Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/yb_15ZXe-jVkaK3PwUEdJTPLELI.roa
File: yb_15ZXe-jVkaK3PwUEdJTPLELI.roa (raw, json)
Hash identifier: tGJy6u4uKC4QQp8mJRAQ2Vpv0FB104pOtp03+41+AlU=
Subject key identifier: C9:BF:F5:E5:95:DE:FA:35:64:68:AD:CF:C1:41:1D:25:33:CB:10:B2
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 088C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/yb_15ZXe-jVkaK3PwUEdJTPLELI.roa
Signing time: Wed 09 Oct 2024 07:55:03 +0000
ROA not before: Wed 09 Oct 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2188 (0x88c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 9 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C9BFF5E595DEFA356468ADCFC1411D2533CB10B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c2:28:51:5c:c7:68:d7:29:42:b8:98:22:f1:
b3:28:51:22:47:bd:cc:5c:a6:81:05:c3:55:2d:04:
2e:ca:09:72:14:69:e6:8c:3e:86:3b:b2:fc:62:e8:
80:15:aa:50:2b:97:8d:13:51:07:37:84:ed:df:89:
a3:61:04:55:49:8c:66:6c:d2:da:25:0b:68:87:f3:
4d:12:e5:ce:4a:93:b2:2b:64:b8:bd:a8:6d:4b:2c:
ef:6a:27:75:69:c2:f8:bc:c4:7c:54:55:5e:c4:5a:
d9:32:82:26:dd:4d:d2:6e:8a:57:72:fd:a1:ab:75:
cc:c7:2c:34:93:e3:b1:d4:55:3a:f2:f6:80:ea:48:
6d:15:c8:a1:02:ad:a0:1c:e0:e4:4f:bd:af:9d:13:
fe:b0:c0:b0:bc:60:4c:1a:f3:c0:88:0b:cd:33:60:
69:f1:a2:aa:c0:87:b2:d6:6c:bf:50:83:e2:aa:bc:
75:82:c9:56:66:0f:9c:fe:41:20:3d:92:e3:ea:77:
8c:a3:01:a9:b2:01:01:7f:6e:ef:48:a5:49:d1:a9:
2e:50:31:dc:bc:38:9f:92:b7:75:f3:00:4f:c8:e6:
62:e8:d1:87:45:9f:58:db:77:44:49:f5:ad:05:ab:
00:2c:12:2c:35:f2:fc:b5:e0:19:26:f6:aa:e1:79:
22:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:BF:F5:E5:95:DE:FA:35:64:68:AD:CF:C1:41:1D:25:33:CB:10:B2
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/yb_15ZXe-jVkaK3PwUEdJTPLELI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:f3:31:fc:84:cc:a6:0c:d9:97:36:91:a6:61:ef:11:b8:ed:
f2:5b:3c:4c:6e:46:65:9c:3d:05:1a:18:7f:25:16:17:68:cd:
ad:53:38:ac:59:5b:dd:45:73:19:28:3a:d7:44:c7:e4:ab:f2:
c2:f5:07:ec:11:98:83:58:b4:3b:16:21:a8:90:d0:df:9a:03:
57:2e:fe:26:3d:86:7e:5a:ee:bc:b8:28:e6:06:bc:0f:dd:6d:
82:f7:bc:c4:6b:06:c1:fa:1e:65:3a:de:bb:01:f8:38:f8:1f:
de:4d:4c:5d:86:73:4f:00:4b:a4:cc:2e:07:7e:f2:ef:13:1a:
51:71:42:d4:cc:75:76:b5:f8:ea:db:15:c2:df:09:c2:4b:86:
97:b1:99:b5:3b:81:c0:e7:ff:30:bd:6f:8b:ee:33:b7:0b:35:
48:ab:7f:2d:49:ae:b4:b0:c9:53:58:72:68:4c:6a:b6:93:cc:
cc:a4:de:4c:67:0e:e3:61:aa:35:5f:fc:78:81:15:72:9e:a5:
ae:39:95:72:58:f1:cd:be:a7:2f:a0:56:70:0d:56:ce:7a:22:
8d:b1:cc:47:56:0f:9d:71:68:54:7d:4f:1f:49:0f:f8:90:28:
32:79:4e:5a:e3:f4:60:72:4a:57:aa:dd:a2:70:0b:8f:f3:6d:
d4:47:61:3d
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDEwMDkw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEM5QkZGNUU1OTVERUZB
MzU2NDY4QURDRkMxNDExRDI1MzNDQjEwQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpwihRXMdo1ylCuJgi8bMoUSJHvcxcpoEFw1UtBC7KCXIUaeaM
PoY7svxi6IAVqlArl40TUQc3hO3fiaNhBFVJjGZs0tolC2iH800S5c5Kk7IrZLi9
qG1LLO9qJ3Vpwvi8xHxUVV7EWtkygibdTdJuildy/aGrdczHLDST47HUVTry9oDq
SG0VyKECraAc4ORPva+dE/6wwLC8YEwa88CIC80zYGnxoqrAh7LWbL9Qg+KqvHWC
yVZmD5z+QSA9kuPqd4yjAamyAQF/bu9IpUnRqS5QMdy8OJ+St3XzAE/I5mLo0YdF
n1jbd0RJ9a0FqwAsEiw18vy14Bkm9qrheSK5AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUyb/15ZXe+jVkaK3PwUEdJTPLELIwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3liXzE1WlhlLWpWa2FL
M1B3VUVkSlRQTEVMSS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAAzzMfyEzKYM2Zc2kaZh7xG47fJbPExuRmWc
PQUaGH8lFhdoza1TOKxZW91FcxkoOtdEx+Sr8sL1B+wRmINYtDsWIaiQ0N+aA1cu
/iY9hn5a7ry4KOYGvA/dbYL3vMRrBsH6HmU63rsB+Dj4H95NTF2Gc08AS6TMLgd+
8u8TGlFxQtTMdXa1+OrbFcLfCcJLhpexmbU7gcDn/zC9b4vuM7cLNUirfy1JrrSw
yVNYcmhMaraTzMyk3kxnDuNhqjVf/HiBFXKepa45lXJY8c2+py+gVnANVs56Io2x
zEdWD51xaFR9Tx9JD/iQKDJ5Tlrj9GBySleq3aJwC4/zbdRHYT0=
-----END CERTIFICATE-----
Generated at Wed Oct 9 17:08:25 2024 by rpki-client on console-fra.rpki-client.org