Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5gdlihbpzEZW57h_yd78QGKeiNs.roa
File: 5gdlihbpzEZW57h_yd78QGKeiNs.roa (raw, json)
Hash identifier: ibrJ0uKgdAW+RxzY5Vd/2OItEtqY6UUyKGmEI0Bp6Ns=
Subject key identifier: E6:07:65:8A:16:E9:CC:46:56:E7:B8:7F:C9:DE:FC:40:62:9E:88:DB
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 096B
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5gdlihbpzEZW57h_yd78QGKeiNs.roa
Signing time: Sat 02 Nov 2024 23:55:02 +0000
ROA not before: Sat 02 Nov 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2411 (0x96b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 2 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E607658A16E9CC4656E7B87FC9DEFC40629E88DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:60:a7:39:e0:c7:7a:1c:14:08:b8:5e:18:3e:
20:6c:4a:9d:88:4c:ed:e1:61:9e:80:16:8b:e1:d9:
fe:b0:9c:aa:07:2c:47:14:fd:b9:33:d3:9d:05:71:
ef:0c:24:dc:e9:d7:85:a4:e2:aa:1b:88:46:45:33:
80:65:67:f4:68:b4:fa:0a:8a:b2:b6:92:ec:56:49:
9d:75:15:9b:04:6b:e1:d9:8d:bc:3f:5c:ec:fb:7c:
db:48:b5:4b:b0:15:cf:98:af:a9:d2:ed:26:eb:9f:
54:c0:11:ed:c0:c4:b0:1c:06:a7:63:2e:8f:95:59:
e6:71:65:76:25:e9:28:8b:06:da:1c:d4:15:78:47:
65:89:a0:f7:1f:b2:cb:45:59:e7:83:a1:a2:e2:5c:
e5:42:46:14:19:8d:9f:bd:21:b6:ef:ff:68:f7:42:
91:ad:27:0a:96:d0:9e:eb:ad:0e:cc:54:5d:12:6b:
c2:df:da:58:42:df:8a:54:d7:ea:68:0f:4e:a9:47:
f9:c6:2d:56:5c:1e:07:9e:98:70:35:16:27:52:87:
39:e6:88:1e:dd:8c:02:4d:09:19:32:71:5b:50:e2:
4b:2c:b5:a9:2b:ed:76:03:a2:c8:f6:26:83:b1:6c:
34:1b:2e:67:43:82:15:e3:f0:8c:96:31:f6:0a:80:
a0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:07:65:8A:16:E9:CC:46:56:E7:B8:7F:C9:DE:FC:40:62:9E:88:DB
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5gdlihbpzEZW57h_yd78QGKeiNs.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:8b:73:d8:04:9e:b9:dc:2a:9e:cd:c4:3a:7b:6f:0a:2f:d0:
e0:dd:64:e8:b6:86:98:66:23:46:e5:5e:03:84:c0:31:6e:2d:
12:f3:34:41:c2:31:be:4e:4e:b4:7b:27:53:49:12:78:3c:b1:
33:aa:45:59:cd:97:b3:51:48:55:4c:c4:fb:4f:66:4f:0a:4f:
3e:9f:41:8c:5f:13:76:03:4d:48:51:69:78:f2:af:5d:4f:5e:
d1:ec:b2:15:56:72:98:28:73:c9:7b:42:92:2e:4a:2d:e0:91:
4a:3c:ec:f0:1e:e3:14:c9:61:44:66:bb:42:d7:af:b4:7d:d8:
59:cf:76:71:98:09:ef:a7:33:2a:9e:00:24:25:a0:46:16:29:
c0:41:d0:98:55:2d:b4:c2:89:a2:93:d8:70:ba:61:f2:f8:5b:
4c:05:c4:41:bb:1e:c9:92:df:21:63:63:d7:13:a3:03:3e:73:
1b:75:56:46:91:1f:5d:fc:8d:c0:94:26:8b:4f:2a:64:9b:e8:
41:9c:f5:df:87:4e:31:16:03:91:f4:04:f6:d0:bc:5c:4e:be:
15:0a:83:41:3b:2b:e1:1f:ba:11:4b:64:67:d7:88:d6:d1:d4:
6c:19:85:2a:2e:19:a5:92:4d:6e:db:c1:c0:de:56:4d:96:7d:
0b:b9:04:da
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDExMDIy
MzU1MDJaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEU2MDc2NThBMTZFOUND
NDY1NkU3Qjg3RkM5REVGQzQwNjI5RTg4REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzYKc54Md6HBQIuF4YPiBsSp2ITO3hYZ6AFovh2f6wnKoHLEcU
/bkz050Fce8MJNzp14Wk4qobiEZFM4BlZ/RotPoKirK2kuxWSZ11FZsEa+HZjbw/
XOz7fNtItUuwFc+Yr6nS7Sbrn1TAEe3AxLAcBqdjLo+VWeZxZXYl6SiLBtoc1BV4
R2WJoPcfsstFWeeDoaLiXOVCRhQZjZ+9Ibbv/2j3QpGtJwqW0J7rrQ7MVF0Sa8Lf
2lhC34pU1+poD06pR/nGLVZcHgeemHA1FidShznmiB7djAJNCRkycVtQ4ksstakr
7XYDosj2JoOxbDQbLmdDghXj8IyWMfYKgKDRAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU5gdlihbpzEZW57h/yd78QGKeiNswHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzVnZGxpaGJwekVaVzU3
aF95ZDc4UUdLZWlOcy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAM2Lc9gEnrncKp7NxDp7bwov0ODdZOi2hphm
I0blXgOEwDFuLRLzNEHCMb5OTrR7J1NJEng8sTOqRVnNl7NRSFVMxPtPZk8KTz6f
QYxfE3YDTUhRaXjyr11PXtHsshVWcpgoc8l7QpIuSi3gkUo87PAe4xTJYURmu0LX
r7R92FnPdnGYCe+nMyqeACQloEYWKcBB0JhVLbTCiaKT2HC6YfL4W0wFxEG7HsmS
3yFjY9cTowM+cxt1VkaRH138jcCUJotPKmSb6EGc9d+HTjEWA5H0BPbQvFxOvhUK
g0E7K+EfuhFLZGfXiNbR1GwZhSouGaWSTW7bwcDeVk2WfQu5BNo=
-----END CERTIFICATE-----
Generated at Sun Nov 3 06:41:09 2024 by rpki-client on console-fra.rpki-client.org