Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/gGrxdy5f4GLE69h2K9rlRZVOz6g.roa
File: gGrxdy5f4GLE69h2K9rlRZVOz6g.roa (raw, json)
Hash identifier: q0KN1fQU62l+dz/JsuO04bVrY99YZ4Mx8M0Gf1jbZZI=
Subject key identifier: 80:6A:F1:77:2E:5F:E0:62:C4:EB:D8:76:2B:DA:E5:45:95:4E:CF:A8
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 016F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gGrxdy5f4GLE69h2K9rlRZVOz6g.roa
Signing time: Wed 20 Mar 2024 23:55:03 +0000
ROA not before: Wed 20 Mar 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367 (0x16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 20 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=806AF1772E5FE062C4EBD8762BDAE545954ECFA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d9:83:68:92:7a:9a:07:0b:1c:11:2b:33:72:
43:ec:2e:83:e4:0c:94:16:53:04:3b:76:be:c9:f3:
bf:6d:e3:45:9c:60:a2:f7:9d:d2:50:ac:4f:ee:e8:
1e:02:9c:d8:41:5d:b1:86:99:4d:3f:44:2b:c9:e0:
ef:63:d9:c9:3d:4a:c8:1e:9c:d6:90:0d:99:14:16:
5a:68:af:3f:cb:0b:e6:7f:31:10:15:45:87:ff:c0:
da:d9:05:1b:9d:7c:20:88:2a:fd:7e:37:14:55:16:
b1:2c:ff:c5:d2:13:9b:26:96:fd:5d:79:1e:c2:71:
86:07:38:02:95:0a:dc:42:6c:70:88:fb:65:b1:d2:
db:f6:0c:6e:09:0f:96:c6:48:3c:a1:8e:d2:4a:9c:
53:c0:7c:33:6c:ff:75:b6:ff:e9:24:87:f6:9f:38:
33:87:b2:a3:11:6e:48:01:f3:43:2e:f0:53:da:44:
11:69:4c:f4:33:f7:b9:66:2e:18:23:a2:56:4b:41:
4b:7c:4b:ef:e4:18:2b:fe:ef:93:16:34:3c:ca:3d:
fa:3c:25:44:b1:cd:a0:3a:ca:98:e6:c5:75:d2:e7:
20:a4:89:57:bd:b5:01:16:50:f9:9e:95:e3:df:d0:
5b:89:14:f2:9a:08:f9:c2:2b:fe:32:22:9f:dd:0a:
39:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:6A:F1:77:2E:5F:E0:62:C4:EB:D8:76:2B:DA:E5:45:95:4E:CF:A8
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gGrxdy5f4GLE69h2K9rlRZVOz6g.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:d8:0d:8f:b7:7e:46:b7:bf:8c:31:51:21:2d:8a:e9:1a:bb:
e8:47:56:d7:c1:75:dd:28:98:40:c5:7b:57:61:a8:77:65:62:
56:00:31:66:32:fb:ec:dd:5d:5e:34:9b:56:bb:ee:bd:82:56:
bb:a7:99:07:85:80:07:37:09:ab:bb:ff:59:2a:57:53:3c:05:
44:f3:79:40:eb:ab:04:b5:db:9d:d8:77:ac:ad:fd:f1:06:bb:
02:f0:3a:7d:2d:9c:eb:b8:6c:a4:6f:19:fb:5b:43:4c:3a:ee:
7b:62:7e:95:3b:13:52:39:ee:3c:dd:8d:ae:4f:be:03:9e:c2:
5d:78:e2:46:17:e1:a0:d0:16:a3:ed:d5:24:29:a1:63:c8:76:
ef:19:50:7d:3d:7f:3a:75:c2:27:4d:40:0d:36:e9:a4:b2:61:
d6:8a:85:ef:07:7a:09:37:d5:6b:c6:17:b1:d3:5f:ba:9a:da:
a5:0a:72:aa:ec:41:fa:17:6c:14:8b:87:84:64:6b:5e:b5:e9:
20:21:80:79:b0:1a:e1:6e:68:d3:82:37:ce:f9:16:80:58:1b:
72:ba:ed:70:c0:25:dd:1e:b3:ec:6c:c8:17:6f:b3:35:51:6a:
7f:3e:1e:77:e8:91:4d:20:00:4b:f6:c5:98:72:ef:61:73:ad:
28:8c:9a:0b
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDAzMjAy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDgwNkFGMTc3MkU1RkUw
NjJDNEVCRDg3NjJCREFFNTQ1OTU0RUNGQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDn2YNoknqaBwscESszckPsLoPkDJQWUwQ7dr7J879t40WcYKL3
ndJQrE/u6B4CnNhBXbGGmU0/RCvJ4O9j2ck9SsgenNaQDZkUFlporz/LC+Z/MRAV
RYf/wNrZBRudfCCIKv1+NxRVFrEs/8XSE5smlv1deR7CcYYHOAKVCtxCbHCI+2Wx
0tv2DG4JD5bGSDyhjtJKnFPAfDNs/3W2/+kkh/afODOHsqMRbkgB80Mu8FPaRBFp
TPQz97lmLhgjolZLQUt8S+/kGCv+75MWNDzKPfo8JUSxzaA6ypjmxXXS5yCkiVe9
tQEWUPmelePf0FuJFPKaCPnCK/4yIp/dCjmPAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUgGrxdy5f4GLE69h2K9rlRZVOz6gwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL2dHcnhkeTVmNEdMRTY5
aDJLOXJsUlpWT3o2Zy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAH/YDY+3fka3v4wxUSEtiukau+hHVtfBdd0o
mEDFe1dhqHdlYlYAMWYy++zdXV40m1a77r2CVrunmQeFgAc3Cau7/1kqV1M8BUTz
eUDrqwS1253Yd6yt/fEGuwLwOn0tnOu4bKRvGftbQ0w67ntifpU7E1I57jzdja5P
vgOewl144kYX4aDQFqPt1SQpoWPIdu8ZUH09fzp1widNQA026aSyYdaKhe8Hegk3
1WvGF7HTX7qa2qUKcqrsQfoXbBSLh4Rka1616SAhgHmwGuFuaNOCN875FoBYG3K6
7XDAJd0es+xsyBdvszVRan8+HnfokU0gAEv2xZhy72FzrSiMmgs=
-----END CERTIFICATE-----
Generated at Thu Mar 21 06:52:10 2024 by rpki-client on console-ams.rpki-client.org