Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/y2TrXc8JaIXvHuHrvLwaJPvg618.roa
File: y2TrXc8JaIXvHuHrvLwaJPvg618.roa (raw, json)
Hash identifier: Ix889H8bwxXr3pfSrWHNuq6lMCFN8yfDIxNA6UEQiWY=
Subject key identifier: CB:64:EB:5D:CF:09:68:85:EF:1E:E1:EB:BC:BC:1A:24:FB:E0:EB:5F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0589
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/y2TrXc8JaIXvHuHrvLwaJPvg618.roa
Signing time: Mon 15 Jul 2024 15:55:03 +0000
ROA not before: Mon 15 Jul 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jul 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1417 (0x589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 15 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=CB64EB5DCF096885EF1EE1EBBCBC1A24FBE0EB5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:18:bf:99:94:30:10:01:e1:51:5e:88:de:9a:
4e:ef:0d:4b:61:8b:f5:23:40:a9:6b:5b:45:1f:8c:
bb:ea:77:70:7e:8d:98:2f:1f:38:10:c2:6b:96:b3:
58:6f:6b:3d:5e:13:6d:3b:0b:ec:16:03:37:13:1c:
c0:9a:6e:ca:fc:58:de:74:e2:36:19:0d:32:b4:05:
81:82:6d:d2:28:25:7c:97:cb:a3:12:34:db:97:0a:
95:0c:84:b7:a0:44:0c:91:34:88:26:85:29:e7:2c:
e7:f2:68:dd:c1:73:8a:21:be:62:38:ca:68:3c:0a:
f0:09:eb:71:df:ea:d0:cc:64:06:38:ce:45:4f:d9:
08:14:dc:96:ea:02:87:d9:32:c2:f0:9c:db:c3:52:
a9:9b:af:6d:b3:7e:0e:88:2c:22:d3:7c:85:37:f7:
a5:e4:45:63:06:a2:15:53:5e:93:29:7e:57:1a:42:
4c:1e:9b:81:0f:71:e9:39:29:3c:e9:b3:de:5f:05:
4c:3a:c8:11:79:73:ea:a2:13:36:e7:9f:1a:5f:d7:
8b:6b:99:69:35:c8:cc:45:cb:af:a7:14:a5:1f:9e:
90:9e:da:05:0f:15:e0:7e:c2:96:79:65:a8:3f:70:
6f:84:ff:19:37:68:d2:38:df:2f:52:7b:b9:aa:80:
2f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:64:EB:5D:CF:09:68:85:EF:1E:E1:EB:BC:BC:1A:24:FB:E0:EB:5F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/y2TrXc8JaIXvHuHrvLwaJPvg618.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:3f:d4:f0:88:a9:f0:0f:73:51:c8:78:5f:38:ed:da:ef:76:
9e:fe:eb:9a:09:5d:e4:7e:47:a4:c4:2e:f9:1a:7c:c8:22:19:
c2:5a:a8:10:d3:91:72:6b:d5:dd:5e:67:41:b7:57:25:b8:3c:
db:5f:38:aa:f7:23:d0:b0:29:6b:52:6f:b4:63:4d:80:54:3e:
8f:a6:2e:19:12:a5:a9:f6:1e:cd:98:57:e9:4b:e9:5b:72:8e:
d5:b9:99:62:c1:4c:f9:fe:e8:3e:b7:ac:c0:4d:1d:98:d1:1f:
49:f1:62:a0:74:7a:19:40:bf:03:c3:a7:13:63:86:c1:e9:16:
96:36:2e:30:68:40:55:d0:fd:68:1e:cc:7a:48:47:1f:ca:be:
dc:80:1f:1a:0f:ae:e3:52:c5:5d:f4:b3:ea:c0:73:f6:ab:db:
ad:29:15:f2:d2:52:b6:b3:57:44:87:8c:90:57:6a:b3:0e:7a:
af:7c:09:c1:77:36:fc:62:cc:20:44:82:60:f7:32:aa:5f:52:
13:d1:1f:57:c8:76:0f:af:15:28:fa:bc:1c:4a:69:8c:5f:da:
a1:7b:a4:14:8d:9d:f6:91:eb:83:d2:15:e9:ff:3c:11:c6:b8:
d8:30:95:5e:c4:38:80:51:13:f3:fe:49:ca:8e:1d:85:37:7c:
af:0b:18:89
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA3MTUx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKENCNjRFQjVEQ0YwOTY4
ODVFRjFFRTFFQkJDQkMxQTI0RkJFMEVCNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9GL+ZlDAQAeFRXojemk7vDUthi/UjQKlrW0UfjLvqd3B+jZgv
HzgQwmuWs1hvaz1eE207C+wWAzcTHMCabsr8WN504jYZDTK0BYGCbdIoJXyXy6MS
NNuXCpUMhLegRAyRNIgmhSnnLOfyaN3Bc4ohvmI4ymg8CvAJ63Hf6tDMZAY4zkVP
2QgU3JbqAofZMsLwnNvDUqmbr22zfg6ILCLTfIU396XkRWMGohVTXpMpflcaQkwe
m4EPcek5KTzps95fBUw6yBF5c+qiEzbnnxpf14trmWk1yMxFy6+nFKUfnpCe2gUP
FeB+wpZ5Zag/cG+E/xk3aNI43y9Se7mqgC+7AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUy2TrXc8JaIXvHuHrvLwaJPvg618wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3kyVHJYYzhKYUlYdkh1
SHJ2THdhSlB2ZzYxOC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAF0/1PCIqfAPc1HIeF847drvdp7+65oJXeR+
R6TELvkafMgiGcJaqBDTkXJr1d1eZ0G3VyW4PNtfOKr3I9CwKWtSb7RjTYBUPo+m
LhkSpan2Hs2YV+lL6VtyjtW5mWLBTPn+6D63rMBNHZjRH0nxYqB0ehlAvwPDpxNj
hsHpFpY2LjBoQFXQ/WgezHpIRx/KvtyAHxoPruNSxV30s+rAc/ar260pFfLSUraz
V0SHjJBXarMOeq98CcF3NvxizCBEgmD3MqpfUhPRH1fIdg+vFSj6vBxKaYxf2qF7
pBSNnfaR64PSFen/PBHGuNgwlV7EOIBRE/P+ScqOHYU3fK8LGIk=
-----END CERTIFICATE-----
Generated at Tue Jul 16 00:50:56 2024 by rpki-client on console-fra.rpki-client.org