Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/6_9n2gOIj6-DUXhgQCSmDxGxiCo.roa
File: 6_9n2gOIj6-DUXhgQCSmDxGxiCo.roa (raw, json)
Hash identifier: X+AafqNYwh9cMaTmRDotKHGuENToSokLvr8MFiwYNn0=
Subject key identifier: EB:FF:67:DA:03:88:8F:AF:83:51:78:60:40:24:A6:0F:11:B1:88:2A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0424
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6_9n2gOIj6-DUXhgQCSmDxGxiCo.roa
Signing time: Wed 05 Jun 2024 23:55:04 +0000
ROA not before: Wed 05 Jun 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1060 (0x424)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 5 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EBFF67DA03888FAF835178604024A60F11B1882A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:3b:28:ff:e4:bb:b7:60:8c:55:ac:7f:73:
40:4f:4a:db:49:4e:01:7f:43:39:98:0f:93:69:78:
44:19:a2:39:38:69:dc:17:19:30:3d:5a:6f:d9:88:
2f:48:2b:25:ea:11:2c:a2:8a:4a:e2:87:b0:d2:8f:
c7:ae:43:4c:8b:09:21:3c:77:7d:4c:1b:65:00:27:
70:45:a3:08:d3:93:02:a1:ca:ad:72:d0:34:5a:80:
33:4e:07:25:ea:ed:c3:96:7f:fd:11:3a:86:7b:a4:
54:5a:ba:8e:c6:32:fe:62:79:4d:10:0b:73:a5:03:
ca:71:a4:0a:08:a6:d7:e1:f4:51:de:9c:bd:c8:6c:
13:fd:ed:61:d5:18:9e:02:c2:41:59:65:63:41:2b:
7a:f6:78:7b:44:d3:37:6f:c8:9a:04:a2:ec:dd:a4:
c1:e2:46:7a:ac:b2:ff:19:fe:28:f7:ba:1c:c0:57:
8c:cc:80:33:45:9c:83:23:96:73:07:2f:45:43:86:
d0:cf:68:fc:75:4d:01:c3:ec:fd:06:41:3f:21:96:
74:83:e6:9f:36:84:15:41:b5:d8:ea:b7:42:a0:aa:
7f:68:8d:11:0b:d3:80:ba:6e:5d:36:dd:0a:8e:35:
8b:9e:99:7b:7c:37:3f:a5:42:14:3f:41:6f:78:35:
ac:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FF:67:DA:03:88:8F:AF:83:51:78:60:40:24:A6:0F:11:B1:88:2A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/6_9n2gOIj6-DUXhgQCSmDxGxiCo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:f4:c2:b1:c4:16:6a:03:5f:f8:83:da:26:5e:c5:0a:4f:aa:
34:59:15:1c:00:a0:e1:5f:49:ff:51:d2:16:b5:e0:c8:79:c5:
5b:92:9b:bb:73:af:13:aa:fd:4e:fc:75:29:c5:f7:f1:8a:8d:
3d:88:93:ef:49:5f:57:a8:95:01:c1:41:49:64:01:be:cb:9b:
8c:17:ec:8e:39:50:bc:66:a6:89:8f:82:17:6e:76:4b:23:12:
4e:95:9c:2a:c7:7a:dc:76:a6:87:f2:f5:11:4e:49:86:2b:70:
21:b1:22:fe:c0:0f:40:33:fa:5a:37:c0:2c:6d:6e:13:65:7a:
36:91:70:d6:6b:af:67:8a:3d:68:44:70:3b:b8:9a:53:3a:f9:
2e:70:5a:e3:5e:35:4a:a3:92:2d:f1:b2:1e:a0:bb:de:5c:c8:
ad:82:7d:09:63:f6:ea:54:67:7f:88:ee:5b:29:b6:65:58:18:
e9:92:99:27:12:56:84:93:aa:a8:d9:e6:58:de:cb:5e:4d:a9:
71:ce:4f:a8:70:7d:a3:65:a3:09:75:d5:7c:d3:ce:a1:13:cf:
52:17:8b:43:4e:38:94:da:8a:30:60:44:2c:52:21:8c:46:3d:
27:e7:4e:2a:3b:81:55:28:fc:91:56:2f:8c:98:f3:2a:be:3e:
e2:2f:7f:a6
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA2MDUy
MzU1MDRaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEVCRkY2N0RBMDM4ODhG
QUY4MzUxNzg2MDQwMjRBNjBGMTFCMTg4MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCw8jso/+S7t2CMVax/c0BPSttJTgF/QzmYD5NpeEQZojk4adwX
GTA9Wm/ZiC9IKyXqESyiikrih7DSj8euQ0yLCSE8d31MG2UAJ3BFowjTkwKhyq1y
0DRagDNOByXq7cOWf/0ROoZ7pFRauo7GMv5ieU0QC3OlA8pxpAoIptfh9FHenL3I
bBP97WHVGJ4CwkFZZWNBK3r2eHtE0zdvyJoEouzdpMHiRnqssv8Z/ij3uhzAV4zM
gDNFnIMjlnMHL0VDhtDPaPx1TQHD7P0GQT8hlnSD5p82hBVBtdjqt0Kgqn9ojREL
04C6bl023QqONYuemXt8Nz+lQhQ/QW94NaxFAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU6/9n2gOIj6+DUXhgQCSmDxGxiCowHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzZfOW4yZ09JajYtRFVY
aGdRQ1NtRHhHeGlDby5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAN30wrHEFmoDX/iD2iZexQpPqjRZFRwAoOFf
Sf9R0ha14Mh5xVuSm7tzrxOq/U78dSnF9/GKjT2Ik+9JX1eolQHBQUlkAb7Lm4wX
7I45ULxmpomPghdudksjEk6VnCrHetx2pofy9RFOSYYrcCGxIv7AD0Az+lo3wCxt
bhNlejaRcNZrr2eKPWhEcDu4mlM6+S5wWuNeNUqjki3xsh6gu95cyK2CfQlj9upU
Z3+I7lsptmVYGOmSmScSVoSTqqjZ5ljey15NqXHOT6hwfaNlowl11XzTzqETz1IX
i0NOOJTaijBgRCxSIYxGPSfnTio7gVUo/JFWL4yY8yq+PuIvf6Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org