Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/TwVicMRyWCQETtdtbSKUyUmU6Ro.roa
File: TwVicMRyWCQETtdtbSKUyUmU6Ro.roa (raw, json)
Hash identifier: dY5GsHpFFri+RBFV+HwlMsV3ihHApnq4sFs5qOcTsRo=
Subject key identifier: 4F:05:62:70:C4:72:58:24:04:4E:D7:6D:6D:22:94:C9:49:94:E9:1A
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 051A
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/TwVicMRyWCQETtdtbSKUyUmU6Ro.roa
Signing time: Wed 03 Jul 2024 07:55:03 +0000
ROA not before: Wed 03 Jul 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1306 (0x51a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jul 3 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4F056270C4725824044ED76D6D2294C94994E91A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:54:38:cd:02:84:7b:15:2f:87:27:05:87:51:
40:84:38:6b:6f:37:73:5e:cb:6d:0f:94:4f:a1:59:
4e:fd:21:c8:20:d4:68:f5:af:dc:be:86:86:9c:dc:
86:71:f9:26:05:49:21:f4:b6:2d:2d:bd:b3:c1:43:
89:22:18:53:d0:7d:db:7a:d4:f2:2b:b2:30:58:02:
fc:3d:b5:24:74:2e:fc:a1:1f:74:7d:0d:65:c0:fc:
e6:69:7c:8e:b7:5d:f0:99:e0:14:df:86:38:82:4b:
7a:8e:d9:ac:90:8e:a2:c7:08:da:57:7a:24:17:18:
b6:a0:3a:ff:eb:bf:12:3d:d2:07:a8:2a:63:b3:84:
92:4c:fc:d7:16:0e:0a:d5:c5:2d:9a:6a:27:6e:73:
d5:ed:f2:72:3d:6a:a6:97:09:65:9f:0f:17:96:8b:
5c:65:00:97:5f:46:b5:3d:27:52:93:78:d9:2c:12:
e5:64:7d:e8:1a:f7:fa:d8:10:e1:ab:ca:3c:59:b7:
53:95:d9:86:95:72:b5:58:fc:33:6c:1e:0f:6a:1e:
3f:a0:f3:97:d8:4d:7d:af:66:99:aa:f6:38:88:54:
4b:84:e5:38:70:e4:ea:69:6c:dc:77:08:ae:03:13:
5f:f1:57:1f:8c:a4:d8:8f:cb:cc:cc:f4:a3:36:9a:
d4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:05:62:70:C4:72:58:24:04:4E:D7:6D:6D:22:94:C9:49:94:E9:1A
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/TwVicMRyWCQETtdtbSKUyUmU6Ro.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:03:a6:87:72:cc:1c:f7:9f:ef:60:ff:a9:9a:bf:8e:d6:14:
6c:45:87:13:79:56:cc:97:16:27:d4:47:43:f0:07:37:ea:15:
6f:c5:6c:15:a9:b5:ab:79:d5:ad:46:25:d1:16:b2:9d:2a:ab:
3c:2e:5a:5a:d0:71:59:44:2d:02:fb:a0:6d:15:1f:10:1c:f9:
1d:6e:0d:9e:72:39:8f:18:40:9b:eb:eb:29:2a:db:84:08:b0:
3c:f7:c6:3e:93:f8:16:7b:cb:9c:3f:b8:46:53:77:51:24:2b:
78:c9:e8:8b:f1:ed:c4:cb:01:8a:5f:34:6d:db:e7:07:0b:3a:
b5:f8:72:63:83:8d:bb:9a:bb:ff:c0:57:dd:99:87:c4:e9:33:
d0:bb:b1:d9:56:e3:cc:20:82:fd:de:46:ed:1a:5e:98:86:74:
44:38:b9:4d:2a:50:02:f1:5c:16:9b:79:93:8b:cb:ae:43:82:
13:9d:3d:01:dd:41:b7:9b:01:fb:e0:3f:f9:54:7d:24:04:aa:
aa:59:81:5a:49:b7:50:1e:9c:95:6e:a4:ca:aa:a8:5d:cc:0e:
68:6b:ee:10:cd:72:e5:d2:2a:25:ab:36:14:6b:2d:dd:1e:01:
52:7a:65:17:76:7e:66:4a:b7:eb:80:57:4e:45:01:9a:70:f1:
9e:1a:3c:fd
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBRowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA3MDMw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDRGMDU2MjcwQzQ3MjU4
MjQwNDRFRDc2RDZEMjI5NEM5NDk5NEU5MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCfVDjNAoR7FS+HJwWHUUCEOGtvN3Ney20PlE+hWU79Icgg1Gj1
r9y+hoac3IZx+SYFSSH0ti0tvbPBQ4kiGFPQfdt61PIrsjBYAvw9tSR0LvyhH3R9
DWXA/OZpfI63XfCZ4BTfhjiCS3qO2ayQjqLHCNpXeiQXGLagOv/rvxI90geoKmOz
hJJM/NcWDgrVxS2aaiduc9Xt8nI9aqaXCWWfDxeWi1xlAJdfRrU9J1KTeNksEuVk
fega9/rYEOGryjxZt1OV2YaVcrVY/DNsHg9qHj+g85fYTX2vZpmq9jiIVEuE5Thw
5OppbNx3CK4DE1/xVx+MpNiPy8zM9KM2mtQHAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUTwVicMRyWCQETtdtbSKUyUmU6RowHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL1R3VmljTVJ5V0NRRVR0
ZHRiU0tVeVVtVTZSby5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAKQDpodyzBz3n+9g/6mav47WFGxFhxN5VsyX
FifUR0PwBzfqFW/FbBWptat51a1GJdEWsp0qqzwuWlrQcVlELQL7oG0VHxAc+R1u
DZ5yOY8YQJvr6ykq24QIsDz3xj6T+BZ7y5w/uEZTd1EkK3jJ6Ivx7cTLAYpfNG3b
5wcLOrX4cmODjbuau//AV92Zh8TpM9C7sdlW48wggv3eRu0aXpiGdEQ4uU0qUALx
XBabeZOLy65DghOdPQHdQbebAfvgP/lUfSQEqqpZgVpJt1AenJVupMqqqF3MDmhr
7hDNcuXSKiWrNhRrLd0eAVJ6ZRd2fmZKt+uAV05FAZpw8Z4aPP0=
-----END CERTIFICATE-----
Generated at Wed Jul 3 13:36:47 2024 by rpki-client on console-fra.rpki-client.org