Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/70x2hVrtE_qsrLmcLk1AfNx-aec.roa
File: 70x2hVrtE_qsrLmcLk1AfNx-aec.roa (raw, json)
Hash identifier: CvyYXkktGs9eyIQwl4zX7Xg0izH531hXx4UjRKlUreE=
Subject key identifier: EF:4C:76:85:5A:ED:13:FA:AC:AC:B9:9C:2E:4D:40:7C:DC:7E:69:E7
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: F4
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/70x2hVrtE_qsrLmcLk1AfNx-aec.roa
Signing time: Thu 07 Mar 2024 07:55:03 +0000
ROA not before: Thu 07 Mar 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244 (0xf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 7 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=EF4C76855AED13FAACACB99C2E4D407CDC7E69E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a3:2d:2e:b0:ec:f2:f1:43:bb:f8:b9:ee:db:
c2:51:0f:90:ab:80:fc:dc:28:05:69:5a:b5:f7:09:
4f:57:45:c9:f1:2b:d6:88:b4:c9:16:11:75:61:fb:
2a:66:4a:aa:61:e7:b6:99:7a:44:e1:46:0b:4d:62:
1e:82:54:b2:50:ef:10:85:f7:61:4b:db:94:35:7c:
c2:86:b9:48:a6:a2:59:b5:4f:6c:e7:b7:9f:e5:c4:
94:b5:a8:1d:cc:03:75:11:34:ac:cc:1d:d4:c3:e2:
18:3f:d3:10:90:a0:30:df:38:a6:5c:56:66:50:fa:
01:33:c5:cb:2f:d8:bf:fe:58:e7:90:0e:c1:d4:48:
98:63:90:c3:a4:e5:3e:69:a2:09:46:e3:58:fe:fe:
6d:2a:82:06:82:29:2e:9d:c8:3a:1b:0d:18:5d:fd:
d8:98:2a:79:9c:f3:b5:e8:00:27:e2:86:e6:6e:e7:
d0:57:44:73:d2:78:fc:ee:e0:41:cd:4f:98:99:85:
f9:f4:82:74:34:8a:a8:64:54:2a:54:83:91:dd:4b:
c1:d2:23:bb:a4:eb:f7:ed:41:00:58:f8:bb:a8:ad:
39:79:1b:8f:04:1c:ab:1b:92:44:b0:b8:23:02:70:
ef:a2:0a:82:27:35:64:20:77:e5:b7:03:46:6e:1a:
fb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4C:76:85:5A:ED:13:FA:AC:AC:B9:9C:2E:4D:40:7C:DC:7E:69:E7
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/70x2hVrtE_qsrLmcLk1AfNx-aec.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:9d:ba:95:fa:4e:1f:79:f0:93:8c:7d:a2:fc:b8:50:5d:18:
c5:57:45:c8:2c:c0:10:63:e5:92:71:8d:8a:38:d9:6d:f7:c4:
f8:aa:9d:a6:30:5b:b6:b9:60:d0:0b:77:e3:08:b7:b0:6a:8a:
88:10:8a:e9:76:00:57:27:78:d8:18:b6:62:76:f5:7a:29:32:
64:f1:28:a1:2f:91:b3:0f:73:77:63:e5:41:a7:23:0e:8a:99:
e9:e4:c6:d5:74:bc:7a:03:d8:de:32:a0:96:67:5b:45:15:80:
68:b0:f2:fc:c7:5b:4d:82:d1:0b:63:c5:c8:02:3d:ed:ef:d2:
ad:b4:39:53:10:37:22:f4:77:e4:be:5b:1a:e1:58:4b:ff:54:
49:41:8a:27:b0:d9:c1:7a:a4:00:61:36:cd:dd:b7:51:b9:07:
14:b3:1c:2d:70:7b:cd:78:3e:b7:b9:5c:4a:81:e3:3b:25:48:
26:3a:94:ab:8d:7e:78:93:6a:23:58:68:a3:ec:51:0b:6a:9a:
ed:f2:ca:d0:eb:7b:78:6e:88:7e:88:45:1a:50:5b:d3:a0:c5:
0d:90:97:e3:eb:37:9c:33:af:df:0a:f4:4f:d3:ac:bd:39:33:
0f:3a:4f:0f:84:45:fa:61:14:30:0d:ab:9c:80:c4:bb:87:98:
08:15:9b:06
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDAzMDcw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEVGNEM3Njg1NUFFRDEz
RkFBQ0FDQjk5QzJFNEQ0MDdDREM3RTY5RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzoy0usOzy8UO7+Lnu28JRD5CrgPzcKAVpWrX3CU9XRcnxK9aI
tMkWEXVh+ypmSqph57aZekThRgtNYh6CVLJQ7xCF92FL25Q1fMKGuUimolm1T2zn
t5/lxJS1qB3MA3URNKzMHdTD4hg/0xCQoDDfOKZcVmZQ+gEzxcsv2L/+WOeQDsHU
SJhjkMOk5T5poglG41j+/m0qggaCKS6dyDobDRhd/diYKnmc87XoACfihuZu59BX
RHPSePzu4EHNT5iZhfn0gnQ0iqhkVCpUg5HdS8HSI7uk6/ftQQBY+LuorTl5G48E
HKsbkkSwuCMCcO+iCoInNWQgd+W3A0ZuGvsPAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU70x2hVrtE/qsrLmcLk1AfNx+aecwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzcweDJoVnJ0RV9xc3JM
bWNMazFBZk54LWFlYy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAL2dupX6Th958JOMfaL8uFBdGMVXRcgswBBj
5ZJxjYo42W33xPiqnaYwW7a5YNALd+MIt7BqiogQiul2AFcneNgYtmJ29XopMmTx
KKEvkbMPc3dj5UGnIw6KmenkxtV0vHoD2N4yoJZnW0UVgGiw8vzHW02C0QtjxcgC
Pe3v0q20OVMQNyL0d+S+WxrhWEv/VElBiiew2cF6pABhNs3dt1G5BxSzHC1we814
Pre5XEqB4zslSCY6lKuNfniTaiNYaKPsUQtqmu3yytDre3huiH6IRRpQW9OgxQ2Q
l+PrN5wzr98K9E/TrL05Mw86Tw+ERfphFDANq5yAxLuHmAgVmwY=
-----END CERTIFICATE-----
Generated at Thu Mar 7 17:08:08 2024 by rpki-client on console-ams.rpki-client.org