Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/sdLGu289mh97rmSGeCyNMeHcjL0.roa
File: sdLGu289mh97rmSGeCyNMeHcjL0.roa (raw, json)
Hash identifier: JpwwZH0NCI5xIRzj602/HLIvGIKyN3fwW0pJW9k5JHQ=
Subject key identifier: B1:D2:C6:BB:6F:3D:9A:1F:7B:AE:64:86:78:2C:8D:31:E1:DC:8C:BD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 09AA
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/sdLGu289mh97rmSGeCyNMeHcjL0.roa
Signing time: Sat 09 Nov 2024 23:55:03 +0000
ROA not before: Sat 09 Nov 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2474 (0x9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Nov 9 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B1D2C6BB6F3D9A1F7BAE6486782C8D31E1DC8CBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8e:ab:98:9d:7c:ca:5c:8f:bd:e1:8b:b3:0c:
1e:e7:b5:7c:d9:f0:d2:a4:82:76:7a:e9:d7:01:56:
e9:02:b7:5c:a0:ec:84:bb:d8:3c:ac:7b:e9:a4:75:
84:1e:ae:eb:74:19:cf:92:9d:11:ba:6e:f2:63:c2:
96:9c:1b:72:ef:b7:da:16:3f:d0:60:e9:e5:18:be:
c2:84:66:89:c9:b2:41:e7:a2:a2:fe:20:02:bd:ad:
97:4b:22:77:53:5f:a9:2b:d9:22:e0:bf:cb:f5:b2:
f1:c6:7c:90:2a:18:8e:fe:1a:5f:c6:51:70:32:3a:
a0:a6:59:11:2f:75:02:7f:44:2f:a9:17:03:16:be:
6b:c2:fe:81:2a:c9:ec:67:7b:42:89:c5:c3:47:7c:
36:3a:c5:4b:12:cb:42:ae:89:1e:8e:6d:a9:23:82:
81:a2:59:35:ec:47:ab:73:4e:45:c2:34:19:ce:a9:
e0:0f:aa:93:ab:bd:ff:0d:bf:4c:04:4c:e1:5e:e8:
fd:e3:9f:cf:39:e5:8c:e9:3b:56:20:10:44:39:c3:
a9:f7:58:2d:e2:0a:80:9a:7a:ad:bc:12:d2:95:74:
1a:4d:17:5f:ca:d3:74:b2:d7:08:51:d4:92:53:cd:
73:34:0b:74:40:91:a9:91:91:3f:fa:8e:b5:ce:20:
7b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D2:C6:BB:6F:3D:9A:1F:7B:AE:64:86:78:2C:8D:31:E1:DC:8C:BD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/sdLGu289mh97rmSGeCyNMeHcjL0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:23:6f:5a:4c:9a:c1:30:bf:ed:f6:20:56:0d:2f:f3:8a:8f:
67:db:65:a1:df:47:27:e9:39:0a:44:3f:e7:1a:46:23:3f:73:
1f:10:ec:95:01:09:42:38:1d:88:6a:3e:c2:83:3d:2a:69:5b:
86:e7:70:35:8e:d3:f1:68:c3:e5:65:e4:51:8a:4d:76:24:86:
b4:2f:a2:ca:6b:e2:cb:fe:d5:e8:ad:64:79:e3:ad:02:38:2e:
76:5e:c7:25:1e:0a:dc:78:33:af:cc:a6:9b:a7:55:b6:ae:bf:
aa:a5:4e:9a:ac:9b:26:a6:37:76:bb:90:39:da:76:d6:03:5a:
37:1f:79:0d:a5:3b:73:bc:a4:cd:cd:09:0c:5b:c0:76:6e:b6:
8b:3d:2c:b3:a8:61:41:80:5b:7e:3a:dd:5a:78:8b:37:9b:9a:
56:74:bc:f9:dd:e5:1a:18:b4:d9:25:36:c0:1d:33:a9:d9:f7:
ad:b9:d3:18:b8:6b:2d:60:b4:8f:e9:0e:40:fe:98:ec:c0:0a:
36:24:c5:d9:48:f0:67:db:a6:11:cf:b2:3a:b3:22:c6:4c:4a:
b4:ae:33:a6:77:49:37:99:00:ed:9d:39:78:10:aa:0b:89:1f:
8f:f3:a3:30:8a:d3:3e:f3:94:06:7c:8e:10:dc:e2:78:32:c0:
6a:5d:fe:4d
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCaowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDExMDky
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEIxRDJDNkJCNkYzRDlB
MUY3QkFFNjQ4Njc4MkM4RDMxRTFEQzhDQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUjquYnXzKXI+94YuzDB7ntXzZ8NKkgnZ66dcBVukCt1yg7IS7
2Dyse+mkdYQerut0Gc+SnRG6bvJjwpacG3Lvt9oWP9Bg6eUYvsKEZonJskHnoqL+
IAK9rZdLIndTX6kr2SLgv8v1svHGfJAqGI7+Gl/GUXAyOqCmWREvdQJ/RC+pFwMW
vmvC/oEqyexne0KJxcNHfDY6xUsSy0KuiR6ObakjgoGiWTXsR6tzTkXCNBnOqeAP
qpOrvf8Nv0wETOFe6P3jn8855YzpO1YgEEQ5w6n3WC3iCoCaeq28EtKVdBpNF1/K
03Sy1whR1JJTzXM0C3RAkamRkT/6jrXOIHvVAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUsdLGu289mh97rmSGeCyNMeHcjL0wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3NkTEd1Mjg5bWg5N3Jt
U0dlQ3lOTWVIY2pMMC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAIsjb1pMmsEwv+32IFYNL/OKj2fbZaHfRyfp
OQpEP+caRiM/cx8Q7JUBCUI4HYhqPsKDPSppW4bncDWO0/Fow+Vl5FGKTXYkhrQv
ospr4sv+1eitZHnjrQI4LnZexyUeCtx4M6/MppunVbauv6qlTpqsmyamN3a7kDna
dtYDWjcfeQ2lO3O8pM3NCQxbwHZutos9LLOoYUGAW3463Vp4izebmlZ0vPnd5RoY
tNklNsAdM6nZ96250xi4ay1gtI/pDkD+mOzACjYkxdlI8GfbphHPsjqzIsZMSrSu
M6Z3STeZAO2dOXgQqguJH4/zozCK0z7zlAZ8jhDc4ngywGpd/k0=
-----END CERTIFICATE-----
Generated at Sun Nov 10 07:45:33 2024 by rpki-client on console-fra.rpki-client.org