Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/RzRCSnXeuIOV2sTJyu8dNPFXT4E.roa
File: RzRCSnXeuIOV2sTJyu8dNPFXT4E.roa (raw, json)
Hash identifier: svVzwpWsjZzfYTqKLb3w8QYMWS0/iUCuzv56dExONuQ=
Subject key identifier: 47:34:42:4A:75:DE:B8:83:95:DA:C4:C9:CA:EF:1D:34:F1:57:4F:81
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 04EA
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RzRCSnXeuIOV2sTJyu8dNPFXT4E.roa
Signing time: Thu 27 Jun 2024 23:55:04 +0000
ROA not before: Thu 27 Jun 2024 23:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jun 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1258 (0x4ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 27 23:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4734424A75DEB88395DAC4C9CAEF1D34F1574F81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:c2:e5:b9:d6:e1:a5:73:79:a1:fa:3b:f4:
86:ce:de:d2:7d:b7:02:30:ae:46:15:18:43:12:47:
47:42:93:85:d9:ff:b0:c7:b2:a2:1d:74:ca:67:19:
70:b8:5d:93:f0:e9:3e:ec:47:86:43:da:bb:75:37:
b2:25:27:20:b7:bd:59:19:41:4a:d9:6b:10:e5:d3:
31:83:3a:83:bd:11:d3:f2:c5:84:27:6d:df:0f:e7:
7c:20:a3:71:79:a8:10:e9:61:9e:35:e8:6f:fe:61:
90:29:00:a6:53:2e:c7:f0:97:2b:ec:a7:b9:6a:27:
be:97:a9:cd:81:71:80:16:b9:1e:3a:0b:d7:d5:24:
19:bb:67:c3:90:73:f2:36:f2:cf:79:c3:9d:9c:67:
0d:63:65:c4:a7:30:32:3f:36:13:10:b5:75:df:a0:
62:83:71:c9:18:56:b5:05:72:37:03:71:aa:e6:71:
3c:3b:c1:64:5b:9a:43:30:9f:9a:18:dc:fe:e1:7c:
6c:23:e1:a6:0c:48:af:78:eb:71:cc:6f:d7:2b:b0:
3c:15:5c:47:f3:c4:e5:52:36:33:51:ee:dc:fb:f4:
37:c1:68:64:a7:69:c0:71:0c:d2:6f:16:ec:a9:11:
58:a6:b2:88:b1:77:9c:39:3a:fe:a9:44:21:e7:59:
bd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:34:42:4A:75:DE:B8:83:95:DA:C4:C9:CA:EF:1D:34:F1:57:4F:81
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/RzRCSnXeuIOV2sTJyu8dNPFXT4E.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
63:81:dc:59:ad:7a:f1:bf:42:45:dd:31:c5:3f:57:7f:d3:6e:
1f:9c:92:a4:1c:c7:e6:ed:85:c1:42:c7:be:54:18:65:fd:27:
2e:83:54:23:c8:25:e3:b1:ba:7f:b0:6b:58:d1:22:82:f0:d8:
b3:70:80:b8:1b:5d:59:48:6c:ee:12:66:bb:4c:8f:96:1a:a2:
5e:2c:41:d5:36:75:a2:01:15:4c:12:66:5b:2b:76:80:42:af:
eb:12:e4:95:e2:50:b1:1a:7f:2f:4c:ef:f0:1e:7f:49:a5:18:
de:2e:17:da:36:01:6d:58:3f:34:2b:e7:09:05:1d:d4:92:6a:
11:70:f2:61:40:20:c1:04:9a:0a:b0:11:7b:f8:40:e4:02:5a:
82:09:ea:47:95:94:dd:96:c0:68:7d:07:9f:db:75:8b:32:50:
d3:57:e1:84:ca:96:20:9f:73:81:97:81:32:7b:53:5d:cb:2d:
c9:ae:ac:a9:05:5b:f0:cd:dc:d6:c3:a8:2a:d4:d5:0c:d4:e3:
28:80:cb:e4:b9:e8:af:f6:22:3c:6f:db:ca:18:cd:ad:15:d6:
10:90:4f:9e:b9:88:1f:9a:50:4d:01:4e:04:6a:17:02:e0:05:
00:44:7e:32:86:d4:3c:36:ac:c1:a5:ab:c2:54:c7:a6:95:97:
f3:64:a9:0b
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBOowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA2Mjcy
MzU1MDRaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDQ3MzQ0MjRBNzVERUI4
ODM5NURBQzRDOUNBRUYxRDM0RjE1NzRGODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDisLludbhpXN5ofo79IbO3tJ9twIwrkYVGEMSR0dCk4XZ/7DH
sqIddMpnGXC4XZPw6T7sR4ZD2rt1N7IlJyC3vVkZQUrZaxDl0zGDOoO9EdPyxYQn
bd8P53wgo3F5qBDpYZ416G/+YZApAKZTLsfwlyvsp7lqJ76Xqc2BcYAWuR46C9fV
JBm7Z8OQc/I28s95w52cZw1jZcSnMDI/NhMQtXXfoGKDcckYVrUFcjcDcarmcTw7
wWRbmkMwn5oY3P7hfGwj4aYMSK9463HMb9crsDwVXEfzxOVSNjNR7tz79DfBaGSn
acBxDNJvFuypEVimsoixd5w5Ov6pRCHnWb2NAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQURzRCSnXeuIOV2sTJyu8dNPFXT4EwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL1J6UkNTblhldUlPVjJz
VEp5dThkTlBGWFQ0RS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAGOB3FmtevG/QkXdMcU/V3/Tbh+ckqQcx+bt
hcFCx75UGGX9Jy6DVCPIJeOxun+wa1jRIoLw2LNwgLgbXVlIbO4SZrtMj5Yaol4s
QdU2daIBFUwSZlsrdoBCr+sS5JXiULEafy9M7/Aef0mlGN4uF9o2AW1YPzQr5wkF
HdSSahFw8mFAIMEEmgqwEXv4QOQCWoIJ6keVlN2WwGh9B5/bdYsyUNNX4YTKliCf
c4GXgTJ7U13LLcmurKkFW/DN3NbDqCrU1QzU4yiAy+S56K/2Ijxv28oYza0V1hCQ
T565iB+aUE0BTgRqFwLgBQBEfjKG1Dw2rMGlq8JUx6aVl/NkqQs=
-----END CERTIFICATE-----
Generated at Fri Jun 28 05:43:52 2024 by rpki-client on console-ams.rpki-client.org