Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/LeeZGc8uFBKVmYdi54rn0kepV6E.roa
File: LeeZGc8uFBKVmYdi54rn0kepV6E.roa (raw, json)
Hash identifier: m7k5YsCSNlOIFKVuO1OBUwb/UBEAcb/RkP/cJ0i6wfQ=
Subject key identifier: 2D:E7:99:19:CF:2E:14:12:95:99:87:62:E7:8A:E7:D2:47:A9:57:A1
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 027D
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LeeZGc8uFBKVmYdi54rn0kepV6E.roa
Signing time: Fri 19 Apr 2024 23:55:03 +0000
ROA not before: Fri 19 Apr 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 637 (0x27d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 19 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2DE79919CF2E141295998762E78AE7D247A957A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:53:a6:5d:20:d3:33:28:94:0b:54:7d:7d:6c:
83:9c:fa:c4:7a:0e:57:66:cc:b8:fc:97:d6:ac:88:
1e:66:2f:a0:a1:3d:c8:35:7e:5c:09:b1:53:44:de:
f9:a9:a2:46:ec:54:d4:41:7f:62:ec:a4:9a:e4:82:
80:b0:f3:42:8e:8b:ff:8c:a0:f7:95:9f:54:df:0e:
48:bf:96:ca:eb:1e:52:de:b7:a8:8b:64:e4:ba:59:
52:58:bb:df:76:11:33:a8:60:52:34:2f:38:74:49:
44:44:c3:d7:c5:bb:1a:a3:fc:ae:f6:e9:d0:fa:e5:
6e:46:a5:14:38:15:1d:f3:a3:0c:99:fa:70:de:82:
fe:cd:fb:ba:4d:2a:29:17:4a:43:0a:30:3a:1d:64:
14:38:20:b2:9a:a0:c7:8a:eb:9b:9f:ed:26:c3:70:
05:b4:63:4f:f7:3e:25:6a:17:69:13:ea:7e:ea:6b:
8b:9c:b2:bf:2d:a4:a4:53:bf:43:92:2f:52:a1:5e:
d1:f0:8e:10:1f:84:67:ba:4b:e1:46:a7:a6:b6:b4:
bb:04:23:e9:25:ea:03:16:f4:5f:ea:2b:79:65:64:
b0:39:97:21:5e:4d:a5:11:74:f8:94:d3:e0:72:43:
ee:cb:f1:ef:06:31:24:9d:46:84:29:21:13:e7:a7:
55:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E7:99:19:CF:2E:14:12:95:99:87:62:E7:8A:E7:D2:47:A9:57:A1
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/LeeZGc8uFBKVmYdi54rn0kepV6E.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:02:3b:72:7b:64:36:ff:fa:6e:d9:c4:8f:a9:a3:2d:78:34:
36:66:ef:11:69:46:91:d0:3a:0d:1c:f3:34:ae:19:34:1a:61:
4a:b4:93:56:0c:4b:33:a0:4a:3e:9e:5f:1a:70:c4:b0:ff:af:
e0:56:9d:db:ed:04:1d:dc:2f:f8:be:0d:bc:65:bf:60:77:d7:
dd:ac:74:39:fa:70:6e:bc:67:5c:34:d1:51:c0:39:e9:62:eb:
a5:19:2d:27:56:98:be:22:eb:a7:c1:08:6a:1e:d2:a3:3e:4a:
2c:6e:e7:b7:3e:c2:74:d3:23:1f:7e:c5:3c:25:6d:09:ef:37:
63:f9:81:98:ec:07:30:26:a7:b9:27:da:c1:aa:d0:1b:ab:6d:
c2:a7:99:d5:22:df:6f:ee:8b:72:7e:ae:b1:5c:9f:cd:c2:6c:
29:15:3a:4e:16:f0:33:44:1b:d8:9d:58:6e:ab:a3:eb:dc:58:
f1:ef:c1:d4:b8:14:17:75:fb:29:af:94:24:cd:8b:01:cf:2a:
b0:55:93:35:f0:8d:38:96:d3:60:a5:11:3d:89:8a:2d:a5:ed:
1f:df:c3:16:d8:40:43:3d:34:8b:95:98:7f:d4:a4:8c:0b:8d:
2e:fa:1d:48:67:9a:bf:4b:a2:68:20:f5:60:b1:84:b1:7a:a8:
62:f7:33:1c
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA0MTky
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDJERTc5OTE5Q0YyRTE0
MTI5NTk5ODc2MkU3OEFFN0QyNDdBOTU3QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDU6ZdINMzKJQLVH19bIOc+sR6DldmzLj8l9asiB5mL6ChPcg1
flwJsVNE3vmpokbsVNRBf2LspJrkgoCw80KOi/+MoPeVn1TfDki/lsrrHlLet6iL
ZOS6WVJYu992ETOoYFI0Lzh0SUREw9fFuxqj/K726dD65W5GpRQ4FR3zowyZ+nDe
gv7N+7pNKikXSkMKMDodZBQ4ILKaoMeK65uf7SbDcAW0Y0/3PiVqF2kT6n7qa4uc
sr8tpKRTv0OSL1KhXtHwjhAfhGe6S+FGp6a2tLsEI+kl6gMW9F/qK3llZLA5lyFe
TaURdPiU0+ByQ+7L8e8GMSSdRoQpIRPnp1XhAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQULeeZGc8uFBKVmYdi54rn0kepV6EwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL0xlZVpHYzh1RkJLVm1Z
ZGk1NHJuMGtlcFY2RS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBANcCO3J7ZDb/+m7ZxI+poy14NDZm7xFpRpHQ
Og0c8zSuGTQaYUq0k1YMSzOgSj6eXxpwxLD/r+BWndvtBB3cL/i+Dbxlv2B3192s
dDn6cG68Z1w00VHAOeli66UZLSdWmL4i66fBCGoe0qM+Sixu57c+wnTTIx9+xTwl
bQnvN2P5gZjsBzAmp7kn2sGq0BurbcKnmdUi32/ui3J+rrFcn83CbCkVOk4W8DNE
G9idWG6ro+vcWPHvwdS4FBd1+ymvlCTNiwHPKrBVkzXwjTiW02ClET2Jii2l7R/f
wxbYQEM9NIuVmH/UpIwLjS76HUhnmr9Lomgg9WCxhLF6qGL3Mxw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org