Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/AW2YJbAthY2VUvqom6c1BZJqwAs.roa
File: AW2YJbAthY2VUvqom6c1BZJqwAs.roa (raw, json)
Hash identifier: gFT5aMSALuku1AXkWOeswFJspA8yWeABWAh41QX3c7o=
Subject key identifier: 01:6D:98:25:B0:2D:85:8D:95:52:FA:A8:9B:A7:35:05:92:6A:C0:0B
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 033D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/AW2YJbAthY2VUvqom6c1BZJqwAs.roa
Signing time: Sat 11 May 2024 07:55:04 +0000
ROA not before: Sat 11 May 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 829 (0x33d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 11 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=016D9825B02D858D9552FAA89BA73505926AC00B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:34:3f:9c:84:26:88:86:a6:a4:75:16:7c:07:
7c:e7:75:b2:24:25:29:5e:36:37:44:23:fd:61:a1:
34:37:0f:87:21:11:2f:68:b7:32:03:7c:ee:28:62:
a3:44:14:b8:ae:45:b0:a3:2a:ac:45:21:93:93:ac:
92:7c:bd:d2:0d:bd:9a:8b:eb:f3:9a:d3:2a:39:8a:
a9:71:87:1b:1d:0e:5a:90:fa:9b:7b:b7:68:90:4f:
f5:99:24:4c:f5:87:2d:76:9f:72:63:c0:b7:53:7f:
b1:6d:09:e1:f2:7e:04:64:05:99:e3:50:0d:e5:fb:
7c:12:db:e7:28:a5:3b:08:d3:bc:a5:28:c8:7f:85:
03:b6:84:c2:a6:9b:b9:c4:1f:bf:b4:9d:22:72:23:
77:fc:2e:da:9a:55:6d:77:ec:e8:f7:8a:25:90:26:
29:44:e5:70:4e:67:aa:b5:de:73:65:85:85:7c:3b:
7f:d6:b2:ce:49:c4:2e:46:01:c8:ce:25:69:7c:ca:
56:77:5a:b9:53:e0:a7:a2:59:a5:3e:da:3d:ca:36:
2f:70:d4:70:b6:a5:3f:09:2e:bb:01:94:ea:ec:83:
66:49:f5:a1:df:5b:e0:d6:0b:b3:aa:47:72:a3:8b:
ae:27:bd:44:27:ae:b3:6e:ee:1b:f9:50:70:c1:03:
ff:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6D:98:25:B0:2D:85:8D:95:52:FA:A8:9B:A7:35:05:92:6A:C0:0B
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/AW2YJbAthY2VUvqom6c1BZJqwAs.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
77:88:4a:f2:58:4a:57:e3:76:5d:4c:b1:b1:55:76:2a:d5:42:
69:5a:e1:d1:87:e6:87:d0:0c:fd:3e:25:68:cd:fd:68:c4:8e:
78:2d:e5:13:6a:99:a0:90:40:eb:a6:6e:f3:74:49:3a:31:ec:
85:2c:bc:d9:a5:f0:81:91:f7:e7:35:cc:d9:5b:a4:74:73:8d:
1b:5d:30:fc:1e:ad:73:14:7e:fe:f5:af:46:7d:79:2d:51:92:
3e:d3:da:e9:3b:d4:02:bd:c6:f3:7b:5a:44:42:42:57:62:2f:
32:cf:96:70:24:f2:0f:06:12:36:60:92:d8:dc:f4:c0:74:53:
16:76:df:38:4f:3b:d9:fd:67:86:bb:8b:01:01:04:81:5a:25:
3b:26:6d:71:be:ba:1f:7d:77:d6:88:fb:a6:60:b2:d2:2b:9c:
6e:74:08:c5:60:49:9e:d6:2e:50:d6:ba:82:b6:7c:ba:56:64:
e3:e6:93:b4:c9:5d:18:77:95:2e:8a:4e:05:4f:0c:b8:93:ce:
cb:55:66:3d:d3:cf:61:e6:25:3d:24:c6:db:31:7a:79:1a:e9:
ea:be:d6:75:81:90:76:0e:ae:f2:d1:82:74:b3:af:3a:b8:c9:
c6:dc:03:d2:65:11:6b:bb:6e:19:ab:06:65:dc:96:6e:69:a9:
46:bf:e7:60
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA1MTEw
NzU1MDRaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDAxNkQ5ODI1QjAyRDg1
OEQ5NTUyRkFBODlCQTczNTA1OTI2QUMwMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD7ND+chCaIhqakdRZ8B3zndbIkJSleNjdEI/1hoTQ3D4chES9o
tzIDfO4oYqNEFLiuRbCjKqxFIZOTrJJ8vdINvZqL6/Oa0yo5iqlxhxsdDlqQ+pt7
t2iQT/WZJEz1hy12n3JjwLdTf7FtCeHyfgRkBZnjUA3l+3wS2+copTsI07ylKMh/
hQO2hMKmm7nEH7+0nSJyI3f8LtqaVW137Oj3iiWQJilE5XBOZ6q13nNlhYV8O3/W
ss5JxC5GAcjOJWl8ylZ3WrlT4KeiWaU+2j3KNi9w1HC2pT8JLrsBlOrsg2ZJ9aHf
W+DWC7OqR3Kji64nvUQnrrNu7hv5UHDBA//1AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUAW2YJbAthY2VUvqom6c1BZJqwAswHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL0FXMllKYkF0aFkyVlV2
cW9tNmMxQlpKcXdBcy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAHeISvJYSlfjdl1MsbFVdirVQmla4dGH5ofQ
DP0+JWjN/WjEjngt5RNqmaCQQOumbvN0STox7IUsvNml8IGR9+c1zNlbpHRzjRtd
MPwerXMUfv71r0Z9eS1Rkj7T2uk71AK9xvN7WkRCQldiLzLPlnAk8g8GEjZgktjc
9MB0UxZ23zhPO9n9Z4a7iwEBBIFaJTsmbXG+uh99d9aI+6ZgstIrnG50CMVgSZ7W
LlDWuoK2fLpWZOPmk7TJXRh3lS6KTgVPDLiTzstVZj3Tz2HmJT0kxtsxenka6eq+
1nWBkHYOrvLRgnSzrzq4ycbcA9JlEWu7bhmrBmXclm5pqUa/52A=
-----END CERTIFICATE-----
Generated at Sat May 11 14:17:11 2024 by rpki-client on console-ams.rpki-client.org