Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/3e7qQDWnoMdP8iTfNhgkx25xoF8.roa
File: 3e7qQDWnoMdP8iTfNhgkx25xoF8.roa (raw, json)
Hash identifier: 7kRJhQY5AV5mbmmZq0rsVQjVy2cu5bsu+Ckf6Rlv2Mg=
Subject key identifier: DD:EE:EA:40:35:A7:A0:C7:4F:F2:24:DF:36:18:24:C7:6E:71:A0:5F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02CE
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3e7qQDWnoMdP8iTfNhgkx25xoF8.roa
Signing time: Sun 28 Apr 2024 23:55:03 +0000
ROA not before: Sun 28 Apr 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 718 (0x2ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 28 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=DDEEEA4035A7A0C74FF224DF361824C76E71A05F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2e:d5:83:f7:84:b1:e0:ff:47:3f:ca:4b:da:
3c:dd:29:5d:2b:b9:ff:ad:3e:d0:18:03:3a:03:65:
b5:38:ea:29:ca:2b:cf:13:1b:02:33:a3:00:57:87:
af:93:b5:0d:b2:f5:36:e6:af:de:94:1c:90:d5:65:
ee:9f:79:b1:6b:65:c0:da:29:fe:bc:24:d2:85:87:
13:6d:13:d5:cb:58:4e:1a:99:aa:c6:c7:e7:3f:de:
d4:b6:ad:ce:67:23:34:48:d2:46:d8:23:cd:5c:46:
40:68:d8:a4:a1:cf:bb:05:13:78:02:fb:25:8c:5d:
37:88:00:cc:4e:f6:ff:04:26:41:cd:62:91:2a:b6:
d2:1d:5f:59:52:17:f5:bf:b0:5c:e1:bd:ed:fc:03:
2e:14:10:bb:ed:34:98:5a:6e:c8:a1:d2:13:0c:a5:
28:39:d2:43:d0:13:51:15:2f:5e:42:a9:5c:a7:19:
68:bf:f5:39:47:1c:f9:a8:ef:16:ca:45:95:6d:b0:
0b:cb:31:d5:4f:29:57:34:40:c4:6d:1f:0f:52:f3:
ea:fc:74:76:55:73:76:a4:34:be:54:c6:d3:86:23:
46:3e:a4:45:a4:c2:f0:62:45:c0:cf:37:29:98:04:
bc:07:a0:07:cc:1a:6a:97:59:56:db:31:42:53:3e:
17:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EE:EA:40:35:A7:A0:C7:4F:F2:24:DF:36:18:24:C7:6E:71:A0:5F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/3e7qQDWnoMdP8iTfNhgkx25xoF8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
50:a2:44:58:9d:f7:27:f7:d0:33:f9:1a:be:54:07:6a:eb:51:
84:5e:25:e1:f6:55:5b:96:2e:9f:e7:9e:c0:0b:6e:4a:ae:5d:
e5:f2:b0:73:c9:bb:1e:ba:7f:73:03:97:bd:58:66:a9:0a:3e:
cf:be:43:49:de:99:f3:5c:22:08:a1:cc:ea:e1:ab:8c:33:ef:
4a:af:41:b9:7a:27:c4:a2:cf:2f:45:4a:46:3f:91:d7:00:65:
fc:58:dc:a2:1c:14:33:d9:a4:b0:18:0c:53:82:48:23:33:9d:
34:2c:d4:6a:c1:9b:02:81:82:af:47:ab:aa:c4:54:ce:09:ae:
fa:3f:5a:28:35:57:4a:3c:09:b2:5d:6a:94:dd:63:18:52:ea:
9f:ae:47:c6:c2:3a:e7:e6:a5:2d:49:13:9f:3a:31:ed:fe:4c:
db:3a:75:56:42:05:be:e6:c0:6b:3e:24:73:d9:01:c5:11:f8:
42:c5:3a:55:bc:a5:0a:0c:a0:b5:2e:98:0e:5f:d2:2c:e4:e0:
ac:11:f3:60:50:15:45:9d:e5:65:e7:f6:6f:85:85:78:3e:0a:
d8:b0:da:db:67:96:bb:c5:93:d7:60:42:07:ad:f5:c0:55:6b:
e3:c8:4c:39:ce:bf:00:81:40:f5:9b:e4:e7:5f:41:53:22:f1:
9b:73:ac:d9
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA0Mjgy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKERERUVFQTQwMzVBN0Ew
Qzc0RkYyMjRERjM2MTgyNEM3NkU3MUEwNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHLtWD94Sx4P9HP8pL2jzdKV0ruf+tPtAYAzoDZbU46inKK88T
GwIzowBXh6+TtQ2y9Tbmr96UHJDVZe6febFrZcDaKf68JNKFhxNtE9XLWE4amarG
x+c/3tS2rc5nIzRI0kbYI81cRkBo2KShz7sFE3gC+yWMXTeIAMxO9v8EJkHNYpEq
ttIdX1lSF/W/sFzhve38Ay4UELvtNJhabsih0hMMpSg50kPQE1EVL15CqVynGWi/
9TlHHPmo7xbKRZVtsAvLMdVPKVc0QMRtHw9S8+r8dHZVc3akNL5UxtOGI0Y+pEWk
wvBiRcDPNymYBLwHoAfMGmqXWVbbMUJTPhcbAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU3e7qQDWnoMdP8iTfNhgkx25xoF8wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzNlN3FRRFdub01kUDhp
VGZOaGdreDI1eG9GOC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAFCiRFid9yf30DP5Gr5UB2rrUYReJeH2VVuW
Lp/nnsALbkquXeXysHPJux66f3MDl71YZqkKPs++Q0nemfNcIgihzOrhq4wz70qv
Qbl6J8Sizy9FSkY/kdcAZfxY3KIcFDPZpLAYDFOCSCMznTQs1GrBmwKBgq9Hq6rE
VM4Jrvo/Wig1V0o8CbJdapTdYxhS6p+uR8bCOufmpS1JE586Me3+TNs6dVZCBb7m
wGs+JHPZAcUR+ELFOlW8pQoMoLUumA5f0izk4KwR82BQFUWd5WXn9m+FhXg+Ctiw
2ttnlrvFk9dgQget9cBVa+PITDnOvwCBQPWb5OdfQVMi8ZtzrNk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org