Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/6SoNvMaQ3GCKlV4rENyoVBka3m8.roa
File: 6SoNvMaQ3GCKlV4rENyoVBka3m8.roa (raw, json)
Hash identifier: isC7abc06rnyEjA2MfsxVirwyHi/grCTesO2kHOpiF4=
Subject key identifier: E9:2A:0D:BC:C6:90:DC:60:8A:95:5E:2B:10:DC:A8:54:19:1A:DE:6F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0A0D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6SoNvMaQ3GCKlV4rENyoVBka3m8.roa
Signing time: Wed 20 Nov 2024 23:55:02 +0000
ROA not before: Wed 20 Nov 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2573 (0xa0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 20 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E92A0DBCC690DC608A955E2B10DCA854191ADE6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:04:45:6e:3a:64:6e:89:22:d7:03:13:48:
53:57:83:ff:af:a8:1e:ce:99:c3:4d:60:62:da:b4:
48:fd:38:1c:57:f8:50:4d:5b:78:80:e9:fc:a7:e5:
9a:cf:e0:33:fa:81:bf:e3:65:56:f6:f3:18:6f:33:
eb:4e:50:08:4f:79:8a:bf:45:f1:18:d6:d1:e0:43:
0b:5c:be:0a:fb:31:99:f5:66:c7:b2:53:f5:e0:36:
ff:54:2b:e3:c1:65:2e:c9:52:5c:c7:42:91:e6:d2:
b5:ef:9b:06:1c:44:25:9a:80:3a:d4:6f:22:f6:34:
89:e6:13:3f:11:90:08:42:bd:79:72:bd:29:c3:4a:
9d:c9:1c:0d:aa:0f:92:2f:1d:4c:cf:8b:36:ab:8d:
03:b4:c7:56:ca:3e:9d:06:10:9f:78:03:0c:6b:d1:
f1:15:04:49:da:28:74:4a:c5:70:95:0e:75:fb:de:
9b:05:d2:e6:89:7a:13:ce:6c:35:80:d8:e4:ea:d3:
85:b0:5e:fd:25:8b:73:32:9a:4b:9f:eb:67:4b:0a:
31:44:c6:3b:3d:61:9f:34:47:cc:cf:df:43:4a:71:
ff:16:33:52:73:db:d1:f3:89:9c:66:7e:49:a0:3e:
08:1f:ab:05:f8:ec:89:47:da:4d:c6:a4:73:53:e5:
fe:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:2A:0D:BC:C6:90:DC:60:8A:95:5E:2B:10:DC:A8:54:19:1A:DE:6F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6SoNvMaQ3GCKlV4rENyoVBka3m8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:25:92:f1:4b:ec:2c:0f:85:da:b6:9c:63:ac:e4:77:8a:5d:
bf:f8:89:61:fc:78:a6:c4:0c:1f:94:10:86:1a:74:df:d5:b4:
6c:5e:44:02:63:a4:52:1f:82:2f:9e:42:05:9c:a9:9c:79:0f:
6c:a6:f8:52:44:ef:8c:b0:7c:bd:58:e6:bf:f3:bc:53:5c:2f:
f9:88:55:e3:58:8c:84:32:f8:62:75:cc:ac:20:1c:8c:ae:2a:
be:5e:44:c6:f8:42:ff:49:5f:06:e3:01:b3:4a:43:fa:24:46:
6e:de:09:85:22:6b:2c:28:2c:f9:ec:eb:38:f7:33:9a:07:83:
af:d6:5a:ec:45:a3:9a:a6:83:bc:e3:fe:49:a3:7b:63:ed:60:
15:75:7f:c3:98:c7:59:74:90:c1:bf:8e:72:76:86:bd:d4:c2:
37:45:27:f6:6b:1c:5b:c5:2d:c2:ba:e5:f8:59:af:44:66:6a:
4f:1f:1c:07:55:fa:b1:be:50:3e:04:27:a2:8d:cc:8e:9a:7c:
d6:46:f4:51:be:d2:d9:0e:28:dc:50:34:d8:0a:4c:e9:87:fc:
1e:c9:8c:01:8f:bb:c3:60:11:64:11:76:e8:16:0d:78:78:11:
ab:47:1e:97:c0:99:89:06:7c:51:57:26:93:1b:79:6b:43:39:
95:79:a9:f4
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDExMjAy
MzU1MDJaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEU5MkEwREJDQzY5MERD
NjA4QTk1NUUyQjEwRENBODU0MTkxQURFNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC58ARFbjpkboki1wMTSFNXg/+vqB7OmcNNYGLatEj9OBxX+FBN
W3iA6fyn5ZrP4DP6gb/jZVb28xhvM+tOUAhPeYq/RfEY1tHgQwtcvgr7MZn1Zsey
U/XgNv9UK+PBZS7JUlzHQpHm0rXvmwYcRCWagDrUbyL2NInmEz8RkAhCvXlyvSnD
Sp3JHA2qD5IvHUzPizarjQO0x1bKPp0GEJ94Awxr0fEVBEnaKHRKxXCVDnX73psF
0uaJehPObDWA2OTq04WwXv0li3Mymkuf62dLCjFExjs9YZ80R8zP30NKcf8WM1Jz
29HziZxmfkmgPggfqwX47IlH2k3GpHNT5f7jAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU6SoNvMaQ3GCKlV4rENyoVBka3m8wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzZTb052TWFRM0dDS2xW
NHJFTnlvVkJrYTNtOC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBALQlkvFL7CwPhdq2nGOs5HeKXb/4iWH8eKbE
DB+UEIYadN/VtGxeRAJjpFIfgi+eQgWcqZx5D2ym+FJE74ywfL1Y5r/zvFNcL/mI
VeNYjIQy+GJ1zKwgHIyuKr5eRMb4Qv9JXwbjAbNKQ/okRm7eCYUiaywoLPns6zj3
M5oHg6/WWuxFo5qmg7zj/kmje2PtYBV1f8OYx1l0kMG/jnJ2hr3UwjdFJ/ZrHFvF
LcK65fhZr0Rmak8fHAdV+rG+UD4EJ6KNzI6afNZG9FG+0tkOKNxQNNgKTOmH/B7J
jAGPu8NgEWQRdugWDXh4EatHHpfAmYkGfFFXJpMbeWtDOZV5qfQ=
-----END CERTIFICATE-----
Generated at Thu Nov 21 05:41:51 2024 by rpki-client on console-fra.rpki-client.org