Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/2TY05kiPm7bBTDt7WFw_8laxlz4.roa
File: 2TY05kiPm7bBTDt7WFw_8laxlz4.roa (raw, json)
Hash identifier: 9OEegnDg4kWUjhp0F+04l9pEL2zkVvtYbK3SjaR0WkQ=
Subject key identifier: D9:36:34:E6:48:8F:9B:B6:C1:4C:3B:7B:58:5C:3F:F2:56:B1:97:3E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 05B9
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2TY05kiPm7bBTDt7WFw_8laxlz4.roa
Signing time: Sat 20 Jul 2024 23:55:02 +0000
ROA not before: Sat 20 Jul 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1465 (0x5b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 20 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=D93634E6488F9BB6C14C3B7B585C3FF256B1973E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:70:06:4e:31:7e:1b:87:56:56:8a:5f:54:73:
2b:e3:13:ed:b3:56:25:8b:18:81:b0:69:0d:29:20:
f1:2d:69:cf:27:16:99:56:ef:a9:e9:ae:cb:03:46:
4a:ea:b3:36:c6:36:54:e1:c7:41:c3:eb:a6:21:f8:
b4:9f:7a:d6:c6:6d:50:e6:e0:2e:ac:39:ec:5a:09:
d9:39:00:55:6e:a8:4b:4a:17:ac:fe:dd:ef:80:eb:
e0:b5:cd:2f:13:bc:bd:a5:ab:e0:88:a0:3a:fe:8a:
63:7e:11:46:c0:3b:ee:3f:eb:33:63:4b:68:54:17:
62:75:52:88:b4:49:1a:67:88:ac:bf:8d:65:d6:28:
4b:90:52:52:ae:3f:7b:ea:ca:05:95:3a:f6:36:a9:
7e:1e:74:e6:f4:b9:45:96:d2:74:85:7f:14:46:56:
66:87:eb:62:2a:47:8a:f2:db:17:c5:6b:6f:27:cd:
48:38:23:94:2c:60:df:ad:1a:30:87:eb:6d:63:e0:
ff:56:44:ed:fc:d5:e9:21:fe:04:8c:8e:80:10:a2:
f9:21:51:32:d2:3f:cd:75:7c:86:29:df:fc:87:f3:
52:4a:14:17:ac:ca:e0:e3:5d:5d:50:a1:5e:64:e6:
81:1c:e7:62:2c:98:df:2a:b9:ac:68:51:2c:6a:4f:
b8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:36:34:E6:48:8F:9B:B6:C1:4C:3B:7B:58:5C:3F:F2:56:B1:97:3E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/2TY05kiPm7bBTDt7WFw_8laxlz4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:d1:45:a1:48:dd:1d:fd:7e:91:1f:30:d6:13:93:45:56:52:
94:46:47:02:e9:05:6d:7b:ec:18:27:d6:a1:c8:30:90:21:0b:
26:e9:f5:20:94:bc:04:ba:92:6a:22:8c:8c:03:f6:60:b0:e0:
60:4d:4d:f5:43:65:7f:9e:cf:6e:da:7a:55:6a:ab:0f:cb:1e:
26:44:67:37:e4:06:07:b6:ee:d5:ed:ba:f5:15:e6:d1:6b:58:
18:eb:07:cb:20:f9:ea:c4:83:14:2f:9b:66:6f:16:9c:eb:ba:
4f:87:0d:d5:aa:4f:64:46:06:c5:90:2c:f4:51:81:79:9e:1f:
ea:cb:2f:7e:4d:36:de:78:8f:8a:d9:84:5e:0f:93:ad:66:66:
3a:ed:8b:c1:dd:8a:c8:d1:26:e0:24:ee:69:2b:dd:e6:6d:5b:
bc:a4:09:72:2f:9a:43:db:bd:3f:11:7a:83:48:9a:54:2b:80:
1e:c8:3b:fb:2b:44:59:22:23:37:e1:c8:88:e3:5c:bb:e5:dd:
d7:de:81:47:e7:54:cf:1f:2b:fb:39:e6:78:69:e3:88:c4:91:
25:d8:b0:9f:ae:4e:24:57:34:2c:8f:79:da:82:31:72:d2:8c:
20:7d:52:c8:ca:22:a8:cf:81:86:a8:1c:2d:2b:05:37:01:a2:
44:30:bb:f0
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA3MjAy
MzU1MDJaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEQ5MzYzNEU2NDg4RjlC
QjZDMTRDM0I3QjU4NUMzRkYyNTZCMTk3M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbcAZOMX4bh1ZWil9UcyvjE+2zViWLGIGwaQ0pIPEtac8nFplW
76nprssDRkrqszbGNlThx0HD66Yh+LSfetbGbVDm4C6sOexaCdk5AFVuqEtKF6z+
3e+A6+C1zS8TvL2lq+CIoDr+imN+EUbAO+4/6zNjS2hUF2J1Uoi0SRpniKy/jWXW
KEuQUlKuP3vqygWVOvY2qX4edOb0uUWW0nSFfxRGVmaH62IqR4ry2xfFa28nzUg4
I5QsYN+tGjCH621j4P9WRO381ekh/gSMjoAQovkhUTLSP811fIYp3/yH81JKFBes
yuDjXV1QoV5k5oEc52IsmN8quaxoUSxqT7j7AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU2TY05kiPm7bBTDt7WFw/8laxlz4wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzJUWTA1a2lQbTdiQlRE
dDdXRndfOGxheGx6NC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAK3RRaFI3R39fpEfMNYTk0VWUpRGRwLpBW17
7Bgn1qHIMJAhCybp9SCUvAS6kmoijIwD9mCw4GBNTfVDZX+ez27aelVqqw/LHiZE
ZzfkBge27tXtuvUV5tFrWBjrB8sg+erEgxQvm2ZvFpzruk+HDdWqT2RGBsWQLPRR
gXmeH+rLL35NNt54j4rZhF4Pk61mZjrti8HdisjRJuAk7mkr3eZtW7ykCXIvmkPb
vT8ReoNImlQrgB7IO/srRFkiIzfhyIjjXLvl3dfegUfnVM8fK/s55nhp44jEkSXY
sJ+uTiRXNCyPedqCMXLSjCB9UsjKIqjPgYaoHC0rBTcBokQwu/A=
-----END CERTIFICATE-----
Generated at Sun Jul 21 06:11:36 2024 by rpki-client on console-fra.rpki-client.org