Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/UQDdTEbTYEy_BpiN9wD-iXnaJes.roa
File: UQDdTEbTYEy_BpiN9wD-iXnaJes.roa (raw, json)
Hash identifier: AIUnkk1a4AV5PBkmElleaRorgd6a7FEgML5QsGasbgc=
Subject key identifier: 51:00:DD:4C:46:D3:60:4C:BF:06:98:8D:F7:00:FE:89:79:DA:25:EB
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 066A
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/UQDdTEbTYEy_BpiN9wD-iXnaJes.roa
Signing time: Fri 09 Aug 2024 15:55:03 +0000
ROA not before: Fri 09 Aug 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1642 (0x66a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Aug 9 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5100DD4C46D3604CBF06988DF700FE8979DA25EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:94:c5:f5:e2:10:18:9e:1e:64:56:50:31:fd:
a7:fa:e1:d9:e3:a1:fa:84:4f:50:f5:9d:17:aa:5a:
66:39:4e:a0:d8:4f:fe:ea:db:ef:e6:40:df:92:1e:
9e:ec:df:76:2d:e6:90:88:f8:9f:17:cf:81:1d:be:
5e:c4:fb:cf:9d:e4:a3:79:47:18:fa:ee:76:5e:97:
0a:47:70:dd:09:2d:73:dc:20:1e:b3:2c:b2:55:b3:
1f:4f:00:f4:f7:2b:8b:39:76:4d:6a:78:f1:e9:fa:
5b:b8:e0:24:10:15:d0:4c:15:cd:32:5c:79:d9:2f:
18:e8:1c:0b:7d:e7:c1:24:41:4b:2d:98:8c:a4:20:
eb:b8:92:7a:39:2a:97:65:06:a8:9d:6f:15:4a:87:
82:64:ae:14:fd:c8:a8:d9:cf:3b:85:12:73:76:78:
0f:38:e3:a2:0c:44:af:63:15:18:62:07:d7:d4:b2:
3e:99:39:a5:da:68:a8:1c:2a:88:32:78:cd:d0:55:
df:79:e6:18:bf:9d:d2:8d:ef:62:ac:2d:5e:d9:dc:
84:70:f5:d5:57:66:12:5b:3f:40:3a:ea:cb:e8:ed:
1f:b9:ea:32:2a:fe:e0:22:35:1e:63:82:e7:7f:bf:
72:79:0d:38:41:4e:ef:3e:6a:27:be:85:1e:d8:89:
de:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:00:DD:4C:46:D3:60:4C:BF:06:98:8D:F7:00:FE:89:79:DA:25:EB
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/UQDdTEbTYEy_BpiN9wD-iXnaJes.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
15:03:34:d6:35:ff:c6:52:33:11:84:12:ad:ef:ad:a7:49:cb:
2a:c1:17:e4:3b:60:71:80:ac:ab:38:35:dd:39:21:ab:94:41:
b5:dc:ef:ad:40:8e:b7:a9:ae:00:9c:96:4c:a2:07:f2:71:44:
68:35:7d:3e:27:73:85:75:cc:3a:c8:02:b2:c1:ea:c8:a1:29:
3c:0f:a8:74:70:2d:dc:77:5c:dc:ea:e7:35:f4:ee:a6:39:86:
52:c5:70:50:b9:57:29:8b:cd:8b:3d:d8:b2:f8:8d:7c:24:76:
66:2d:6c:a8:9e:c9:11:80:2e:b1:f2:87:ad:66:f1:6c:61:e7:
ad:d6:12:b6:95:97:db:ab:ff:31:9b:8c:78:ee:a6:7d:43:9a:
b8:e5:6d:b1:41:d9:14:db:71:19:36:eb:86:e6:48:97:f5:c3:
68:ae:d6:e7:e5:2b:bf:e2:2f:0d:bc:5a:f4:7d:dd:dd:a2:ce:
06:31:3c:0e:29:20:ac:f0:a4:0e:76:7e:33:60:60:c6:a2:63:
a9:30:0d:05:b6:10:9b:bf:03:a9:88:31:1c:2a:1c:a4:9c:bc:
7a:76:3d:90:50:97:39:e5:a6:e6:7f:4e:71:93:59:a8:a0:be:
8b:a2:be:38:85:0a:bf:fd:a9:1d:79:96:a7:84:d9:2f:8c:ed:
41:24:f3:81
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA4MDkx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDUxMDBERDRDNDZEMzYw
NENCRjA2OTg4REY3MDBGRTg5NzlEQTI1RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDblMX14hAYnh5kVlAx/af64dnjofqET1D1nReqWmY5TqDYT/7q
2+/mQN+SHp7s33Yt5pCI+J8Xz4Edvl7E+8+d5KN5Rxj67nZelwpHcN0JLXPcIB6z
LLJVsx9PAPT3K4s5dk1qePHp+lu44CQQFdBMFc0yXHnZLxjoHAt958EkQUstmIyk
IOu4kno5KpdlBqidbxVKh4JkrhT9yKjZzzuFEnN2eA8446IMRK9jFRhiB9fUsj6Z
OaXaaKgcKogyeM3QVd955hi/ndKN72KsLV7Z3IRw9dVXZhJbP0A66svo7R+56jIq
/uAiNR5jgud/v3J5DThBTu8+aie+hR7Yid7tAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUUQDdTEbTYEy/BpiN9wD+iXnaJeswHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL1VRRGRURWJUWUV5X0Jw
aU45d0QtaVhuYUplcy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBABUDNNY1/8ZSMxGEEq3vradJyyrBF+Q7YHGA
rKs4Nd05IauUQbXc761AjreprgCclkyiB/JxRGg1fT4nc4V1zDrIArLB6sihKTwP
qHRwLdx3XNzq5zX07qY5hlLFcFC5VymLzYs92LL4jXwkdmYtbKieyRGALrHyh61m
8Wxh563WEraVl9ur/zGbjHjupn1DmrjlbbFB2RTbcRk264bmSJf1w2iu1uflK7/i
Lw28WvR93d2izgYxPA4pIKzwpA52fjNgYMaiY6kwDQW2EJu/A6mIMRwqHKScvHp2
PZBQlznlpuZ/TnGTWaigvouivjiFCr/9qR15lqeE2S+M7UEk84E=
-----END CERTIFICATE-----
Generated at Fri Aug 9 22:06:09 2024 by rpki-client on console-ams.rpki-client.org