Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/Ig2LEut0OEP643bzH4GM8n6P5R0.roa
File: Ig2LEut0OEP643bzH4GM8n6P5R0.roa (raw, json)
Hash identifier: SNGWUHITtXN/7TFddsRCyvz52u6U0FS29E3EXzdHEG4=
Subject key identifier: 22:0D:8B:12:EB:74:38:43:FA:E3:76:F3:1F:81:8C:F2:7E:8F:E5:1D
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 06D9
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Ig2LEut0OEP643bzH4GM8n6P5R0.roa
Signing time: Wed 21 Aug 2024 23:55:03 +0000
ROA not before: Wed 21 Aug 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1753 (0x6d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 21 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=220D8B12EB743843FAE376F31F818CF27E8FE51D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fd:b3:00:6c:4a:b3:bf:e2:8b:4d:44:de:17:
ff:ab:b6:11:9a:df:b8:e9:8c:bc:e4:a0:f9:40:a2:
0e:31:a5:49:18:4e:7e:16:45:15:0e:6c:6d:9a:0e:
2e:ad:2f:a9:7e:33:48:32:ce:56:fa:47:f8:8c:b2:
b3:e3:a8:53:fc:13:5f:c9:19:57:d4:42:45:07:98:
09:11:86:04:f4:5e:08:f8:e0:19:41:52:22:fe:06:
f5:23:f4:06:9b:c5:e5:07:6d:1a:49:bd:e8:87:6b:
80:09:95:91:58:9e:f3:85:39:04:e6:dc:61:a5:47:
2f:1d:d5:ae:38:0e:3d:82:9c:91:7e:02:9d:8e:8e:
3b:a6:01:a6:4d:f4:1a:ae:9d:2e:2a:8d:c2:b1:bc:
b3:47:6d:68:45:2e:9b:68:eb:27:d2:53:92:aa:a7:
e9:c6:4f:72:48:ea:5f:6b:a9:32:bd:71:30:b5:8e:
36:ee:b9:a7:e2:8f:81:58:ce:6e:e3:2c:28:96:b4:
f4:5f:e6:92:6d:30:6c:3f:03:50:66:ec:72:58:d1:
98:b5:81:60:53:8d:39:5f:d3:e6:c4:0d:3b:b1:96:
7d:68:05:9c:4e:1a:30:05:bd:a4:c4:06:5a:86:05:
7e:1c:19:9d:67:df:6d:62:d6:06:5f:ed:cc:aa:7e:
69:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:0D:8B:12:EB:74:38:43:FA:E3:76:F3:1F:81:8C:F2:7E:8F:E5:1D
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/Ig2LEut0OEP643bzH4GM8n6P5R0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ec:df:50:84:80:74:ac:ed:d5:bf:88:ed:48:78:02:ec:a7:
3a:ed:49:52:09:56:e4:e8:34:53:24:cc:46:6d:c4:66:63:98:
86:63:02:11:69:94:8b:b9:30:e2:33:1b:45:bf:3c:52:46:51:
50:52:75:bc:ae:c5:1b:ff:02:6f:c6:5a:d7:99:74:b6:c2:15:
34:07:9f:15:de:93:27:7a:ff:d2:c4:ed:1b:5f:80:34:47:73:
82:2c:95:e9:f9:b0:b0:ac:92:f4:7e:4b:61:ee:b4:c4:36:31:
01:eb:62:bf:24:7b:ef:5f:59:b1:71:41:ad:6b:b8:39:ce:d7:
5a:d8:70:f4:91:c3:c5:42:e3:fb:ab:44:2a:19:34:b2:2e:9b:
d6:19:d6:f0:21:0c:13:11:b2:1b:d2:41:8e:ef:fb:d7:f6:d6:
bd:78:23:fe:20:3d:18:48:00:bc:b5:2c:ef:36:96:4e:99:5f:
ce:72:1c:c4:7f:ee:7d:37:7c:9e:55:2e:22:1d:22:4d:c7:07:
83:98:7e:f4:33:64:96:06:e8:1a:17:7e:ae:7f:4e:11:81:db:
b5:fe:86:f9:bc:ed:1f:a5:30:61:6a:51:c8:5b:f1:7e:49:7a:
4e:61:56:3d:41:65:46:df:0d:f2:43:e3:fb:5f:44:f2:7b:e7:
41:42:19:72
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA4MjEy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDIyMEQ4QjEyRUI3NDM4
NDNGQUUzNzZGMzFGODE4Q0YyN0U4RkU1MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2/bMAbEqzv+KLTUTeF/+rthGa37jpjLzkoPlAog4xpUkYTn4W
RRUObG2aDi6tL6l+M0gyzlb6R/iMsrPjqFP8E1/JGVfUQkUHmAkRhgT0Xgj44BlB
UiL+BvUj9AabxeUHbRpJveiHa4AJlZFYnvOFOQTm3GGlRy8d1a44Dj2CnJF+Ap2O
jjumAaZN9BqunS4qjcKxvLNHbWhFLpto6yfSU5Kqp+nGT3JI6l9rqTK9cTC1jjbu
uafij4FYzm7jLCiWtPRf5pJtMGw/A1Bm7HJY0Zi1gWBTjTlf0+bEDTuxln1oBZxO
GjAFvaTEBlqGBX4cGZ1n321i1gZf7cyqfmmzAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUIg2LEut0OEP643bzH4GM8n6P5R0wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL0lnMkxFdXQwT0VQNjQz
YnpINEdNOG42UDVSMC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAFDs31CEgHSs7dW/iO1IeALspzrtSVIJVuTo
NFMkzEZtxGZjmIZjAhFplIu5MOIzG0W/PFJGUVBSdbyuxRv/Am/GWteZdLbCFTQH
nxXekyd6/9LE7RtfgDRHc4Islen5sLCskvR+S2HutMQ2MQHrYr8ke+9fWbFxQa1r
uDnO11rYcPSRw8VC4/urRCoZNLIum9YZ1vAhDBMRshvSQY7v+9f21r14I/4gPRhI
ALy1LO82lk6ZX85yHMR/7n03fJ5VLiIdIk3HB4OYfvQzZJYG6BoXfq5/ThGB27X+
hvm87R+lMGFqUchb8X5Jek5hVj1BZUbfDfJD4/tfRPJ750FCGXI=
-----END CERTIFICATE-----
Generated at Thu Aug 22 07:36:05 2024 by rpki-client on console-ams.rpki-client.org