Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/sLYJx-ywdJglnoK8P1LEUpI7qv0.roa
File: sLYJx-ywdJglnoK8P1LEUpI7qv0.roa (raw, json)
Hash identifier: 9P992+A98XmUVPJ1z/rSw1+s2Iqja1xdU0bRqa6zGfU=
Subject key identifier: B0:B6:09:C7:EC:B0:74:98:25:9E:82:BC:3F:52:C4:52:92:3B:AA:FD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0754
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/sLYJx-ywdJglnoK8P1LEUpI7qv0.roa
Signing time: Wed 04 Sep 2024 15:55:03 +0000
ROA not before: Wed 04 Sep 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1876 (0x754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Sep 4 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B0B609C7ECB07498259E82BC3F52C452923BAAFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:21:c2:29:16:eb:a8:38:fd:cb:c3:a0:2e:c7:
87:48:a7:69:8f:76:fa:e5:e8:0b:92:52:c2:9a:95:
bc:75:50:d4:89:93:68:31:b9:8c:b4:64:e7:8b:79:
2c:f6:1f:7e:29:9a:fb:3c:19:19:d7:ef:ac:7f:7c:
83:b8:c4:26:ee:1e:4e:03:3b:b5:5f:fa:e2:62:ec:
61:3d:ee:a5:70:25:1d:ab:c0:01:87:d6:8f:97:24:
24:ca:21:cd:0d:33:f6:e1:5a:6f:3b:b6:e4:6d:50:
7a:5d:45:c3:d5:2e:93:4c:90:c4:ec:54:fe:a2:07:
f0:2e:c6:10:34:b6:7e:44:53:18:23:99:71:4a:6a:
29:ea:37:9f:7c:3d:f1:c3:ce:c8:91:b0:06:ee:de:
23:fa:a9:eb:d7:d1:2e:64:e6:6e:5a:8c:2c:f2:6c:
5c:39:a1:37:74:c7:27:e8:84:13:d1:d6:b0:30:2f:
0c:68:07:1c:dc:ec:f4:82:05:eb:be:5d:d8:b0:6e:
a7:f8:d4:d9:30:9d:2f:f6:7f:b7:24:f9:a6:e7:be:
a3:a9:9f:fb:5f:99:29:3d:4d:ec:20:d1:bc:1e:00:
e3:0f:f0:f5:b2:48:8b:64:e4:bc:5f:ad:0e:e2:d8:
0c:98:6c:4e:e7:70:87:2e:e0:cc:f0:a6:23:cb:74:
48:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B6:09:C7:EC:B0:74:98:25:9E:82:BC:3F:52:C4:52:92:3B:AA:FD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/sLYJx-ywdJglnoK8P1LEUpI7qv0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:66:60:5a:f2:2a:e4:85:8b:29:1d:b6:e1:40:b5:96:1a:d1:
be:2d:70:f1:a9:97:f3:e2:51:6a:d0:50:5a:59:8c:1e:1c:4d:
2c:70:ee:be:84:e0:4e:a8:9b:95:d1:90:f8:33:1b:52:fe:a8:
35:13:48:79:89:a2:b3:49:ef:86:d6:63:36:6f:37:77:d7:d8:
33:d6:dd:39:ee:5a:e3:9b:94:07:43:7d:93:87:da:22:95:97:
c0:cb:cf:e1:58:1c:25:15:aa:a2:e1:39:76:33:12:14:ea:43:
7a:6f:e6:ce:01:ae:71:55:18:29:4b:df:63:77:79:ac:6b:b5:
1a:d6:84:f9:00:c7:1f:48:66:50:10:aa:e4:f2:d2:01:bc:17:
10:f9:bd:de:b5:a6:2a:a0:76:32:89:a8:f0:44:14:0b:88:ee:
d8:6b:77:20:c0:08:8b:ab:17:7d:7d:d0:74:b0:b1:4e:0f:c5:
e2:26:d2:ef:f5:a6:92:83:63:a8:bd:d8:74:e8:47:39:b4:28:
b4:9f:ca:48:21:6c:78:ae:d8:6e:73:ed:5e:c6:09:7c:59:ee:
8b:37:a2:35:23:e8:4f:56:d4:16:48:28:fe:23:63:88:49:37:
7c:9d:59:2a:73:6c:ff:6a:a5:72:29:79:f6:2e:bb:b5:3e:b5:
d0:a0:a1:b9
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICB1QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA5MDQx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEIwQjYwOUM3RUNCMDc0
OTgyNTlFODJCQzNGNTJDNDUyOTIzQkFBRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQIcIpFuuoOP3Lw6Aux4dIp2mPdvrl6AuSUsKalbx1UNSJk2gx
uYy0ZOeLeSz2H34pmvs8GRnX76x/fIO4xCbuHk4DO7Vf+uJi7GE97qVwJR2rwAGH
1o+XJCTKIc0NM/bhWm87tuRtUHpdRcPVLpNMkMTsVP6iB/AuxhA0tn5EUxgjmXFK
ainqN598PfHDzsiRsAbu3iP6qevX0S5k5m5ajCzybFw5oTd0xyfohBPR1rAwLwxo
Bxzc7PSCBeu+Xdiwbqf41NkwnS/2f7ck+abnvqOpn/tfmSk9Tewg0bweAOMP8PWy
SItk5LxfrQ7i2AyYbE7ncIcu4MzwpiPLdEh/AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUsLYJx+ywdJglnoK8P1LEUpI7qv0wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3NMWUp4LXl3ZEpnbG5v
SzhQMUxFVXBJN3F2MC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAB1mYFryKuSFiykdtuFAtZYa0b4tcPGpl/Pi
UWrQUFpZjB4cTSxw7r6E4E6om5XRkPgzG1L+qDUTSHmJorNJ74bWYzZvN3fX2DPW
3TnuWuOblAdDfZOH2iKVl8DLz+FYHCUVqqLhOXYzEhTqQ3pv5s4BrnFVGClL32N3
eaxrtRrWhPkAxx9IZlAQquTy0gG8FxD5vd61piqgdjKJqPBEFAuI7thrdyDACIur
F3190HSwsU4PxeIm0u/1ppKDY6i92HToRzm0KLSfykghbHiu2G5z7V7GCXxZ7os3
ojUj6E9W1BZIKP4jY4hJN3ydWSpzbP9qpXIpefYuu7U+tdCgobk=
-----END CERTIFICATE-----
Generated at Wed Sep 4 21:26:31 2024 by rpki-client on console-fra.rpki-client.org