Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/52T10dhrbh_nRAPGgzTJmMbEoTk.roa
File: 52T10dhrbh_nRAPGgzTJmMbEoTk.roa (raw, json)
Hash identifier: 2eSu0bDk3Z8lRsv1vsgUpnEH3PXJ+JeUPoC+da8qzmE=
Subject key identifier: E7:64:F5:D1:D8:6B:6E:1F:E7:44:03:C6:83:34:C9:98:C6:C4:A1:39
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0241
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/52T10dhrbh_nRAPGgzTJmMbEoTk.roa
Signing time: Sat 13 Apr 2024 07:55:04 +0000
ROA not before: Sat 13 Apr 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Apr 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 577 (0x241)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 13 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E764F5D1D86B6E1FE74403C68334C998C6C4A139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7e:ef:e1:4a:1d:92:04:b1:fd:72:23:66:a3:
44:19:af:54:19:32:b9:f5:59:97:e4:8e:82:44:f0:
ed:96:3e:b1:b5:59:0a:be:e1:7f:b1:96:c2:30:3f:
c7:4c:3f:34:39:dc:4b:38:8f:cf:84:94:d5:88:39:
b7:86:a3:12:98:a1:d9:05:04:a9:e2:f9:ee:d4:88:
f8:14:52:aa:58:ef:50:5b:2f:cd:54:97:06:f3:fa:
1a:02:56:89:78:73:c9:0a:03:6f:65:78:ef:11:2c:
34:ef:f6:cd:65:51:c2:cc:b3:26:1d:38:74:e7:00:
0f:2d:d7:43:13:35:fd:f7:21:e7:55:1a:cd:0a:90:
fa:8b:64:b9:7f:12:d0:76:1b:03:13:fc:94:9f:60:
24:9a:fa:2c:3b:2b:a9:c5:58:2d:cd:1d:df:db:42:
be:e1:11:b1:66:37:aa:0c:8a:ec:41:fa:a4:94:3b:
10:f2:42:09:dc:88:4c:58:d8:f3:e3:ae:58:6b:9e:
af:4c:96:bc:3c:9a:ff:34:d2:5a:26:0e:e4:f1:37:
bc:c4:21:a4:fc:c8:0b:cb:7f:8c:ec:3e:d0:10:8d:
84:31:79:88:b6:19:3d:16:18:85:4b:2e:1e:37:be:
ec:57:80:68:ef:29:67:93:0d:58:14:44:6d:e3:95:
53:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:64:F5:D1:D8:6B:6E:1F:E7:44:03:C6:83:34:C9:98:C6:C4:A1:39
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/52T10dhrbh_nRAPGgzTJmMbEoTk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:73:a5:eb:cf:d2:45:ca:d7:64:de:40:9f:5f:d4:4f:81:9d:
aa:85:74:86:d6:11:53:b4:d1:8e:ae:67:cc:4f:56:f6:32:89:
3c:4a:38:2f:88:02:48:36:a2:45:d5:e1:4c:aa:56:78:78:db:
16:6c:dc:bd:b2:73:25:83:0d:ea:12:7e:e5:b2:6f:fd:e2:df:
ec:1f:86:63:f1:0a:81:a2:ab:cd:c5:45:24:50:49:6f:f7:81:
6e:29:ed:57:c7:13:ba:a8:5b:1a:55:b2:a0:83:19:05:41:fb:
2f:20:b0:f9:74:1d:c3:5e:ea:e1:0e:9e:e3:e8:68:da:fc:8c:
f6:f0:a7:6b:98:8f:ff:9e:17:8a:d4:8e:07:6e:54:05:85:33:
c7:b8:d3:55:1a:cc:d6:7f:a3:dc:55:01:2b:c7:84:60:1a:2c:
40:c2:f1:f6:6c:8d:82:26:44:63:32:6b:3b:65:a0:2e:9d:0a:
03:e0:74:c5:af:0d:5f:30:cc:7a:4b:c6:43:d6:8d:f7:ea:b8:
69:26:92:79:1c:5f:a4:07:09:04:5b:2f:b1:0e:ac:01:c5:cc:
dd:ab:4e:15:cb:32:80:21:f1:08:51:ba:31:b0:29:55:cd:ee:
b9:f9:58:9b:ab:ee:8e:75:41:0b:13:0e:62:a5:2d:f2:56:9e:
da:01:bd:eb
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA0MTMw
NzU1MDRaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEU3NjRGNUQxRDg2QjZF
MUZFNzQ0MDNDNjgzMzRDOTk4QzZDNEExMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCTfu/hSh2SBLH9ciNmo0QZr1QZMrn1WZfkjoJE8O2WPrG1WQq+
4X+xlsIwP8dMPzQ53Es4j8+ElNWIObeGoxKYodkFBKni+e7UiPgUUqpY71BbL81U
lwbz+hoCVol4c8kKA29leO8RLDTv9s1lUcLMsyYdOHTnAA8t10MTNf33IedVGs0K
kPqLZLl/EtB2GwMT/JSfYCSa+iw7K6nFWC3NHd/bQr7hEbFmN6oMiuxB+qSUOxDy
QgnciExY2PPjrlhrnq9Mlrw8mv800lomDuTxN7zEIaT8yAvLf4zsPtAQjYQxeYi2
GT0WGIVLLh43vuxXgGjvKWeTDVgURG3jlVO1AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU52T10dhrbh/nRAPGgzTJmMbEoTkwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzUyVDEwZGhyYmhfblJB
UEdnelRKbU1iRW9Uay5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAKxzpevP0kXK12TeQJ9f1E+BnaqFdIbWEVO0
0Y6uZ8xPVvYyiTxKOC+IAkg2okXV4UyqVnh42xZs3L2ycyWDDeoSfuWyb/3i3+wf
hmPxCoGiq83FRSRQSW/3gW4p7VfHE7qoWxpVsqCDGQVB+y8gsPl0HcNe6uEOnuPo
aNr8jPbwp2uYj/+eF4rUjgduVAWFM8e401UazNZ/o9xVASvHhGAaLEDC8fZsjYIm
RGMyaztloC6dCgPgdMWvDV8wzHpLxkPWjffquGkmknkcX6QHCQRbL7EOrAHFzN2r
ThXLMoAh8QhRujGwKVXN7rn5WJur7o51QQsTDmKlLfJWntoBves=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org