Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/hRujpSuM7vidItXbWhwgTxUqvqc.roa
File: hRujpSuM7vidItXbWhwgTxUqvqc.roa (raw, json)
Hash identifier: 9u9gIc7FsLsUye/dtsTVFd8WJDde5rv3sSiz3H3wgAs=
Subject key identifier: 85:1B:A3:A5:2B:8C:EE:F8:9D:22:D5:DB:5A:1C:20:4F:15:2A:BE:A7
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 08B6
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/hRujpSuM7vidItXbWhwgTxUqvqc.roa
Signing time: Sun 13 Oct 2024 23:55:03 +0000
ROA not before: Sun 13 Oct 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2230 (0x8b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 13 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=851BA3A52B8CEEF89D22D5DB5A1C204F152ABEA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c0:4f:a0:63:ce:83:23:57:69:64:46:45:98:
2a:91:50:7b:43:34:63:86:7e:5f:22:56:88:29:56:
1d:5d:3a:83:48:9d:aa:c5:64:0e:39:94:9c:23:50:
2a:52:59:e3:f8:c7:37:1e:d5:6c:2a:21:8b:89:1e:
37:05:1c:48:4e:a6:b3:0e:e8:e0:fd:8d:64:86:ea:
a4:fb:6a:cd:38:b7:5d:d6:b9:94:aa:61:01:b9:da:
c2:26:6c:db:19:f9:c4:c1:89:f0:94:d9:17:c7:bb:
77:11:05:b1:b5:b1:ee:b8:00:05:3c:b1:8a:a2:f0:
9a:73:10:fb:c0:5c:51:0c:b2:a9:83:0a:65:7e:ea:
ed:73:27:00:e3:40:c2:87:00:a0:6a:d8:0f:59:20:
9f:11:ff:f9:06:fb:d6:fb:13:04:f7:e8:78:26:77:
d1:55:37:47:f7:12:37:bf:a7:ae:c4:3f:22:38:16:
fa:41:63:7e:bb:67:a5:0c:88:7e:b7:a7:24:fa:dd:
38:44:31:9b:cf:c9:e6:f0:d1:2d:a7:dd:5d:74:7c:
1e:e2:e8:a0:10:74:f0:7e:19:5f:25:1f:c4:42:55:
1e:88:39:0f:f4:ed:b5:6f:be:27:48:29:8d:2c:88:
db:5f:31:d0:aa:5c:f8:18:a4:cb:f9:69:83:6b:96:
7d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1B:A3:A5:2B:8C:EE:F8:9D:22:D5:DB:5A:1C:20:4F:15:2A:BE:A7
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/hRujpSuM7vidItXbWhwgTxUqvqc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
39:0b:65:d9:2f:a1:19:b4:23:61:15:7c:37:24:26:a9:4d:eb:
9f:6c:48:c8:76:9f:ef:a9:f9:a7:4d:c0:9c:05:4e:55:e4:f4:
aa:4c:c8:42:1c:a2:41:7a:25:a4:5b:76:e7:62:0e:95:86:be:
31:9f:d2:26:79:da:2d:37:dd:5f:7d:b6:fe:84:b8:ca:36:30:
a1:6b:44:4e:9f:35:3a:9a:b9:f7:2e:63:bf:5f:4e:a6:d6:ba:
f6:67:c1:67:5c:a4:91:89:2e:2e:f1:5a:85:10:a7:1d:cc:28:
c7:56:f5:30:60:ec:f1:fe:ec:a7:23:1e:0f:f4:7a:50:0f:42:
d1:f5:1e:64:31:a1:b4:bc:ca:63:51:67:58:f6:91:c6:f0:f8:
2d:71:3a:1f:fe:d6:6b:0c:40:40:dd:3d:b1:95:51:d2:94:37:
0c:61:37:29:35:d6:c6:00:c5:3c:65:72:99:46:3f:c3:47:ec:
af:7e:c4:2c:da:2f:24:62:80:1e:8a:ea:a0:e6:26:ac:4b:53:
f3:ec:9e:29:74:d5:48:93:72:06:fc:d3:cb:7e:99:4f:71:3b:
72:e9:3e:f4:df:07:76:4e:bf:2e:1a:c3:cf:62:d6:06:d1:0c:
1c:05:46:18:15:d9:b9:38:4c:5f:39:cf:c4:41:49:f8:96:c3:
b6:6f:40:0c
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCLYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDEwMTMy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDg1MUJBM0E1MkI4Q0VF
Rjg5RDIyRDVEQjVBMUMyMDRGMTUyQUJFQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLwE+gY86DI1dpZEZFmCqRUHtDNGOGfl8iVogpVh1dOoNInarF
ZA45lJwjUCpSWeP4xzce1WwqIYuJHjcFHEhOprMO6OD9jWSG6qT7as04t13WuZSq
YQG52sImbNsZ+cTBifCU2RfHu3cRBbG1se64AAU8sYqi8JpzEPvAXFEMsqmDCmV+
6u1zJwDjQMKHAKBq2A9ZIJ8R//kG+9b7EwT36Hgmd9FVN0f3Eje/p67EPyI4FvpB
Y367Z6UMiH63pyT63ThEMZvPyebw0S2n3V10fB7i6KAQdPB+GV8lH8RCVR6IOQ/0
7bVvvidIKY0siNtfMdCqXPgYpMv5aYNrln39AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUhRujpSuM7vidItXbWhwgTxUqvqcwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL2hSdWpwU3VNN3ZpZEl0
WGJXaHdnVHhVcXZxYy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBADkLZdkvoRm0I2EVfDckJqlN659sSMh2n++p
+adNwJwFTlXk9KpMyEIcokF6JaRbdudiDpWGvjGf0iZ52i033V99tv6EuMo2MKFr
RE6fNTqaufcuY79fTqbWuvZnwWdcpJGJLi7xWoUQpx3MKMdW9TBg7PH+7KcjHg/0
elAPQtH1HmQxobS8ymNRZ1j2kcbw+C1xOh/+1msMQEDdPbGVUdKUNwxhNyk11sYA
xTxlcplGP8NH7K9+xCzaLyRigB6K6qDmJqxLU/Psnil01UiTcgb808t+mU9xO3Lp
PvTfB3ZOvy4aw89i1gbRDBwFRhgV2bk4TF85z8RBSfiWw7ZvQAw=
-----END CERTIFICATE-----
Generated at Mon Oct 14 05:33:04 2024 by rpki-client on console-fra.rpki-client.org