Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Gv_rZd7VWtr2tc0eFYNaFMffNgQ.roa
File: Gv_rZd7VWtr2tc0eFYNaFMffNgQ.roa (raw, json)
Hash identifier: WUs4rtJSApTSlYXvpXIf58ZzWT+INn6EyTL+YubC3Uc=
Subject key identifier: 1A:FF:EB:65:DE:D5:5A:DA:F6:B5:CD:1E:15:83:5A:14:C7:DF:36:04
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 043C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Gv_rZd7VWtr2tc0eFYNaFMffNgQ.roa
Signing time: Sat 08 Jun 2024 15:55:03 +0000
ROA not before: Sat 08 Jun 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1084 (0x43c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 8 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1AFFEB65DED55ADAF6B5CD1E15835A14C7DF3604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:95:a4:8e:25:8d:32:72:6e:e6:0d:d5:74:d2:
f6:d1:09:57:39:82:d2:20:00:a1:8a:c8:09:71:17:
66:1e:62:e0:3e:f6:71:9d:bd:d1:86:ad:0a:a2:5c:
da:54:24:60:35:c1:ea:27:99:91:78:e7:94:ee:e9:
32:f7:79:e4:1a:3f:97:ef:fd:ca:09:81:ad:43:a9:
12:da:db:0c:d9:dd:d1:2b:0e:81:14:0f:b2:83:2c:
a0:99:8c:59:a4:93:e6:d3:80:0b:8f:2b:c2:ba:4c:
a9:8d:97:5b:de:67:6c:a1:61:d8:2f:9f:c6:fc:7e:
19:d8:08:59:81:01:11:9d:aa:fa:a5:d0:d6:1e:26:
51:d0:9b:28:d2:4c:ac:72:42:8a:05:59:88:89:bd:
b7:13:c1:0c:72:20:8a:c8:92:c7:17:93:77:5d:36:
1c:fe:41:1d:d5:a1:7e:5a:70:0a:0a:53:52:6b:bd:
fe:46:39:db:e0:36:0d:82:57:62:55:fa:40:e6:8f:
79:a4:4e:9e:41:2f:66:dc:1a:3d:ec:07:f8:72:be:
a1:21:d1:f6:a3:db:04:dc:32:b9:f5:5c:32:26:49:
0b:01:e0:c0:f1:20:59:37:bd:48:bd:16:c2:1e:cf:
9c:cb:f0:44:ad:4c:a6:70:cf:48:47:c8:4a:22:76:
da:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FF:EB:65:DE:D5:5A:DA:F6:B5:CD:1E:15:83:5A:14:C7:DF:36:04
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Gv_rZd7VWtr2tc0eFYNaFMffNgQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
14:c1:11:de:ae:81:90:9b:df:bf:73:bf:0a:48:c0:bb:28:ee:
54:c0:37:bd:57:eb:56:b8:77:96:e0:76:6c:1a:70:8a:dd:01:
3a:77:c7:34:eb:c8:e9:eb:ce:b9:1b:f7:13:e5:4c:d2:5a:f5:
59:72:21:81:1e:9f:c0:5b:1e:af:51:8c:0c:8f:a9:25:3e:ae:
2c:4c:0e:95:44:91:2f:7a:82:d4:fd:ee:4b:3e:cc:4c:90:42:
ac:31:dc:f4:b2:94:66:ba:fd:66:4b:a3:92:13:7c:d0:50:c9:
88:f0:2c:56:b3:c9:ef:92:26:0e:68:39:46:2e:69:29:d8:a7:
6c:f0:80:ad:3f:a3:1e:3a:4f:40:ea:36:31:05:08:28:f8:10:
1e:7f:36:34:bf:f0:aa:6a:32:ea:49:3b:20:3b:19:67:6a:a7:
8c:a3:2b:d5:51:ab:e7:47:d1:ba:c6:4f:12:e3:38:7e:07:46:
36:c5:d6:bf:62:24:eb:da:33:84:1a:11:13:53:6d:7d:c1:cc:
6f:8c:b7:72:cd:b2:91:dd:91:55:fb:d7:e5:c1:45:8b:ff:72:
c6:3e:63:0e:ee:9f:7c:69:8b:b6:01:23:02:87:f9:d2:61:6c:
b8:b8:f3:29:f8:eb:1c:3e:53:93:ec:7d:ca:8b:3a:d5:ba:38:
2b:38:d9:9d
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA2MDgx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDFBRkZFQjY1REVENTVB
REFGNkI1Q0QxRTE1ODM1QTE0QzdERjM2MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2laSOJY0ycm7mDdV00vbRCVc5gtIgAKGKyAlxF2YeYuA+9nGd
vdGGrQqiXNpUJGA1weonmZF455Tu6TL3eeQaP5fv/coJga1DqRLa2wzZ3dErDoEU
D7KDLKCZjFmkk+bTgAuPK8K6TKmNl1veZ2yhYdgvn8b8fhnYCFmBARGdqvql0NYe
JlHQmyjSTKxyQooFWYiJvbcTwQxyIIrIkscXk3ddNhz+QR3VoX5acAoKU1Jrvf5G
OdvgNg2CV2JV+kDmj3mkTp5BL2bcGj3sB/hyvqEh0faj2wTcMrn1XDImSQsB4MDx
IFk3vUi9FsIez5zL8EStTKZwz0hHyEoidtq/AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUGv/rZd7VWtr2tc0eFYNaFMffNgQwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL0d2X3JaZDdWV3RyMnRj
MGVGWU5hRk1mZk5nUS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBABTBEd6ugZCb379zvwpIwLso7lTAN71X61a4
d5bgdmwacIrdATp3xzTryOnrzrkb9xPlTNJa9VlyIYEen8BbHq9RjAyPqSU+rixM
DpVEkS96gtT97ks+zEyQQqwx3PSylGa6/WZLo5ITfNBQyYjwLFazye+SJg5oOUYu
aSnYp2zwgK0/ox46T0DqNjEFCCj4EB5/NjS/8KpqMupJOyA7GWdqp4yjK9VRq+dH
0brGTxLjOH4HRjbF1r9iJOvaM4QaERNTbX3BzG+Mt3LNspHdkVX71+XBRYv/csY+
Yw7un3xpi7YBIwKH+dJhbLi48yn46xw+U5PsfcqLOtW6OCs42Z0=
-----END CERTIFICATE-----
Generated at Sat Jun 8 21:54:56 2024 by rpki-client on console-ams.rpki-client.org