Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/TRneoa9Hdg_nxffEs0CfKx-jN7w.roa
File: TRneoa9Hdg_nxffEs0CfKx-jN7w.roa (raw, json)
Hash identifier: SWcz/j1O6uoMg3cMp8ewKOdUzGx15ccojZKeqrQcUCo=
Subject key identifier: 4D:19:DE:A1:AF:47:76:0F:E7:C5:F7:C4:B3:40:9F:2B:1F:A3:37:BC
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: D3
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/TRneoa9Hdg_nxffEs0CfKx-jN7w.roa
Signing time: Sun 03 Mar 2024 15:55:03 +0000
ROA not before: Sun 03 Mar 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Mar 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211 (0xd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 3 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4D19DEA1AF47760FE7C5F7C4B3409F2B1FA337BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:3b:77:70:a1:88:9c:9d:9f:21:20:9b:ca:
09:34:27:1f:bb:76:fc:fd:7f:34:ad:c8:fc:0c:62:
58:12:ab:e7:80:ac:3d:a3:2f:7f:82:88:6d:82:54:
8e:ee:f7:ad:af:df:ae:92:f0:9d:e6:ac:5a:47:85:
cc:9b:56:5d:30:6d:66:7f:d9:b2:3a:ae:d5:a4:3c:
61:e6:54:95:20:2a:74:46:e8:37:5e:14:8c:81:9f:
cb:d9:37:b5:f5:ae:76:a2:b3:7c:fd:22:7d:49:27:
d4:fe:5f:f0:2d:56:e7:c6:54:bf:40:00:f2:a3:be:
27:34:fc:4c:8d:79:8e:d6:f1:95:8e:c5:98:98:ef:
01:7b:79:a6:c2:97:e2:20:fe:1f:1f:a1:35:51:f1:
a1:1d:79:82:1d:73:cf:62:a0:b5:3e:3c:86:49:82:
8d:82:b8:9c:cc:ce:23:cd:c5:88:56:43:65:99:72:
d2:50:a0:be:84:b2:dc:8e:79:0a:c6:c0:a8:c2:7c:
d7:ab:27:df:79:71:ac:a9:1d:f8:b5:28:13:8d:6e:
60:dc:74:32:4d:96:8d:50:ec:60:a0:0f:ea:fb:bd:
b1:27:56:7c:68:cd:78:dc:d7:e5:48:b7:2e:fc:6b:
44:65:7b:8f:d3:c7:53:92:a3:b6:e6:7a:b9:01:5b:
5d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:19:DE:A1:AF:47:76:0F:E7:C5:F7:C4:B3:40:9F:2B:1F:A3:37:BC
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/TRneoa9Hdg_nxffEs0CfKx-jN7w.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:44:01:9b:57:c6:61:46:62:f3:b8:5e:a6:2d:a2:0d:f2:f4:
aa:35:cf:3e:7c:88:87:22:15:0d:da:81:d4:45:38:42:61:56:
9c:ac:6a:a7:87:0c:cd:02:f2:bf:c7:dd:e4:c4:c8:e2:34:f9:
e3:5f:7b:b0:e0:73:e0:e8:ca:5d:96:a3:55:a0:fc:c9:d4:e2:
8e:7e:96:3e:77:00:8e:65:79:d1:16:d4:23:86:21:86:8c:55:
f5:18:bd:da:7a:29:10:f8:ea:8f:d9:9f:04:fc:d7:3d:04:b1:
be:64:55:9e:c0:ed:97:42:25:49:3d:65:81:47:e2:91:78:b1:
df:5b:41:f9:06:bd:18:78:f2:ee:ce:ae:b3:f0:c1:26:8a:cc:
43:9b:83:5d:17:96:7b:cd:1b:b5:12:53:59:73:2a:fc:de:93:
ed:d6:b1:af:0b:dd:96:95:8d:b8:b5:5e:17:72:74:57:c9:1c:
4f:8e:d1:fc:9a:e4:00:f3:ba:93:3c:be:58:30:0d:4f:d6:f0:
d5:6f:2c:a0:9a:8a:58:9b:46:1a:6a:45:6b:f6:7e:a9:d5:96:
f8:5e:79:d2:01:a7:12:e7:f8:cf:1c:40:e3:b5:9c:b6:8e:26:
b5:e0:b1:4a:e2:80:48:f9:76:75:51:d6:75:e6:5c:7c:91:f8:
69:4a:c6:9e
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDAzMDMx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDREMTlERUExQUY0Nzc2
MEZFN0M1RjdDNEIzNDA5RjJCMUZBMzM3QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDA+jt3cKGInJ2fISCbygk0Jx+7dvz9fzStyPwMYlgSq+eArD2j
L3+CiG2CVI7u962v366S8J3mrFpHhcybVl0wbWZ/2bI6rtWkPGHmVJUgKnRG6Dde
FIyBn8vZN7X1rnais3z9In1JJ9T+X/AtVufGVL9AAPKjvic0/EyNeY7W8ZWOxZiY
7wF7eabCl+Ig/h8foTVR8aEdeYIdc89ioLU+PIZJgo2CuJzMziPNxYhWQ2WZctJQ
oL6EstyOeQrGwKjCfNerJ995caypHfi1KBONbmDcdDJNlo1Q7GCgD+r7vbEnVnxo
zXjc1+VIty78a0Rle4/Tx1OSo7bmerkBW13BAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUTRneoa9Hdg/nxffEs0CfKx+jN7wwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL1RSbmVvYTlIZGdfbnhm
ZkVzMENmS3gtak43dy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAA1EAZtXxmFGYvO4XqYtog3y9Ko1zz58iIci
FQ3agdRFOEJhVpysaqeHDM0C8r/H3eTEyOI0+eNfe7Dgc+Doyl2Wo1Wg/MnU4o5+
lj53AI5ledEW1COGIYaMVfUYvdp6KRD46o/ZnwT81z0Esb5kVZ7A7ZdCJUk9ZYFH
4pF4sd9bQfkGvRh48u7OrrPwwSaKzEObg10XlnvNG7USU1lzKvzek+3Wsa8L3ZaV
jbi1XhdydFfJHE+O0fya5ADzupM8vlgwDU/W8NVvLKCailibRhpqRWv2fqnVlvhe
edIBpxLn+M8cQOO1nLaOJrXgsUrigEj5dnVR1nXmXHyR+GlKxp4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org