Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/c6QjvX8YzF70RpS936yKxX0pyxo.roa
File: c6QjvX8YzF70RpS936yKxX0pyxo.roa (raw, json)
Hash identifier: KcAQ6G/VuMKsz2Ve+65yQtvr03LqDm6RnPKDTdsP0mQ=
Subject key identifier: 73:A4:23:BD:7F:18:CC:5E:F4:46:94:BD:DF:AC:8A:C5:7D:29:CB:1A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0736
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/c6QjvX8YzF70RpS936yKxX0pyxo.roa
Signing time: Sun 01 Sep 2024 07:55:03 +0000
ROA not before: Sun 01 Sep 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1846 (0x736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 1 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73A423BD7F18CC5EF44694BDDFAC8AC57D29CB1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:82:73:a1:0b:9d:07:54:34:33:97:e9:a4:f1:
c8:7a:7d:20:e6:27:fc:d6:5b:8d:07:38:73:ee:88:
1b:48:96:77:79:a3:61:5f:8d:64:c9:b2:d3:87:eb:
e1:da:8b:a9:da:16:7c:ac:dd:0d:90:1a:1f:22:6f:
8f:6b:1e:c7:c1:1b:7e:79:73:51:96:d2:49:e9:d1:
45:6e:ed:2e:cc:cc:a3:80:3e:c3:74:96:24:e1:25:
dc:0e:07:b5:69:0b:27:d7:64:0f:fc:b0:0d:52:de:
e2:ca:54:e7:21:5f:14:c0:f5:66:c7:1a:6d:bc:a4:
67:59:86:f6:33:80:71:44:f0:0d:6e:d7:8f:95:96:
ab:27:16:c6:cb:20:91:d9:f4:41:16:fc:13:17:f3:
84:f6:e8:de:c7:fc:2f:8c:f6:98:f3:65:b6:b1:64:
96:e6:3b:da:b3:ad:12:e3:e9:b8:0f:1b:fb:5a:b6:
57:8c:10:35:cc:60:e7:62:4a:4d:88:bc:69:f4:7e:
4b:1e:c3:06:1b:31:f8:4a:5b:89:d1:62:cd:00:c1:
31:57:7d:89:b0:e3:ca:26:36:0c:c3:b8:38:4a:26:
a3:85:80:2c:2b:b9:2f:99:64:23:b5:be:f8:c8:2f:
94:fb:dd:35:9c:30:bc:1d:31:ce:3b:d5:d4:a4:9e:
9e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A4:23:BD:7F:18:CC:5E:F4:46:94:BD:DF:AC:8A:C5:7D:29:CB:1A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/c6QjvX8YzF70RpS936yKxX0pyxo.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
da:c1:34:90:09:d9:0a:dc:8f:3b:2f:1d:5c:31:19:39:be:f6:
a6:8c:33:4c:89:71:38:7b:1e:6d:84:6b:5a:d7:f2:29:00:cd:
63:ef:51:f5:99:ef:cd:c4:67:96:89:45:9a:ab:ee:42:20:b5:
5d:ed:c2:77:44:01:65:7e:07:bc:1e:37:c0:3f:3b:df:df:ed:
09:8f:8e:9a:26:7b:33:e2:62:69:96:b7:33:5f:6a:65:02:2c:
4c:bc:f9:f8:50:9b:a2:97:3e:6d:3f:b1:60:e7:43:37:3d:b9:
2d:a2:7f:0d:73:ed:15:6d:46:fb:4c:a3:d7:a4:04:ba:6e:71:
51:61:00:96:1c:14:98:b7:8d:01:41:2c:20:b8:84:bc:70:4e:
c7:b1:79:45:6f:df:ad:7f:e2:71:5b:72:0b:62:ee:45:4e:68:
28:cc:c4:7a:f6:47:ee:93:f9:e8:14:6c:db:d1:b3:45:9b:71:
23:8d:9b:7f:05:64:90:2b:1e:1d:ba:0e:1c:de:93:56:c3:3a:
30:07:d9:a6:40:a0:54:79:51:72:bd:e3:5f:f7:85:70:cd:07:
1c:ee:ec:8a:22:24:88:f8:fd:7b:2c:05:3c:5b:70:4f:4a:2a:
60:99:bd:84:ba:61:3a:ab:44:7e:d5:4d:e4:53:5d:24:93:1b:
6c:ea:49:09
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA5MDEw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDczQTQyM0JEN0YxOEND
NUVGNDQ2OTRCRERGQUM4QUM1N0QyOUNCMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBgnOhC50HVDQzl+mk8ch6fSDmJ/zWW40HOHPuiBtIlnd5o2Ff
jWTJstOH6+Hai6naFnys3Q2QGh8ib49rHsfBG355c1GW0knp0UVu7S7MzKOAPsN0
liThJdwOB7VpCyfXZA/8sA1S3uLKVOchXxTA9WbHGm28pGdZhvYzgHFE8A1u14+V
lqsnFsbLIJHZ9EEW/BMX84T26N7H/C+M9pjzZbaxZJbmO9qzrRLj6bgPG/tatleM
EDXMYOdiSk2IvGn0fksewwYbMfhKW4nRYs0AwTFXfYmw48omNgzDuDhKJqOFgCwr
uS+ZZCO1vvjIL5T73TWcMLwdMc471dSknp4LAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUc6QjvX8YzF70RpS936yKxX0pyxowHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL2M2UWp2WDhZekY3MFJw
UzkzNnlLeFgwcHl4by5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBANrBNJAJ2QrcjzsvHVwxGTm+9qaMM0yJcTh7
Hm2Ea1rX8ikAzWPvUfWZ783EZ5aJRZqr7kIgtV3twndEAWV+B7weN8A/O9/f7QmP
jpomezPiYmmWtzNfamUCLEy8+fhQm6KXPm0/sWDnQzc9uS2ifw1z7RVtRvtMo9ek
BLpucVFhAJYcFJi3jQFBLCC4hLxwTsexeUVv361/4nFbcgti7kVOaCjMxHr2R+6T
+egUbNvRs0WbcSONm38FZJArHh26Dhzek1bDOjAH2aZAoFR5UXK941/3hXDNBxzu
7IoiJIj4/XssBTxbcE9KKmCZvYS6YTqrRH7VTeRTXSSTG2zqSQk=
-----END CERTIFICATE-----
Generated at Sun Sep 1 13:39:40 2024 by rpki-client on console-ams.rpki-client.org