Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/BDyEDgSRZ4U1wK7yxs7HSjxM52k.roa
File: BDyEDgSRZ4U1wK7yxs7HSjxM52k.roa (raw, json)
Hash identifier: o1FTETjtPz32902hVkOJoW5vmwAwmSv628y/8fA/3ls=
Subject key identifier: 04:3C:84:0E:04:91:67:85:35:C0:AE:F2:C6:CE:C7:4A:3C:4C:E7:69
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 08D4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/BDyEDgSRZ4U1wK7yxs7HSjxM52k.roa
Signing time: Thu 17 Oct 2024 07:55:03 +0000
ROA not before: Thu 17 Oct 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2260 (0x8d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 17 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=043C840E0491678535C0AEF2C6CEC74A3C4CE769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:62:14:b5:bb:35:dd:06:74:6f:1e:f1:fa:51:
b3:f3:0c:e7:9f:e4:1e:bd:c6:cc:51:a8:a0:4d:0c:
e1:61:05:cd:78:89:7c:1b:ac:8f:96:ec:8e:c5:12:
61:8b:37:7d:9a:16:88:39:4e:fb:88:9e:0f:6d:cb:
8f:d3:5e:98:75:35:2d:02:7b:7d:61:ef:d6:8c:fb:
5e:37:14:d7:62:43:0a:bc:c4:73:96:d3:dd:20:0c:
60:80:aa:b1:99:df:a4:dc:17:7b:93:90:f1:57:d0:
02:85:61:86:a6:0a:24:05:a8:e9:37:a5:d0:77:77:
12:36:10:3c:36:ff:5f:0e:37:4f:56:dc:14:6e:89:
20:5c:4f:06:32:48:98:27:41:6f:d3:50:bc:21:f3:
43:84:21:8b:b6:23:dc:72:76:d5:e8:2e:2a:5a:2f:
5a:fe:35:2c:95:54:fc:f9:dc:7a:c2:e1:46:aa:18:
77:bf:d7:cb:d8:50:cf:88:9c:91:50:6c:74:f0:65:
fc:5f:98:8e:db:1f:e0:55:a7:97:02:d8:5f:47:45:
68:d6:27:aa:7b:87:ec:49:9d:20:7d:5b:d9:bb:ac:
d4:3b:9f:c2:6c:2c:20:7a:60:c9:3b:9d:a1:5e:82:
7d:3f:3c:af:33:87:ff:f9:92:42:df:8b:34:7b:cb:
32:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:3C:84:0E:04:91:67:85:35:C0:AE:F2:C6:CE:C7:4A:3C:4C:E7:69
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/BDyEDgSRZ4U1wK7yxs7HSjxM52k.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:1e:ef:01:de:b5:d7:82:1e:e5:65:7e:70:e2:9e:91:69:64:
9f:4d:00:1b:0c:7b:1c:8b:57:9c:62:e2:5d:c2:f6:ab:47:8f:
c7:bb:88:79:83:d0:83:0d:b5:c5:9b:31:08:96:29:57:88:6a:
e2:3c:97:b8:a2:16:c8:98:7b:2d:9e:94:18:6b:7c:5c:25:71:
88:68:a2:4d:a2:10:8e:1e:d9:38:ae:16:7d:b0:1e:d2:90:49:
93:c0:84:56:90:2f:4b:58:4c:39:43:8d:22:dd:d0:61:5a:f0:
a8:80:65:1f:a7:86:c0:7c:e4:5b:75:6f:76:f4:da:94:3c:cb:
35:27:99:13:ff:df:dc:22:d2:ad:ee:c7:b8:8a:5d:8c:b4:ce:
51:40:08:26:94:4c:aa:96:9d:bb:25:44:91:2a:dd:59:47:84:
90:fd:18:b4:e9:93:83:94:df:8f:30:41:11:57:1c:02:0e:21:
8d:1f:04:cf:cb:22:c0:4d:fa:c3:9a:10:f0:25:4d:89:a1:6d:
02:a5:b7:cf:8e:fa:4f:49:e4:fe:fb:b6:0e:5b:15:80:00:c1:
78:49:5c:ee:a4:10:62:d7:0a:6a:a9:19:60:44:97:79:bb:03:
ba:88:77:4b:54:5e:33:ad:dd:31:45:08:d9:63:37:55:a3:60:
c5:f0:1f:52
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDEwMTcw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDA0M0M4NDBFMDQ5MTY3
ODUzNUMwQUVGMkM2Q0VDNzRBM0M0Q0U3NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOYhS1uzXdBnRvHvH6UbPzDOef5B69xsxRqKBNDOFhBc14iXwb
rI+W7I7FEmGLN32aFog5TvuIng9ty4/TXph1NS0Ce31h79aM+143FNdiQwq8xHOW
090gDGCAqrGZ36TcF3uTkPFX0AKFYYamCiQFqOk3pdB3dxI2EDw2/18ON09W3BRu
iSBcTwYySJgnQW/TULwh80OEIYu2I9xydtXoLipaL1r+NSyVVPz53HrC4UaqGHe/
18vYUM+InJFQbHTwZfxfmI7bH+BVp5cC2F9HRWjWJ6p7h+xJnSB9W9m7rNQ7n8Js
LCB6YMk7naFegn0/PK8zh//5kkLfizR7yzInAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUBDyEDgSRZ4U1wK7yxs7HSjxM52kwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL0JEeUVEZ1NSWjRVMXdL
N3l4czdIU2p4TTUyay5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAIoe7wHetdeCHuVlfnDinpFpZJ9NABsMexyL
V5xi4l3C9qtHj8e7iHmD0IMNtcWbMQiWKVeIauI8l7iiFsiYey2elBhrfFwlcYho
ok2iEI4e2TiuFn2wHtKQSZPAhFaQL0tYTDlDjSLd0GFa8KiAZR+nhsB85Ft1b3b0
2pQ8yzUnmRP/39wi0q3ux7iKXYy0zlFACCaUTKqWnbslRJEq3VlHhJD9GLTpk4OU
348wQRFXHAIOIY0fBM/LIsBN+sOaEPAlTYmhbQKlt8+O+k9J5P77tg5bFYAAwXhJ
XO6kEGLXCmqpGWBEl3m7A7qId0tUXjOt3TFFCNljN1WjYMXwH1I=
-----END CERTIFICATE-----
Generated at Thu Oct 17 16:48:31 2024 by rpki-client on console-ams.rpki-client.org