Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/GG_dQZ2nbvEIQ_FhZ1jpkgAcX8M.roa
File: GG_dQZ2nbvEIQ_FhZ1jpkgAcX8M.roa (raw, json)
Hash identifier: dlr1nVQaGR1WqUKplpRrDd1ERpQQXMx8ayB0ToyUZGI=
Subject key identifier: 18:6F:DD:41:9D:A7:6E:F1:08:43:F1:61:67:58:E9:92:00:1C:5F:C3
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06D3
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GG_dQZ2nbvEIQ_FhZ1jpkgAcX8M.roa
Signing time: Wed 21 Aug 2024 07:55:03 +0000
ROA not before: Wed 21 Aug 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1747 (0x6d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 21 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=186FDD419DA76EF10843F1616758E992001C5FC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d7:b7:bc:63:97:d4:c9:05:95:b3:9e:c2:12:
23:fb:88:76:58:50:e5:6a:90:4c:c1:eb:34:8a:04:
a6:36:7b:79:bd:2e:97:6f:04:e6:d5:69:23:13:c5:
dd:26:d3:8e:1b:87:ed:b3:9c:3e:ec:8e:0e:67:d0:
c7:76:cb:d4:83:e4:99:78:97:7f:c2:57:9a:16:8f:
88:43:74:77:bf:8e:3d:42:73:61:17:26:37:23:c2:
6d:97:fc:3f:29:51:6a:00:66:e8:61:ec:7d:3e:52:
ae:54:5c:93:9d:b7:23:0e:9e:2b:ae:9d:33:5b:9c:
b9:f3:d9:23:a7:43:52:3d:dc:7d:74:e2:c1:59:dd:
99:ae:e3:65:a2:01:ab:dd:67:bd:38:44:af:5c:79:
eb:0d:07:25:9d:4a:86:0c:12:e9:b9:25:97:b2:bc:
5e:5b:e5:46:94:84:e9:27:b1:ff:ee:d3:83:85:69:
96:95:8c:ac:b7:a2:c4:5d:6f:48:2a:e4:d3:ff:d3:
34:f9:3a:1b:8c:c7:85:7f:a4:4f:34:3b:c0:62:9b:
38:34:78:7d:1f:f8:b6:96:ba:21:d3:e8:38:75:34:
4c:b3:23:5d:03:f9:de:36:28:16:9b:94:7d:ce:6f:
cf:91:13:8c:13:9b:02:5b:6e:28:f9:ca:7c:98:d1:
46:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6F:DD:41:9D:A7:6E:F1:08:43:F1:61:67:58:E9:92:00:1C:5F:C3
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/GG_dQZ2nbvEIQ_FhZ1jpkgAcX8M.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ea:1d:d4:f3:3e:3b:d4:83:5d:ba:30:7a:6e:f3:97:1d:e0:
62:3c:8b:b6:f4:2c:b9:e1:35:1d:6d:af:f2:ed:be:5f:b6:55:
72:5b:58:5c:b2:0d:ae:35:3f:a5:dd:ec:ec:f3:02:01:d7:ed:
c3:06:c0:cd:65:a3:64:0c:b5:2b:e7:43:e1:7f:2d:ec:c3:54:
5a:c4:04:5a:aa:80:82:03:50:93:75:30:0e:af:9a:e3:24:e3:
30:da:76:10:15:2a:b1:e3:b3:5e:1d:ee:23:c5:c1:38:b6:aa:
ea:b8:38:12:91:19:e2:11:cd:92:a1:41:9e:81:4b:b4:d2:b8:
57:c5:a6:ee:2e:77:dc:2d:17:1f:3e:8f:1a:cb:ec:69:3d:20:
c2:36:31:2d:ef:51:45:51:90:b3:24:58:b8:21:d4:5c:12:08:
95:8b:24:f2:41:c0:41:94:b2:8d:55:b9:59:bc:35:1e:fd:14:
be:10:2e:bc:96:56:88:4d:92:57:81:2d:36:28:e9:23:7a:f5:
62:b5:ef:91:d3:93:13:b7:46:e3:09:6e:36:54:36:7a:04:fe:
de:94:5c:34:33:f0:50:81:ce:89:b6:ed:f6:3a:ad:d1:16:b9:
1f:6f:9b:44:d0:cd:23:ee:d8:1c:98:9c:5b:08:e9:52:d2:83:
ce:93:ed:06
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA4MjEw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDE4NkZERDQxOURBNzZF
RjEwODQzRjE2MTY3NThFOTkyMDAxQzVGQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDp17e8Y5fUyQWVs57CEiP7iHZYUOVqkEzB6zSKBKY2e3m9Lpdv
BObVaSMTxd0m044bh+2znD7sjg5n0Md2y9SD5Jl4l3/CV5oWj4hDdHe/jj1Cc2EX
Jjcjwm2X/D8pUWoAZuhh7H0+Uq5UXJOdtyMOniuunTNbnLnz2SOnQ1I93H104sFZ
3Zmu42WiAavdZ704RK9ceesNByWdSoYMEum5JZeyvF5b5UaUhOknsf/u04OFaZaV
jKy3osRdb0gq5NP/0zT5OhuMx4V/pE80O8Bimzg0eH0f+LaWuiHT6Dh1NEyzI10D
+d42KBablH3Ob8+RE4wTmwJbbij5ynyY0UaNAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUGG/dQZ2nbvEIQ/FhZ1jpkgAcX8MwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL0dHX2RRWjJuYnZFSVFf
RmhaMWpwa2dBY1g4TS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAD7qHdTzPjvUg126MHpu85cd4GI8i7b0LLnh
NR1tr/Ltvl+2VXJbWFyyDa41P6Xd7OzzAgHX7cMGwM1lo2QMtSvnQ+F/LezDVFrE
BFqqgIIDUJN1MA6vmuMk4zDadhAVKrHjs14d7iPFwTi2quq4OBKRGeIRzZKhQZ6B
S7TSuFfFpu4ud9wtFx8+jxrL7Gk9IMI2MS3vUUVRkLMkWLgh1FwSCJWLJPJBwEGU
so1VuVm8NR79FL4QLryWVohNkleBLTYo6SN69WK175HTkxO3RuMJbjZUNnoE/t6U
XDQz8FCBzom27fY6rdEWuR9vm0TQzSPu2ByYnFsI6VLSg86T7QY=
-----END CERTIFICATE-----
Generated at Wed Aug 21 16:36:45 2024 by rpki-client on console-ams.rpki-client.org