Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/5kIt5bDBM5CjRY1-9zSz0EAEhhY.roa
File: 5kIt5bDBM5CjRY1-9zSz0EAEhhY.roa (raw, json)
Hash identifier: 4ViHkS9fYC4VuK7aNr4ATxP95INIaiPhJNLxQzfq6DY=
Subject key identifier: E6:42:2D:E5:B0:C1:33:90:A3:45:8D:7E:F7:34:B3:D0:40:04:86:16
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0493
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5kIt5bDBM5CjRY1-9zSz0EAEhhY.roa
Signing time: Tue 18 Jun 2024 07:55:03 +0000
ROA not before: Tue 18 Jun 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jun 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1171 (0x493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 18 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=E6422DE5B0C13390A3458D7EF734B3D040048616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:67:23:f0:89:6d:67:36:9b:f2:1f:6b:23:28:
3e:8e:17:d8:4e:f0:1d:c1:6f:c0:de:b8:da:94:6b:
93:e2:24:01:50:e8:22:64:b6:28:6f:99:c8:8b:8b:
55:65:1e:ea:5a:8a:40:8c:74:08:87:e3:59:be:b4:
7c:72:95:38:5d:f1:c9:1f:9a:4b:47:47:02:c1:02:
25:ba:a9:80:5d:0b:1a:4d:15:4c:15:91:26:78:46:
d8:3d:a2:62:26:90:80:80:b3:ab:df:33:02:63:c5:
b3:60:55:2a:18:89:75:bc:26:2d:e5:eb:6e:3d:96:
1d:95:d0:a9:97:63:6e:2f:cf:8d:dc:b4:4b:4b:e6:
d6:8f:8c:47:c9:c0:29:9c:40:14:b2:85:c2:8c:19:
f9:55:7b:7d:38:43:87:a4:2c:3b:70:39:d9:2a:48:
d4:13:e4:b4:5d:17:06:d9:08:e1:da:23:e0:6d:ec:
6c:c7:38:37:d3:b5:d6:26:6d:64:ae:21:ad:cf:ad:
59:30:21:99:34:c3:e6:fd:92:3e:9f:44:da:df:64:
17:1a:01:30:fc:21:b2:bb:4e:c0:79:7d:e9:ee:4f:
75:20:7b:39:08:64:2f:94:82:11:d1:5e:c0:8d:cb:
67:8a:71:db:69:bd:9c:0e:db:e0:61:58:b0:e2:94:
72:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:42:2D:E5:B0:C1:33:90:A3:45:8D:7E:F7:34:B3:D0:40:04:86:16
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/5kIt5bDBM5CjRY1-9zSz0EAEhhY.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
db:5e:6b:51:af:1d:79:50:f4:be:e5:10:99:24:8a:3b:61:08:
8a:04:88:8c:eb:22:8f:d1:36:4d:07:48:fb:fb:61:f1:df:59:
73:f2:f2:da:93:b5:33:40:e0:7f:79:1b:78:9e:b1:95:77:f5:
9c:2b:e2:3b:a3:d4:33:d7:06:00:d9:ca:84:21:6e:2e:59:f4:
10:da:ba:47:86:7d:fc:33:f5:33:8b:90:06:38:07:be:82:7b:
e3:51:84:59:98:d9:12:e0:f5:69:72:6e:ed:19:a9:1e:b2:cd:
37:6c:a3:e5:74:6a:dd:1b:a6:16:31:dd:22:39:b5:78:d1:80:
7f:cf:eb:ef:82:89:0c:aa:5e:c2:52:15:07:31:44:98:8b:43:
a7:63:1a:9a:3c:bb:80:00:41:ef:63:76:c1:cb:38:c9:03:2b:
59:62:7d:5b:cd:bc:04:ba:6c:76:50:69:0f:e3:f3:92:a5:71:
06:e5:72:28:07:72:0b:86:32:1e:55:8f:10:01:7a:0d:57:b4:
c1:2b:c0:10:53:44:6c:f9:1c:5c:90:22:8f:2e:00:49:58:45:
5f:d1:0f:d6:40:d7:60:0f:8a:e1:d4:22:7c:52:bf:bd:f2:6b:
14:38:88:c6:fd:bb:d3:6e:0b:bd:2c:63:d3:b2:62:ef:0b:02:
b6:1c:1f:c3
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA2MTgw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEU2NDIyREU1QjBDMTMz
OTBBMzQ1OEQ3RUY3MzRCM0QwNDAwNDg2MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChZyPwiW1nNpvyH2sjKD6OF9hO8B3Bb8DeuNqUa5PiJAFQ6CJk
tihvmciLi1VlHupaikCMdAiH41m+tHxylThd8ckfmktHRwLBAiW6qYBdCxpNFUwV
kSZ4Rtg9omImkICAs6vfMwJjxbNgVSoYiXW8Ji3l6249lh2V0KmXY24vz43ctEtL
5taPjEfJwCmcQBSyhcKMGflVe304Q4ekLDtwOdkqSNQT5LRdFwbZCOHaI+Bt7GzH
ODfTtdYmbWSuIa3PrVkwIZk0w+b9kj6fRNrfZBcaATD8IbK7TsB5fenuT3UgezkI
ZC+UghHRXsCNy2eKcdtpvZwO2+BhWLDilHJFAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU5kIt5bDBM5CjRY1+9zSz0EAEhhYwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzVrSXQ1YkRCTTVDalJZ
MS05elN6MEVBRWhoWS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBANtea1GvHXlQ9L7lEJkkijthCIoEiIzrIo/R
Nk0HSPv7YfHfWXPy8tqTtTNA4H95G3iesZV39Zwr4juj1DPXBgDZyoQhbi5Z9BDa
ukeGffwz9TOLkAY4B76Ce+NRhFmY2RLg9Wlybu0ZqR6yzTdso+V0at0bphYx3SI5
tXjRgH/P6++CiQyqXsJSFQcxRJiLQ6djGpo8u4AAQe9jdsHLOMkDK1lifVvNvAS6
bHZQaQ/j85KlcQblcigHcguGMh5VjxABeg1XtMErwBBTRGz5HFyQIo8uAElYRV/R
D9ZA12APiuHUInxSv73yaxQ4iMb9u9NuC70sY9OyYu8LArYcH8M=
-----END CERTIFICATE-----
Generated at Tue Jun 18 15:33:21 2024 by rpki-client on console-fra.rpki-client.org