Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/4bhIhXbacxquR93xDtPf3MPYH8Y.roa
File: 4bhIhXbacxquR93xDtPf3MPYH8Y.roa (raw, json)
Hash identifier: IrK3YdBiHuLSox6xHrhjdg+zTJHUj6cDliHRdRjAwY4=
Subject key identifier: E1:B8:48:85:76:DA:73:1A:AE:47:DD:F1:0E:D3:DF:DC:C3:D8:1F:C6
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06A0
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4bhIhXbacxquR93xDtPf3MPYH8Y.roa
Signing time: Thu 15 Aug 2024 15:55:05 +0000
ROA not before: Thu 15 Aug 2024 15:55:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1696 (0x6a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 15 15:55:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E1B8488576DA731AAE47DDF10ED3DFDCC3D81FC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ae:9d:ec:94:62:bb:97:31:d5:8b:45:7e:56:
18:51:2d:37:82:ac:91:d5:32:38:d3:55:cd:64:1f:
44:5b:d1:77:27:a1:65:28:8d:9d:72:16:db:f3:9c:
14:58:01:af:4e:e2:e0:5e:e5:5b:51:2a:55:90:0e:
2d:61:3a:4e:c4:25:07:c7:28:fe:69:45:55:49:1a:
7f:7e:61:8f:5c:b5:71:19:6d:b8:b3:c1:7d:9a:3c:
ba:90:64:a6:6f:19:7f:83:fc:4b:0e:91:e9:dc:9e:
af:59:48:df:68:bd:d8:e8:6f:a0:3e:98:cd:e5:ec:
95:53:ec:2d:7c:c7:8a:fb:d6:ff:0f:8a:c3:da:cf:
96:5d:d8:4f:df:41:5a:c1:1d:dd:a7:e2:44:46:db:
f2:c0:7b:74:d8:87:a8:2f:57:7b:05:d6:ca:78:fe:
4e:1b:5b:05:ce:01:c8:5b:49:dc:70:f2:f3:54:d3:
b3:ba:58:f4:7c:e7:96:d8:d3:5e:c7:21:44:2a:51:
53:3d:4e:65:29:b3:4a:80:20:93:7d:e0:98:e5:7d:
15:d4:f3:4a:40:fa:10:d7:ad:41:10:69:c2:cb:a3:
61:05:65:43:62:46:72:63:bf:f3:5b:4b:56:81:1c:
50:7e:a4:b5:0f:5b:4e:dd:af:13:58:d7:42:ff:4f:
f2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B8:48:85:76:DA:73:1A:AE:47:DD:F1:0E:D3:DF:DC:C3:D8:1F:C6
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/4bhIhXbacxquR93xDtPf3MPYH8Y.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:86:d3:ee:9f:78:f7:f7:eb:37:a6:66:c7:1b:8f:f2:28:87:
46:60:d6:98:19:b5:ab:1a:64:ea:0c:d5:40:fa:da:0d:76:79:
f9:e2:de:0c:3b:1f:17:81:b9:16:c0:b5:a5:ed:92:15:ee:95:
d1:a0:9a:7a:58:6b:9d:f1:a2:32:d9:d7:84:68:60:ea:39:ec:
68:c4:8c:dc:d0:2b:44:5c:cc:25:25:b2:1f:1d:25:60:44:a4:
d2:fa:53:40:d6:2e:9c:69:4d:a0:a2:9b:11:8d:5b:89:e8:d0:
0d:1a:c5:8a:5b:cf:e8:f2:af:7a:2c:a1:49:4f:a0:99:cd:56:
dc:84:b7:10:30:eb:b6:aa:88:44:da:5c:56:ea:af:6f:53:74:
7b:2e:23:b7:61:ee:e0:52:a2:e9:38:f8:c7:56:fe:3e:d3:42:
90:0e:6b:57:eb:7b:de:a2:b0:76:7c:c1:2a:d1:24:ca:bb:a7:
17:27:bb:20:57:37:e7:ff:88:35:77:65:fe:d4:d2:83:47:ee:
e2:43:22:2f:2b:05:bc:99:5e:db:0c:88:8d:14:bc:4c:ae:f0:
2d:03:53:c6:e0:f0:da:58:af:c4:e5:bc:c2:44:4f:49:b2:80:
72:32:a2:26:e8:ad:53:be:81:3c:5a:6d:3c:04:87:e6:a6:2d:
31:1d:a6:e9
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA4MTUx
NTU1MDVaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEUxQjg0ODg1NzZEQTcz
MUFBRTQ3RERGMTBFRDNERkRDQzNEODFGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/rp3slGK7lzHVi0V+VhhRLTeCrJHVMjjTVc1kH0Rb0XcnoWUo
jZ1yFtvznBRYAa9O4uBe5VtRKlWQDi1hOk7EJQfHKP5pRVVJGn9+YY9ctXEZbbiz
wX2aPLqQZKZvGX+D/EsOkencnq9ZSN9ovdjob6A+mM3l7JVT7C18x4r71v8PisPa
z5Zd2E/fQVrBHd2n4kRG2/LAe3TYh6gvV3sF1sp4/k4bWwXOAchbSdxw8vNU07O6
WPR855bY017HIUQqUVM9TmUps0qAIJN94JjlfRXU80pA+hDXrUEQacLLo2EFZUNi
RnJjv/NbS1aBHFB+pLUPW07drxNY10L/T/LxAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU4bhIhXbacxquR93xDtPf3MPYH8YwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzRiaEloWGJhY3hxdVI5
M3hEdFBmM01QWUg4WS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAM2G0+6fePf36zemZscbj/Ioh0Zg1pgZtasa
ZOoM1UD62g12efni3gw7HxeBuRbAtaXtkhXuldGgmnpYa53xojLZ14RoYOo57GjE
jNzQK0RczCUlsh8dJWBEpNL6U0DWLpxpTaCimxGNW4no0A0axYpbz+jyr3osoUlP
oJnNVtyEtxAw67aqiETaXFbqr29TdHsuI7dh7uBSouk4+MdW/j7TQpAOa1fre96i
sHZ8wSrRJMq7pxcnuyBXN+f/iDV3Zf7U0oNH7uJDIi8rBbyZXtsMiI0UvEyu8C0D
U8bg8NpYr8TlvMJET0mygHIyoiborVO+gTxabTwEh+amLTEdpuk=
-----END CERTIFICATE-----
Generated at Thu Aug 15 21:42:47 2024 by rpki-client on console-ams.rpki-client.org