Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/QWSamGdd7WbNbvNcovo5_0PrUZ4.roa
File: QWSamGdd7WbNbvNcovo5_0PrUZ4.roa (raw, json)
Hash identifier: lYuLwVhUvU9lgGrGuubyxaKQggJIrT0g0lvnqzEAZHI=
Subject key identifier: 41:64:9A:98:67:5D:ED:66:CD:6E:F3:5C:A2:FA:39:FF:43:EB:51:9E
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0388
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/QWSamGdd7WbNbvNcovo5_0PrUZ4.roa
Signing time: Sun 19 May 2024 15:55:03 +0000
ROA not before: Sun 19 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 May 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 904 (0x388)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 19 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41649A98675DED66CD6EF35CA2FA39FF43EB519E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:56:25:27:4a:53:d8:ef:70:48:92:25:95:a8:
0e:62:08:03:2a:86:0e:24:04:a5:69:f4:28:e4:5a:
a4:d1:69:5c:15:b7:42:f7:5e:cf:09:8a:b6:70:16:
3d:a9:19:ff:07:9f:56:42:b7:d8:00:3f:bb:60:8c:
ba:d3:7d:e4:f7:20:46:f4:f2:bc:9b:0f:52:2c:23:
1f:5d:a0:60:c0:46:e5:3d:4c:a5:7c:07:d3:42:65:
d1:3d:dc:69:c0:1d:ee:d9:93:54:5a:83:a7:5c:97:
bf:53:c5:22:8d:23:72:d1:1c:f8:36:b5:d5:30:f7:
f1:5c:06:b4:81:4a:ec:65:20:ae:66:6a:a8:35:28:
04:d8:97:91:21:bb:c2:ae:f4:25:40:ad:d4:80:b0:
bd:fd:b1:cd:5c:d1:7b:09:ae:1f:8d:c2:64:13:41:
df:d8:8d:a2:7c:0e:fc:3a:72:1f:a1:e1:a0:65:9c:
56:cf:9f:36:cb:4d:c1:9f:c3:f0:69:ef:13:2f:70:
63:bc:a9:79:fd:50:74:47:66:93:b4:30:88:dc:77:
f0:0c:9e:62:d7:f7:a8:73:12:39:39:8a:0e:b2:9f:
2e:3f:a6:f7:17:00:80:dc:63:8a:ff:1b:14:67:84:
5f:94:a1:fa:56:c5:c5:1e:d8:a1:32:73:38:5e:b1:
c2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:64:9A:98:67:5D:ED:66:CD:6E:F3:5C:A2:FA:39:FF:43:EB:51:9E
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/QWSamGdd7WbNbvNcovo5_0PrUZ4.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
be:30:61:7e:24:c8:83:85:74:d5:4b:11:db:83:7e:3e:8e:33:
38:79:a4:66:eb:8a:99:d9:7c:78:56:26:99:5e:b8:e1:41:ca:
7d:dd:22:7f:be:55:4a:c7:b1:e2:79:6e:b8:56:65:33:0a:82:
67:31:81:dc:40:af:1d:e6:c7:56:4f:36:b6:8a:61:8c:55:c2:
59:9c:c2:5e:78:93:04:5b:13:ca:5f:78:96:7b:bf:ca:50:a9:
96:b7:23:23:28:4d:11:43:9a:69:3d:c9:4f:7a:5e:52:d6:18:
dd:3a:ce:66:72:f7:a3:1c:d4:9d:58:fc:90:24:13:ce:c6:2b:
b8:da:bd:a0:dc:8f:14:17:f0:83:f3:ed:43:f9:ab:df:05:c8:
bb:49:69:23:f3:81:04:4b:84:95:d4:6e:da:8a:52:82:df:28:
b2:2b:c6:e2:09:d3:39:54:70:6b:ef:63:d3:3e:48:4a:a6:07:
e7:c6:39:dd:05:21:20:28:0f:b6:71:32:f4:72:74:51:d1:35:
1b:3d:c1:33:07:46:9b:b6:ef:cc:37:11:32:12:19:8d:64:bc:
f8:9e:46:97:88:1b:84:35:b0:29:43:57:c2:33:6e:b0:93:62:
13:27:05:34:33:5e:6e:5f:44:ba:8c:17:7a:9e:a0:16:0f:b4:
5f:08:24:a2
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA1MTkx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDQxNjQ5QTk4Njc1REVE
NjZDRDZFRjM1Q0EyRkEzOUZGNDNFQjUxOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCViUnSlPY73BIkiWVqA5iCAMqhg4kBKVp9CjkWqTRaVwVt0L3
Xs8JirZwFj2pGf8Hn1ZCt9gAP7tgjLrTfeT3IEb08rybD1IsIx9doGDARuU9TKV8
B9NCZdE93GnAHe7Zk1Rag6dcl79TxSKNI3LRHPg2tdUw9/FcBrSBSuxlIK5maqg1
KATYl5Ehu8Ku9CVArdSAsL39sc1c0XsJrh+NwmQTQd/YjaJ8Dvw6ch+h4aBlnFbP
nzbLTcGfw/Bp7xMvcGO8qXn9UHRHZpO0MIjcd/AMnmLX96hzEjk5ig6yny4/pvcX
AIDcY4r/GxRnhF+UofpWxcUe2KEyczhescLNAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUQWSamGdd7WbNbvNcovo5/0PrUZ4wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL1FXU2FtR2RkN1diTmJ2
TmNvdm81XzBQclVaNC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAL4wYX4kyIOFdNVLEduDfj6OMzh5pGbripnZ
fHhWJpleuOFByn3dIn++VUrHseJ5brhWZTMKgmcxgdxArx3mx1ZPNraKYYxVwlmc
wl54kwRbE8pfeJZ7v8pQqZa3IyMoTRFDmmk9yU96XlLWGN06zmZy96Mc1J1Y/JAk
E87GK7javaDcjxQX8IPz7UP5q98FyLtJaSPzgQRLhJXUbtqKUoLfKLIrxuIJ0zlU
cGvvY9M+SEqmB+fGOd0FISAoD7ZxMvRydFHRNRs9wTMHRpu278w3ETISGY1kvPie
RpeIG4Q1sClDV8IzbrCTYhMnBTQzXm5fRLqMF3qeoBYPtF8IJKI=
-----END CERTIFICATE-----
Generated at Sun May 19 22:15:03 2024 by rpki-client on console-ams.rpki-client.org