Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/TUDNF7a_jP7Pw8UMEWjbumXTalk.roa
File: TUDNF7a_jP7Pw8UMEWjbumXTalk.roa (raw, json)
Hash identifier: A4NdYfckvBGtxv5fYbC/KqDfFmfJtyprLtQzQKGal54=
Subject key identifier: 4D:40:CD:17:B6:BF:8C:FE:CF:C3:C5:0C:11:68:DB:BA:65:D3:6A:59
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0187
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/TUDNF7a_jP7Pw8UMEWjbumXTalk.roa
Signing time: Sat 23 Mar 2024 15:55:03 +0000
ROA not before: Sat 23 Mar 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391 (0x187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 23 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4D40CD17B6BF8CFECFC3C50C1168DBBA65D36A59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e3:f3:08:0d:58:d2:35:a7:84:a3:ae:15:a2:
cd:19:f4:fa:68:6b:b9:ab:23:51:a4:c4:30:59:ab:
bc:90:32:c8:2f:7c:66:71:eb:98:97:04:2b:1f:61:
02:81:96:f7:49:8b:23:94:df:30:1f:47:64:aa:99:
1c:75:b7:83:a0:41:07:c5:01:a6:bd:aa:a6:90:e4:
10:38:c7:cd:8a:3d:9b:7a:b3:2d:16:a1:eb:8b:21:
04:21:29:94:3e:d3:26:7a:08:77:84:84:f5:f0:4b:
8c:ac:f2:e5:e3:87:fa:4d:bb:65:36:6b:9a:24:b3:
3c:9b:bc:de:3a:1d:28:5c:a7:61:21:0f:10:bc:81:
e9:70:59:ba:8f:1e:0f:e6:12:9c:e6:32:f3:98:31:
3a:c7:39:65:bb:16:20:3e:d5:ff:54:68:c3:93:a0:
8c:0b:74:b1:4d:92:c5:d4:b3:59:2a:a5:88:7c:f1:
d9:73:2c:cf:db:4e:31:1e:45:e6:b0:0e:07:40:7f:
2f:cf:71:37:55:27:6e:0c:f5:a9:1e:98:3e:9a:f1:
c2:47:63:43:4f:69:b2:71:a1:dd:ef:b3:c6:f5:37:
6a:24:1b:26:ca:34:36:f5:45:38:82:3a:ee:23:92:
e8:ef:de:89:59:1a:09:bb:6a:f5:65:85:ce:ed:9d:
4c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:40:CD:17:B6:BF:8C:FE:CF:C3:C5:0C:11:68:DB:BA:65:D3:6A:59
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/TUDNF7a_jP7Pw8UMEWjbumXTalk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
05:55:88:c5:15:e1:8e:07:bd:90:ee:3c:ac:9a:87:e0:1d:b8:
1e:11:75:fd:00:d6:16:7d:d7:3a:bf:89:d6:22:73:3c:e7:04:
5d:d4:21:9d:fe:dd:b5:79:18:fb:db:84:1c:98:bb:4b:26:dd:
75:fa:3a:8d:fd:c9:87:74:ef:2b:46:fc:95:b0:f6:72:58:f6:
b7:0a:a9:d3:28:3a:cd:9d:2e:20:25:06:3b:c5:91:c5:2f:84:
ba:90:44:e2:a4:e6:eb:74:c8:10:34:c9:99:7e:e1:31:dc:fc:
8a:2d:4d:dc:3c:cd:91:58:33:9b:ac:47:9d:b0:b1:8d:01:20:
da:a8:a5:56:72:df:54:0f:02:85:3a:d7:bf:a0:a4:ed:73:87:
c3:9e:02:c1:37:74:79:62:fc:9f:c7:9e:b0:e5:3c:df:e2:db:
63:06:f5:4a:9a:70:c7:96:50:47:d4:cd:da:32:38:da:10:13:
43:74:df:25:dc:72:9d:75:34:d8:72:27:6c:ae:9c:6b:b3:cb:
18:18:10:0d:3c:b3:0a:e9:31:b1:ee:38:49:c5:b1:43:5d:71:
0d:f1:d1:93:40:9f:6b:7b:81:a6:7a:31:90:9c:72:3d:93:24:
8c:03:34:f3:5a:db:f6:d1:62:b9:7b:67:0f:1f:c3:7e:aa:21:
ec:47:33:8e
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDAzMjMx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDRENDBDRDE3QjZCRjhD
RkVDRkMzQzUwQzExNjhEQkJBNjVEMzZBNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDd4/MIDVjSNaeEo64Vos0Z9Ppoa7mrI1GkxDBZq7yQMsgvfGZx
65iXBCsfYQKBlvdJiyOU3zAfR2SqmRx1t4OgQQfFAaa9qqaQ5BA4x82KPZt6sy0W
oeuLIQQhKZQ+0yZ6CHeEhPXwS4ys8uXjh/pNu2U2a5okszybvN46HShcp2EhDxC8
gelwWbqPHg/mEpzmMvOYMTrHOWW7FiA+1f9UaMOToIwLdLFNksXUs1kqpYh88dlz
LM/bTjEeReawDgdAfy/PcTdVJ24M9akemD6a8cJHY0NPabJxod3vs8b1N2okGybK
NDb1RTiCOu4jkujv3olZGgm7avVlhc7tnUybAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUTUDNF7a/jP7Pw8UMEWjbumXTalkwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL1RVRE5GN2FfalA3UHc4
VU1FV2pidW1YVGFsay5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAAVViMUV4Y4HvZDuPKyah+AduB4Rdf0A1hZ9
1zq/idYiczznBF3UIZ3+3bV5GPvbhByYu0sm3XX6Oo39yYd07ytG/JWw9nJY9rcK
qdMoOs2dLiAlBjvFkcUvhLqQROKk5ut0yBA0yZl+4THc/IotTdw8zZFYM5usR52w
sY0BINqopVZy31QPAoU617+gpO1zh8OeAsE3dHli/J/HnrDlPN/i22MG9UqacMeW
UEfUzdoyONoQE0N03yXccp11NNhyJ2yunGuzyxgYEA08swrpMbHuOEnFsUNdcQ3x
0ZNAn2t7gaZ6MZCccj2TJIwDNPNa2/bRYrl7Zw8fw36qIexHM44=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org