Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/mqlbttwCCRsrjz1yrfCFdeaiCOU.roa
File: mqlbttwCCRsrjz1yrfCFdeaiCOU.roa (raw, json)
Hash identifier: 1UNdnO58WhqSEMXRs7+gbZWwzQGxcCjjJb4EqkCV2w4=
Subject key identifier: 9A:A9:5B:B6:DC:02:09:1B:2B:8F:3D:72:AD:F0:85:75:E6:A2:08:E5
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 019F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mqlbttwCCRsrjz1yrfCFdeaiCOU.roa
Signing time: Tue 26 Mar 2024 07:55:03 +0000
ROA not before: Tue 26 Mar 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415 (0x19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 26 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9AA95BB6DC02091B2B8F3D72ADF08575E6A208E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c1:b4:3b:7b:e6:a1:f4:d3:f5:e1:cd:60:6f:
a6:94:b4:02:1e:7c:11:84:dd:20:2d:27:ae:02:e6:
52:42:ba:a4:af:ee:a7:4a:60:5f:45:57:af:f9:fd:
ee:dd:35:43:29:91:70:57:b4:b6:bf:45:42:b6:61:
27:ba:df:b0:0c:ac:03:d6:4a:00:84:a1:fb:d8:b1:
73:c1:46:c2:d6:10:cd:bf:36:ea:5c:ed:52:82:99:
57:dc:ef:59:c3:ac:18:0f:da:cb:7a:a5:04:f2:4c:
91:74:c4:5f:c0:1c:fe:d5:b9:10:8f:8a:2d:8a:de:
59:9a:4e:68:4a:60:ab:fc:f7:9d:48:69:0c:38:66:
19:a5:8d:e7:f0:61:13:60:35:f3:e9:75:a1:ac:d9:
cb:8b:02:3d:11:5b:c1:e4:1f:de:9c:67:a4:7a:8b:
94:02:90:79:e5:e0:fb:69:99:b1:58:9c:57:a7:75:
c0:91:82:c6:81:46:7c:71:ec:e0:ea:23:45:fe:d1:
17:25:d5:0d:8c:3c:9b:78:cb:5d:47:6a:86:07:a6:
1b:f7:22:1f:d4:11:4f:c5:eb:f5:14:77:51:f1:0d:
41:0c:92:63:6e:b1:46:d8:de:92:6b:0e:45:a2:2e:
42:78:60:7e:cd:9a:e7:f0:de:60:74:d0:1a:21:7a:
cf:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A9:5B:B6:DC:02:09:1B:2B:8F:3D:72:AD:F0:85:75:E6:A2:08:E5
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/mqlbttwCCRsrjz1yrfCFdeaiCOU.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:86:ef:ce:b7:c6:79:41:a9:2b:72:94:f9:68:68:79:db:f3:
f7:6f:b5:85:5d:aa:52:21:54:68:47:06:50:1f:27:b3:a1:7b:
0f:30:9a:4b:91:cf:8f:a4:bb:d0:8f:74:8d:77:4e:9d:00:11:
20:ee:e8:7d:dc:da:80:e0:0b:81:05:92:9d:6a:15:92:4e:20:
42:04:c0:62:3e:0d:12:d2:52:81:0d:d1:b7:a5:50:a7:fd:93:
f3:1a:73:f9:c6:b1:e7:f1:ad:43:d0:dd:2e:52:22:0f:a7:73:
2d:4e:c3:59:5c:41:9d:88:97:fd:6b:8b:f6:fa:23:f7:2d:4d:
3f:be:8b:f1:b0:6a:ee:73:4b:d1:0a:c6:82:c6:52:f6:e2:2b:
b1:09:8b:49:76:fd:2b:e3:a5:00:a4:5a:2c:4a:be:8e:cb:f7:
48:58:b3:76:04:38:0e:50:3b:ef:92:c5:b0:25:ff:3d:d8:32:
33:db:9f:26:61:91:e0:ae:4a:15:dd:99:d0:6a:cd:1c:1f:73:
b9:20:72:a7:2b:76:00:10:3a:ec:1b:1a:ee:85:8c:1a:82:b1:
c7:3e:25:5e:37:7b:44:27:9c:48:21:30:47:09:d3:b5:ea:ae:
98:fc:6b:db:02:2e:ab:07:7c:3b:3b:ae:85:05:6b:a0:56:4b:
fd:20:57:7e
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDAzMjYw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDlBQTk1QkI2REMwMjA5
MUIyQjhGM0Q3MkFERjA4NTc1RTZBMjA4RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCiwbQ7e+ah9NP14c1gb6aUtAIefBGE3SAtJ64C5lJCuqSv7qdK
YF9FV6/5/e7dNUMpkXBXtLa/RUK2YSe637AMrAPWSgCEofvYsXPBRsLWEM2/Nupc
7VKCmVfc71nDrBgP2st6pQTyTJF0xF/AHP7VuRCPii2K3lmaTmhKYKv8951IaQw4
ZhmljefwYRNgNfPpdaGs2cuLAj0RW8HkH96cZ6R6i5QCkHnl4PtpmbFYnFendcCR
gsaBRnxx7ODqI0X+0Rcl1Q2MPJt4y11HaoYHphv3Ih/UEU/F6/UUd1HxDUEMkmNu
sUbY3pJrDkWiLkJ4YH7Nmufw3mB00Bohes97AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUmqlbttwCCRsrjz1yrfCFdeaiCOUwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL21xbGJ0dHdDQ1Jzcmp6
MXlyZkNGZGVhaUNPVS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAA2G7863xnlBqStylPloaHnb8/dvtYVdqlIh
VGhHBlAfJ7Ohew8wmkuRz4+ku9CPdI13Tp0AESDu6H3c2oDgC4EFkp1qFZJOIEIE
wGI+DRLSUoEN0belUKf9k/Mac/nGsefxrUPQ3S5SIg+ncy1Ow1lcQZ2Il/1ri/b6
I/ctTT++i/Gwau5zS9EKxoLGUvbiK7EJi0l2/SvjpQCkWixKvo7L90hYs3YEOA5Q
O++SxbAl/z3YMjPbnyZhkeCuShXdmdBqzRwfc7kgcqcrdgAQOuwbGu6FjBqCscc+
JV43e0QnnEghMEcJ07Xqrpj8a9sCLqsHfDs7roUFa6BWS/0gV34=
-----END CERTIFICATE-----
Generated at Tue Mar 26 14:31:39 2024 by rpki-client on console-ams.rpki-client.org