Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/34Z2XevuepDqmg_YltRslRpJ9ks.roa
File: 34Z2XevuepDqmg_YltRslRpJ9ks.roa (raw, json)
Hash identifier: JsJOGuYoKn6DGTbW0t1ZOxvpZBX1F2NB5CUkKsjlFxA=
Subject key identifier: DF:86:76:5D:EB:EE:7A:90:EA:9A:0F:D8:96:D4:6C:95:1A:49:F6:4B
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04F3
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/34Z2XevuepDqmg_YltRslRpJ9ks.roa
Signing time: Fri 28 Jun 2024 23:55:03 +0000
ROA not before: Fri 28 Jun 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jun 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1267 (0x4f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 28 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=DF86765DEBEE7A90EA9A0FD896D46C951A49F64B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c6:d2:a2:d7:3c:a9:d0:40:55:50:01:39:9f:
1b:6d:da:0d:c3:6f:a3:a5:64:ea:24:68:73:91:ba:
9e:d6:ae:71:e1:13:50:81:4b:72:49:b9:e2:ed:ab:
f9:b1:3e:08:2d:ce:95:35:fe:6e:49:f7:17:75:8f:
18:bf:e4:95:7c:db:49:1e:aa:c3:81:f4:66:bc:65:
6a:36:9b:4f:1b:7b:eb:ab:9f:28:45:c9:52:3e:e6:
58:52:80:87:45:ad:ac:60:3d:4f:c0:76:ca:f1:7b:
b3:92:8c:fe:aa:b0:71:8c:ca:19:0b:2c:c8:82:c2:
c1:d1:11:b2:9a:73:99:c6:04:6a:f9:54:e3:7c:a4:
08:76:a3:06:94:93:08:6e:94:e7:bd:18:50:37:21:
60:4c:93:4d:90:53:70:95:cf:a6:b4:81:2b:10:ec:
28:34:03:ef:59:b0:fa:40:58:3f:1a:5e:c9:55:3e:
cc:6e:7d:7b:aa:22:67:1d:eb:0e:8b:3d:63:a2:83:
db:69:4c:aa:bc:3f:18:f1:f7:d5:30:f0:0c:2d:74:
27:e7:63:bb:6f:32:88:dd:f8:21:bc:57:88:02:bb:
b6:9a:83:78:1e:83:97:1e:e2:39:e2:e2:76:5c:97:
88:0e:cc:3e:dc:93:a0:ad:36:0f:e0:4f:60:c3:ba:
76:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:86:76:5D:EB:EE:7A:90:EA:9A:0F:D8:96:D4:6C:95:1A:49:F6:4B
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/34Z2XevuepDqmg_YltRslRpJ9ks.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:aa:75:08:7e:eb:eb:5c:0e:ee:11:14:69:5e:c0:0e:1a:b4:
bc:43:59:dd:b9:e6:1c:18:5f:da:09:91:3f:eb:6d:2a:e4:f1:
27:65:f2:f1:c7:6d:6c:19:b6:0c:49:6f:e6:67:61:c8:41:c3:
65:32:13:28:b0:0f:13:66:42:10:cb:8b:2b:66:3c:b6:05:d3:
8e:6b:71:92:41:60:4f:8a:7b:5b:e8:33:38:bf:b7:85:06:57:
ac:c8:e0:4f:ef:ed:97:2d:52:9e:11:8a:89:98:d7:51:7f:43:
9a:45:6c:bd:3f:c4:52:bc:e9:b7:8b:80:cd:81:bd:e0:30:8d:
a2:80:50:7f:6b:43:5b:45:f4:b7:f5:eb:df:bf:d2:34:70:5b:
1f:15:60:4e:b6:97:d7:b8:3a:10:b5:d5:16:f4:92:30:02:5a:
77:21:fa:fd:07:65:cb:09:7f:90:f1:1c:60:e3:b1:b6:e5:10:
1c:c0:a0:1f:18:2c:31:d9:d1:5b:01:17:d5:55:9f:a6:43:9e:
c7:09:d1:8e:cb:e3:0f:ea:79:f5:42:0c:bd:b2:7a:4a:4b:2e:
31:79:d3:b2:81:7c:0c:35:b7:10:97:45:40:90:13:38:3e:ba:
09:68:61:a1:f7:ed:64:45:2c:d3:62:23:ac:31:d1:42:55:5f:
6e:c6:92:be
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA2Mjgy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKERGODY3NjVERUJFRTdB
OTBFQTlBMEZEODk2RDQ2Qzk1MUE0OUY2NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQClxtKi1zyp0EBVUAE5nxtt2g3Db6OlZOokaHORup7WrnHhE1CB
S3JJueLtq/mxPggtzpU1/m5J9xd1jxi/5JV820keqsOB9Ga8ZWo2m08be+urnyhF
yVI+5lhSgIdFraxgPU/Adsrxe7OSjP6qsHGMyhkLLMiCwsHREbKac5nGBGr5VON8
pAh2owaUkwhulOe9GFA3IWBMk02QU3CVz6a0gSsQ7Cg0A+9ZsPpAWD8aXslVPsxu
fXuqImcd6w6LPWOig9tpTKq8Pxjx99Uw8AwtdCfnY7tvMojd+CG8V4gCu7aag3ge
g5ce4jni4nZcl4gOzD7ck6CtNg/gT2DDunYrAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU34Z2XevuepDqmg/YltRslRpJ9kswHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzM0WjJYZXZ1ZXBEcW1n
X1lsdFJzbFJwSjlrcy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBANCqdQh+6+tcDu4RFGlewA4atLxDWd255hwY
X9oJkT/rbSrk8Sdl8vHHbWwZtgxJb+ZnYchBw2UyEyiwDxNmQhDLiytmPLYF045r
cZJBYE+Ke1voMzi/t4UGV6zI4E/v7ZctUp4RiomY11F/Q5pFbL0/xFK86beLgM2B
veAwjaKAUH9rQ1tF9Lf169+/0jRwWx8VYE62l9e4OhC11Rb0kjACWnch+v0HZcsJ
f5DxHGDjsbblEBzAoB8YLDHZ0VsBF9VVn6ZDnscJ0Y7L4w/qefVCDL2yekpLLjF5
07KBfAw1txCXRUCQEzg+ugloYaH37WRFLNNiI6wx0UJVX27Gkr4=
-----END CERTIFICATE-----
Generated at Sat Jun 29 09:26:30 2024 by rpki-client on console-ams.rpki-client.org