Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/uNekt5BakqdM211RgAhZl_J0Cyc.roa
File: uNekt5BakqdM211RgAhZl_J0Cyc.roa (raw, json)
Hash identifier: CE4SbFIopqpDesAGPvtz0sycDHXx/SRgaH3y5zlH+i8=
Subject key identifier: B8:D7:A4:B7:90:5A:92:A7:4C:DB:5D:51:80:08:59:97:F2:74:0B:27
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02E6
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uNekt5BakqdM211RgAhZl_J0Cyc.roa
Signing time: Wed 01 May 2024 15:55:03 +0000
ROA not before: Wed 01 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 742 (0x2e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 1 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B8D7A4B7905A92A74CDB5D5180085997F2740B27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2f:4d:3c:7a:c7:99:4a:b4:d6:3a:45:3d:1c:
2b:1b:3a:82:50:f0:8f:be:a3:b0:0b:06:be:65:09:
c0:09:7f:85:33:0e:00:2e:77:ac:87:10:f4:bb:18:
c1:89:e4:30:d7:1e:41:9e:34:c3:57:a0:4d:92:a3:
8a:6c:4e:54:44:6b:b1:1f:f6:f7:1f:67:a4:b6:86:
ad:4a:fe:2c:8f:3b:36:a6:35:6e:2f:d6:ae:42:c7:
30:d0:7d:d4:47:48:98:3e:24:a6:7a:77:16:12:bc:
ff:82:31:0a:20:5d:7d:f4:b0:f6:50:51:26:e0:5a:
dd:d4:8e:a3:bd:3e:08:d2:79:1e:d8:77:a2:96:18:
fd:ea:54:d9:5b:81:22:9d:11:50:e6:76:ff:2b:db:
77:b1:08:30:8d:61:d3:ba:9e:13:04:41:7e:ca:ed:
e2:11:03:af:f6:4b:a1:e7:57:63:ce:f2:cc:7c:d9:
6b:cf:44:e7:08:06:f0:cf:2b:75:08:12:67:79:18:
c1:bb:5e:3e:90:b8:30:97:3e:6a:a3:83:f9:3b:43:
2a:cd:f0:bc:39:99:c1:10:71:b8:99:c8:06:51:db:
9b:a4:ee:9a:cf:1a:8f:53:58:c1:b7:1a:ee:e8:c3:
65:3f:7c:ca:20:41:63:0c:af:16:18:78:27:17:33:
63:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D7:A4:B7:90:5A:92:A7:4C:DB:5D:51:80:08:59:97:F2:74:0B:27
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/uNekt5BakqdM211RgAhZl_J0Cyc.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:49:8b:71:66:77:f6:22:12:8e:36:1f:3c:0f:c8:75:35:7d:
e4:4e:99:b8:4c:bd:6b:e4:35:d4:11:b0:7c:fe:ff:f2:3d:27:
71:8c:3d:ac:71:ff:52:b0:6d:87:84:c8:48:a9:da:d8:3e:2c:
d7:f6:5d:7e:24:d3:4e:f8:69:48:fd:69:9c:46:31:2e:73:16:
36:ea:eb:e7:5b:0a:f4:a1:dd:01:1e:72:7a:87:36:bd:41:e2:
ae:24:50:fb:59:0d:e2:4a:eb:d0:7a:b8:cc:cf:a5:7c:41:80:
5a:5f:8e:c8:44:dc:2e:11:39:42:67:b7:97:b2:af:52:b3:67:
ec:7e:51:84:40:14:e3:1a:3c:76:a2:6f:69:98:83:25:c6:d5:
17:78:24:11:37:35:e5:23:15:71:26:25:97:2f:33:95:08:bd:
e3:bb:6e:eb:a9:4e:ff:1a:4a:6b:ef:28:eb:b1:23:b2:fe:55:
d0:7b:a1:92:c0:71:f6:32:fa:3b:6c:7a:0e:23:ad:a8:cc:eb:
cc:87:f1:82:fd:17:b1:61:89:6a:39:6a:7c:76:c6:27:2c:d2:
cc:f9:27:fd:7f:2c:46:5f:1e:74:29:c6:62:f2:6c:b7:ca:18:
2d:5d:03:19:4c:ba:cf:f0:b1:f3:eb:96:97:4a:21:0e:38:0e:
37:f6:9b:2d
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA1MDEx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEI4RDdBNEI3OTA1QTky
QTc0Q0RCNUQ1MTgwMDg1OTk3RjI3NDBCMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmL008eseZSrTWOkU9HCsbOoJQ8I++o7ALBr5lCcAJf4UzDgAu
d6yHEPS7GMGJ5DDXHkGeNMNXoE2So4psTlREa7Ef9vcfZ6S2hq1K/iyPOzamNW4v
1q5CxzDQfdRHSJg+JKZ6dxYSvP+CMQogXX30sPZQUSbgWt3UjqO9PgjSeR7Yd6KW
GP3qVNlbgSKdEVDmdv8r23exCDCNYdO6nhMEQX7K7eIRA6/2S6HnV2PO8sx82WvP
ROcIBvDPK3UIEmd5GMG7Xj6QuDCXPmqjg/k7QyrN8Lw5mcEQcbiZyAZR25uk7prP
Go9TWMG3Gu7ow2U/fMogQWMMrxYYeCcXM2N3AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUuNekt5BakqdM211RgAhZl/J0CycwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3VOZWt0NUJha3FkTTIx
MVJnQWhabF9KMEN5Yy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBANhJi3Fmd/YiEo42HzwPyHU1feROmbhMvWvk
NdQRsHz+//I9J3GMPaxx/1KwbYeEyEip2tg+LNf2XX4k0074aUj9aZxGMS5zFjbq
6+dbCvSh3QEecnqHNr1B4q4kUPtZDeJK69B6uMzPpXxBgFpfjshE3C4ROUJnt5ey
r1KzZ+x+UYRAFOMaPHaib2mYgyXG1Rd4JBE3NeUjFXEmJZcvM5UIveO7buupTv8a
SmvvKOuxI7L+VdB7oZLAcfYy+jtseg4jrajM68yH8YL9F7FhiWo5anx2xics0sz5
J/1/LEZfHnQpxmLybLfKGC1dAxlMus/wsfPrlpdKIQ44Djf2my0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org