Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/NSWp-IaX8-gfhpwsbDX7DOyj1EM.roa
File: NSWp-IaX8-gfhpwsbDX7DOyj1EM.roa (raw, json)
Hash identifier: ihlfABFPqpICi8/Z6Wh5L2hWsM6mO5qjtUIIlrU75u4=
Subject key identifier: 35:25:A9:F8:86:97:F3:E8:1F:86:9C:2C:6C:35:FB:0C:EC:A3:D4:43
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 058C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/NSWp-IaX8-gfhpwsbDX7DOyj1EM.roa
Signing time: Mon 15 Jul 2024 23:55:03 +0000
ROA not before: Mon 15 Jul 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1420 (0x58c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 15 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3525A9F88697F3E81F869C2C6C35FB0CECA3D443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c9:86:9a:e9:7b:fa:4d:6d:49:63:82:aa:eb:
99:0f:dd:78:24:be:6b:2a:76:b1:86:30:60:5d:ab:
51:f4:ec:69:35:af:85:ce:4b:3a:a0:19:bb:e8:c8:
38:64:05:4f:b5:14:d6:b5:01:fb:de:2a:dd:0a:e6:
a0:02:d7:a9:43:82:99:02:24:ba:30:a8:de:9d:94:
e4:44:b6:0c:d5:71:f2:0e:39:e6:c4:d8:b4:ae:64:
e3:e4:6d:77:44:73:dc:6f:d4:65:83:5b:84:9a:1e:
33:93:be:aa:2b:3c:f4:e4:52:e0:b0:b8:3e:14:38:
8e:1b:2a:6f:50:e1:78:49:f7:02:ec:c4:f4:ec:7f:
8e:db:3c:e1:83:88:7d:0d:50:e9:f6:15:02:f5:c6:
24:64:a4:c9:84:09:4a:82:34:8d:76:b4:ed:57:90:
1b:29:8e:dd:6b:3a:d6:b5:2e:6f:2e:60:d6:e5:50:
23:c4:45:ac:f6:7b:9b:b1:51:75:ba:94:af:d1:a2:
34:6a:33:30:be:2d:ac:ca:75:b4:e1:ce:5b:37:8c:
a4:70:14:6f:9c:d5:f7:29:dd:8b:e7:0a:29:8e:42:
31:a0:41:e7:f6:09:2a:22:cc:8f:22:1c:5f:76:c7:
f9:76:c7:7b:4f:7d:33:72:5a:c7:a5:b5:3c:6b:74:
9a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:25:A9:F8:86:97:F3:E8:1F:86:9C:2C:6C:35:FB:0C:EC:A3:D4:43
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/NSWp-IaX8-gfhpwsbDX7DOyj1EM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:15:40:dd:99:df:0c:b0:f6:58:70:34:15:7f:c2:06:d4:fa:
cc:e3:77:2a:c7:13:fc:ee:97:1d:57:59:14:ad:b1:e9:9f:2c:
0c:9b:2f:cf:d4:cf:61:3f:2e:ed:2a:46:67:5d:e6:6e:07:8c:
fa:95:d2:fc:87:ce:85:1e:80:3a:fd:1c:00:88:8a:8a:76:8e:
75:2b:8f:bc:ea:af:68:40:9d:df:38:67:8c:f2:f1:85:ab:96:
80:8a:73:7e:ef:1e:16:ae:db:f4:ec:12:11:55:82:27:51:fe:
66:3a:6a:91:3a:08:55:b1:68:51:ac:35:ab:20:dd:bf:ec:28:
b4:e6:bf:4f:cf:3b:e3:1b:30:45:34:5b:cb:9a:e8:89:e3:94:
e9:b8:97:eb:ec:43:52:26:fe:d3:6a:d4:c7:d0:b0:02:e3:d6:
0d:20:2a:6c:69:13:a7:8c:2b:4a:fd:3c:c8:40:c8:bd:c0:a8:
74:fb:b5:a1:5e:3c:1c:d9:d4:06:3e:c3:be:7d:03:47:89:33:
5f:f0:92:04:eb:c0:91:77:dd:db:5d:5a:5c:78:24:74:46:f7:
da:aa:bc:57:96:e9:ff:bb:de:47:a0:87:08:57:ff:48:d6:93:
5f:97:27:a7:7a:40:3a:ec:8f:96:b9:a6:4b:bf:de:6e:4c:a5:
f0:a4:3e:f8
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA3MTUy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDM1MjVBOUY4ODY5N0Yz
RTgxRjg2OUMyQzZDMzVGQjBDRUNBM0Q0NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCryYaa6Xv6TW1JY4Kq65kP3XgkvmsqdrGGMGBdq1H07Gk1r4XO
SzqgGbvoyDhkBU+1FNa1AfveKt0K5qAC16lDgpkCJLowqN6dlOREtgzVcfIOOebE
2LSuZOPkbXdEc9xv1GWDW4SaHjOTvqorPPTkUuCwuD4UOI4bKm9Q4XhJ9wLsxPTs
f47bPOGDiH0NUOn2FQL1xiRkpMmECUqCNI12tO1XkBspjt1rOta1Lm8uYNblUCPE
Raz2e5uxUXW6lK/RojRqMzC+LazKdbThzls3jKRwFG+c1fcp3YvnCimOQjGgQef2
CSoizI8iHF92x/l2x3tPfTNyWseltTxrdJp5AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUNSWp+IaX8+gfhpwsbDX7DOyj1EMwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL05TV3AtSWFYOC1nZmhw
d3NiRFg3RE95ajFFTS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAMwVQN2Z3wyw9lhwNBV/wgbU+szjdyrHE/zu
lx1XWRStsemfLAybL8/Uz2E/Lu0qRmdd5m4HjPqV0vyHzoUegDr9HACIiop2jnUr
j7zqr2hAnd84Z4zy8YWrloCKc37vHhau2/TsEhFVgidR/mY6apE6CFWxaFGsNasg
3b/sKLTmv0/PO+MbMEU0W8ua6InjlOm4l+vsQ1Im/tNq1MfQsALj1g0gKmxpE6eM
K0r9PMhAyL3AqHT7taFePBzZ1AY+w759A0eJM1/wkgTrwJF33dtdWlx4JHRG99qq
vFeW6f+73keghwhX/0jWk1+XJ6d6QDrsj5a5pku/3m5MpfCkPvg=
-----END CERTIFICATE-----
Generated at Tue Jul 16 07:31:34 2024 by rpki-client on console-ams.rpki-client.org