Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/gOh17mL9lfskHgut73CzT6fR3kQ.roa
File: gOh17mL9lfskHgut73CzT6fR3kQ.roa (raw, json)
Hash identifier: rTx5ZDvV7NLlK1nnJAMWs/Xf2vjfMKCECbpYEbiMndI=
Subject key identifier: 80:E8:75:EE:62:FD:95:FB:24:1E:0B:AD:EF:70:B3:4F:A7:D1:DE:44
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0247
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gOh17mL9lfskHgut73CzT6fR3kQ.roa
Signing time: Sat 13 Apr 2024 23:55:05 +0000
ROA not before: Sat 13 Apr 2024 23:55:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 583 (0x247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 13 23:55:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80E875EE62FD95FB241E0BADEF70B34FA7D1DE44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:da:16:e4:f0:bb:85:70:e6:52:b1:89:c9:34:
58:30:a5:80:6f:13:43:3d:1a:bb:24:07:f6:69:84:
90:71:78:cc:a3:e1:f4:e7:e4:1e:3c:75:50:4c:98:
a1:af:62:99:31:11:2c:56:e6:8b:76:18:16:b9:51:
9b:47:f8:6e:1a:39:3c:ad:a3:64:fb:66:6f:f0:7a:
8d:cb:1a:ea:9d:ff:50:98:45:cc:42:38:7a:84:64:
1e:ba:32:bf:75:00:fa:96:5f:27:47:30:06:c3:15:
c4:b2:89:97:a6:6c:ee:75:f3:d0:b0:5c:2f:9c:cd:
bd:0b:af:a0:e0:77:3b:9b:dd:e7:4d:83:b0:92:7b:
c5:58:c2:aa:e4:f7:0f:61:29:96:07:7a:88:e4:cd:
fa:2b:f4:93:1f:2b:d6:9c:10:b1:ed:e9:9e:1c:38:
e0:1d:a5:b5:6e:e4:80:78:7d:34:cf:6e:9b:a1:93:
ce:30:2a:8b:01:83:88:c7:02:07:95:68:09:f9:15:
8d:a5:66:5d:d9:38:08:54:5d:2c:74:3a:57:22:8b:
f2:fb:e1:af:76:12:c7:af:fd:a3:b8:d8:dc:d5:40:
5c:70:04:a8:46:4b:2a:ea:8f:ed:e7:9a:bd:43:d5:
8d:2e:c8:a9:56:fd:f3:72:1e:a1:b8:d6:66:6b:83:
58:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E8:75:EE:62:FD:95:FB:24:1E:0B:AD:EF:70:B3:4F:A7:D1:DE:44
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/gOh17mL9lfskHgut73CzT6fR3kQ.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
27:22:73:d6:35:34:1a:c0:8a:9a:b8:ac:30:73:82:66:58:d1:
d7:15:21:0c:b0:a8:f5:f8:66:5f:66:58:b8:08:c4:62:3c:45:
9b:5e:d3:81:79:61:ad:38:d4:0f:1b:e1:a0:f4:40:d5:73:93:
d1:7e:c2:53:4c:bb:5e:a6:da:27:97:19:6c:92:fb:66:3c:a1:
28:94:07:8d:af:9a:b8:77:27:e1:6a:dc:3f:fb:a9:b1:f6:c9:
9f:72:30:91:b3:c3:9c:3d:57:fd:b1:82:a1:37:e1:7f:0f:95:
b4:44:4b:0a:06:6b:2e:34:b3:d9:d2:69:dd:c1:73:4a:19:1b:
3c:24:0c:f8:c0:96:b6:cf:b9:91:f3:67:5b:d4:08:81:d2:3b:
21:ce:d8:b2:a6:93:c4:85:93:62:b0:52:73:30:03:2a:ca:6f:
30:8a:c1:f1:38:db:c7:54:03:db:04:13:d4:d1:d6:19:13:cd:
94:b9:6b:2d:6d:01:6b:df:4f:29:4e:f1:1a:1c:7b:87:30:e3:
76:2c:b0:3f:ec:33:07:af:a0:00:35:70:12:59:a1:f9:a7:2a:
af:b5:66:c4:08:5b:71:88:6e:96:7f:06:5c:b8:6c:79:de:31:
a7:4a:55:1f:93:50:17:09:df:64:b6:76:82:40:03:53:e3:16:
9a:54:06:b4
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA0MTMy
MzU1MDVaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDgwRTg3NUVFNjJGRDk1
RkIyNDFFMEJBREVGNzBCMzRGQTdEMURFNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCR2hbk8LuFcOZSsYnJNFgwpYBvE0M9GrskB/ZphJBxeMyj4fTn
5B48dVBMmKGvYpkxESxW5ot2GBa5UZtH+G4aOTyto2T7Zm/weo3LGuqd/1CYRcxC
OHqEZB66Mr91APqWXydHMAbDFcSyiZembO5189CwXC+czb0Lr6Dgdzub3edNg7CS
e8VYwqrk9w9hKZYHeojkzfor9JMfK9acELHt6Z4cOOAdpbVu5IB4fTTPbpuhk84w
KosBg4jHAgeVaAn5FY2lZl3ZOAhUXSx0Olcii/L74a92Esev/aO42NzVQFxwBKhG
Syrqj+3nmr1D1Y0uyKlW/fNyHqG41mZrg1h3AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUgOh17mL9lfskHgut73CzT6fR3kQwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL2dPaDE3bUw5bGZza0hn
dXQ3M0N6VDZmUjNrUS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBACcic9Y1NBrAipq4rDBzgmZY0dcVIQywqPX4
Zl9mWLgIxGI8RZte04F5Ya041A8b4aD0QNVzk9F+wlNMu16m2ieXGWyS+2Y8oSiU
B42vmrh3J+Fq3D/7qbH2yZ9yMJGzw5w9V/2xgqE34X8PlbRESwoGay40s9nSad3B
c0oZGzwkDPjAlrbPuZHzZ1vUCIHSOyHO2LKmk8SFk2KwUnMwAyrKbzCKwfE428dU
A9sEE9TR1hkTzZS5ay1tAWvfTylO8Roce4cw43YssD/sMwevoAA1cBJZofmnKq+1
ZsQIW3GIbpZ/Bly4bHneMadKVR+TUBcJ32S2doJAA1PjFppUBrQ=
-----END CERTIFICATE-----
Generated at Sun Apr 14 04:57:08 2024 by rpki-client on console-ams.rpki-client.org