:aa:c3:0f:42:18:49:db:f9:10:63:bd:0f:96:e5:
50:33:c6:25
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDAzMTcy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEQzNzdGNzZFMTM5MTJD
MkZCNTdEQ0MyRTMxNDVBNTQzMUNCQzgyMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSPrmdNUdZzKiE0Jg3jdlM5sxmOxAKHbBOyt9Dld0ry5FQHmSs
egBtY91KG4ZdcV37QJ3GvA/5cg7Cwfx9Xx1g+t+8dACYXvA6iERcI9Tum/iTUkyu
NrMc4XhKaGrjDqadvF7nuN6OxFnqdHQh5bhT0yiSShfCFnbcusg6qagZKO4STYQd
4imCIt+XMLT+rjhmaW9fuHPTEhElkXxWoYKdmG7wDmUr8oQlOMlZaOz/UhBKSWZa
XTOEh412HJ7pNHZNWfXeQJw8/XQdhR8aMaK43jFHIBP7s/SUUmyToGrDTN37g7cc
MogTx1PAKFxKIkBjTnzQJAv5x0CehzXplyyxAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU03f3bhORLC+1fcwuMUWlQxy8gjAwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzAzZjNiaE9STEMtMWZj
d3VNVVdsUXh5OGdqQS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBABa7iZnmADeE+p+DNUxZTYKiNWGgOYa1zAL+
8L1S/Yb5AY5EXEfKSplOkZBtDKM/jrr6dtMKFMQ5G8/VrN7KULRJknJOGCxVX1W+
EmnGN2jJ3R4GK3bpTotj8rB4gc+LfuDXPajO51FnOvmegit7OHhzBlNr5Llyl4c1
CLcHOzwLPTpOOxfj7bneGO3TzYdQBcv4PoUvfKhYhWJBvKehW3T614C3fOMBrAC1
sHftjemqnmG63E53sLjfgFiHlMvpiWf1M2UkJuTibXijCUt8L9FediSXQpfRJgZb
iwEMLY1/RFDice0hk/79S+0RlJ2qww9CGEnb+RBjvQ+W5VAzxiU=
-----END CERTIFICATE-----
Generated at Mon Mar 18 05:01:07 2024 by rpki-client on console-ams.rpki-client.org