Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/jkup0ZEBoCtjdBZdUP6dXn9__dc.roa
File: jkup0ZEBoCtjdBZdUP6dXn9__dc.roa (raw, json)
Hash identifier: U27tGEcGXK+sE56UNcFc36N5qyVL03HNq2kOl4IJW5M=
Subject key identifier: 8E:4B:A9:D1:91:01:A0:2B:63:74:16:5D:50:FE:9D:5E:7F:7F:FD:D7
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 09CE
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jkup0ZEBoCtjdBZdUP6dXn9__dc.roa
Signing time: Wed 13 Nov 2024 23:55:02 +0000
ROA not before: Wed 13 Nov 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2510 (0x9ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 13 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8E4BA9D19101A02B6374165D50FE9D5E7F7FFDD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4c:24:b5:d1:a1:48:a9:9f:5e:96:9a:3b:06:
76:67:38:23:b2:23:c9:ee:fb:1a:57:fd:4f:a2:3b:
68:0c:66:69:5c:2e:14:fb:be:64:34:6f:00:01:84:
ba:fe:31:70:2e:b3:ed:0f:6b:d2:14:63:2a:5c:71:
f9:13:ca:bd:5a:5e:10:20:67:13:e7:86:d9:b4:1c:
57:b0:c8:53:0a:75:4e:6d:07:4c:66:ab:11:8b:89:
52:b8:9b:51:a4:07:58:4c:80:ee:f9:22:29:b3:cf:
21:21:ee:e9:65:a2:ea:5d:0c:5c:fa:db:f8:05:3a:
49:8e:dc:0c:b1:25:54:46:59:ea:14:d0:92:32:3d:
de:39:ad:38:02:88:c1:56:28:ef:2e:ec:f9:ca:1b:
a0:2c:ae:b7:ee:30:ed:2e:d5:46:c8:3b:2c:5f:f7:
46:a4:f7:7b:48:b6:0a:7f:15:27:de:f7:5e:82:c8:
4d:65:85:99:36:30:2e:b9:2d:32:24:e0:6d:49:62:
2d:b4:55:39:c7:7e:68:49:41:97:4b:ad:66:29:b2:
f5:d0:19:b3:eb:47:c9:4c:18:30:f0:96:4f:9a:9f:
b9:8f:25:3e:96:ff:9f:73:e6:0d:2c:69:d2:09:42:
bb:0e:ac:d3:31:79:78:44:c5:41:b6:36:b1:b1:b1:
86:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4B:A9:D1:91:01:A0:2B:63:74:16:5D:50:FE:9D:5E:7F:7F:FD:D7
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jkup0ZEBoCtjdBZdUP6dXn9__dc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
37:79:52:39:13:75:3b:d3:14:e7:07:a1:f1:01:4c:c0:d5:99:
4f:a6:4a:f2:2b:bf:a1:f4:d5:b1:2b:78:7b:f2:d8:f5:6c:29:
d7:2a:5f:44:13:14:30:bb:c2:5c:dc:6f:3b:d3:a6:da:b6:04:
ce:e7:2c:d3:6e:0e:8d:c7:a5:be:d0:76:e1:a8:67:46:14:f9:
49:de:30:1e:69:24:76:94:4b:30:ff:59:bb:c1:69:fe:81:8c:
85:7c:b0:d4:25:c0:50:15:56:80:41:88:c9:c1:39:99:12:6b:
d1:cf:69:7b:2c:d1:32:9d:c2:e1:ff:8d:4a:8f:11:bf:18:c1:
9b:9c:c5:5d:4c:be:55:8a:4d:6a:3b:42:0e:64:f3:f6:0f:90:
b8:8e:12:0e:48:ec:b2:75:a9:15:76:37:79:3a:09:b2:49:84:
97:76:5c:1a:e6:67:d6:ce:ba:6a:c3:ee:98:9a:f1:58:03:16:
6d:59:c1:9e:54:38:b5:a4:b8:41:b4:81:18:a0:8e:86:27:f8:
4a:ae:6d:30:04:a0:b7:39:38:20:8a:02:39:24:5f:50:eb:ad:
ad:2a:5c:ea:0f:61:1f:b9:52:b7:c9:ac:dd:1d:cf:e7:46:ef:
68:da:a9:dd:8c:77:c8:a3:24:5c:15:02:3e:4a:8d:f5:e8:d8:
a9:7a:8a:b7
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDExMTMy
MzU1MDJaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDhFNEJBOUQxOTEwMUEw
MkI2Mzc0MTY1RDUwRkU5RDVFN0Y3RkZERDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7TCS10aFIqZ9elpo7BnZnOCOyI8nu+xpX/U+iO2gMZmlcLhT7
vmQ0bwABhLr+MXAus+0Pa9IUYypccfkTyr1aXhAgZxPnhtm0HFewyFMKdU5tB0xm
qxGLiVK4m1GkB1hMgO75IimzzyEh7ulloupdDFz62/gFOkmO3AyxJVRGWeoU0JIy
Pd45rTgCiMFWKO8u7PnKG6AsrrfuMO0u1UbIOyxf90ak93tItgp/FSfe916CyE1l
hZk2MC65LTIk4G1JYi20VTnHfmhJQZdLrWYpsvXQGbPrR8lMGDDwlk+an7mPJT6W
/59z5g0sadIJQrsOrNMxeXhExUG2NrGxsYb9AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUjkup0ZEBoCtjdBZdUP6dXn9//dcwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL2prdXAwWkVCb0N0amRC
WmRVUDZkWG45X19kYy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBADd5UjkTdTvTFOcHofEBTMDVmU+mSvIrv6H0
1bEreHvy2PVsKdcqX0QTFDC7wlzcbzvTptq2BM7nLNNuDo3Hpb7QduGoZ0YU+Une
MB5pJHaUSzD/WbvBaf6BjIV8sNQlwFAVVoBBiMnBOZkSa9HPaXss0TKdwuH/jUqP
Eb8YwZucxV1MvlWKTWo7Qg5k8/YPkLiOEg5I7LJ1qRV2N3k6CbJJhJd2XBrmZ9bO
umrD7pia8VgDFm1ZwZ5UOLWkuEG0gRigjoYn+EqubTAEoLc5OCCKAjkkX1Drra0q
XOoPYR+5UrfJrN0dz+dG72jaqd2Md8ijJFwVAj5KjfXo2Kl6irc=
-----END CERTIFICATE-----
Generated at Thu Nov 14 06:09:44 2024 by rpki-client on console-ams.rpki-client.org