Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/do1zZ_qv6IurwgWJpOiWPZC2ER0.roa
File: do1zZ_qv6IurwgWJpOiWPZC2ER0.roa (raw, json)
Hash identifier: dPXyIRZsbL58xvfhf4WmDgXxiCJu9GPiXW21Ba3vIvI=
Subject key identifier: 76:8D:73:67:FA:AF:E8:8B:AB:C2:05:89:A4:E8:96:3D:90:B6:11:1D
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0475
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/do1zZ_qv6IurwgWJpOiWPZC2ER0.roa
Signing time: Fri 14 Jun 2024 23:55:03 +0000
ROA not before: Fri 14 Jun 2024 23:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Jun 2024 03:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1141 (0x475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 14 23:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=768D7367FAAFE88BABC20589A4E8963D90B6111D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:37:d6:01:e0:29:4f:d0:1d:6f:bb:58:6b:
bf:69:7a:72:23:cf:44:cc:79:9f:90:4b:7c:0e:c4:
83:ea:a8:67:fd:89:eb:19:3f:77:18:ef:df:fc:32:
5a:ba:de:0f:2d:b6:2e:a4:e2:b0:ad:6b:7c:a1:65:
6d:62:f2:8a:7f:40:0f:98:ad:f8:ff:0c:01:e3:dc:
f2:9a:48:42:07:57:80:74:92:40:b9:79:b3:c2:fc:
8e:07:94:cc:ae:63:14:c7:94:60:7e:33:de:74:54:
5d:80:a0:bf:8e:26:2b:4d:c8:b0:3d:51:34:b4:8f:
61:76:13:28:22:07:11:2c:1a:79:e3:ce:46:33:19:
69:68:81:ab:ed:2e:b4:28:20:d8:6f:4a:42:6a:e8:
17:1b:cb:ed:f8:17:bb:07:13:c3:50:6c:16:76:77:
71:93:5f:14:fc:87:0e:24:30:3f:25:dd:3a:8a:74:
b4:9a:a3:7a:a2:ab:81:63:53:8b:2b:cd:92:fd:20:
23:9e:b8:9b:2d:be:5b:0f:ae:be:a1:c2:41:6e:df:
ee:ac:75:4e:c9:d0:f7:c9:d8:bf:5d:a3:a2:00:74:
a6:a9:5d:4a:77:db:4f:91:3c:73:3a:d4:2a:bc:53:
bf:9d:46:f1:b7:81:f5:7c:49:f7:47:f6:74:50:a1:
96:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8D:73:67:FA:AF:E8:8B:AB:C2:05:89:A4:E8:96:3D:90:B6:11:1D
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/do1zZ_qv6IurwgWJpOiWPZC2ER0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:95:89:52:e3:97:06:09:ca:c0:db:aa:b9:f0:a3:e6:36:e4:
e6:d9:a9:82:13:d4:29:43:28:15:a9:60:24:7a:fc:f7:98:ab:
6f:c4:94:2a:43:6e:71:cd:98:63:08:d6:0a:fc:e7:6d:8d:d3:
12:e3:75:8e:77:74:dc:76:e8:07:aa:a8:cc:20:1e:06:a1:6a:
6c:5d:08:35:7a:fd:40:b9:53:9a:06:14:c2:6d:53:4f:da:aa:
58:38:e7:0d:03:c1:a4:eb:a9:3c:44:90:7a:1d:e7:77:8b:f3:
09:7b:bd:69:ec:d8:0d:57:2a:de:2e:84:bc:13:4e:c9:fc:66:
98:05:cc:2c:19:da:e5:70:23:b0:9d:21:57:31:b2:b7:eb:57:
9c:9a:e7:38:e0:67:0a:20:45:d5:21:6f:9b:8f:0d:aa:25:a8:
81:83:db:74:5f:c6:02:04:25:57:48:cd:2e:a4:b9:2c:97:60:
07:8e:71:88:a1:74:21:cd:4e:0e:ae:b0:5c:b2:66:87:38:b0:
be:8c:51:bb:59:ac:af:4e:c9:30:e9:38:63:d0:b7:96:8d:c0:
9e:38:1c:a4:24:97:0e:e3:b3:80:79:6a:fe:1b:f4:d9:7c:c7:
0e:b8:84:63:b1:55:dc:85:67:76:f3:2a:13:8f:58:bf:48:7f:
b0:14:c4:a2
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA2MTQy
MzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDc2OEQ3MzY3RkFBRkU4
OEJBQkMyMDU4OUE0RTg5NjNEOTBCNjExMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9HjfWAeApT9Adb7tYa79penIjz0TMeZ+QS3wOxIPqqGf9iesZ
P3cY79/8Mlq63g8tti6k4rCta3yhZW1i8op/QA+Yrfj/DAHj3PKaSEIHV4B0kkC5
ebPC/I4HlMyuYxTHlGB+M950VF2AoL+OJitNyLA9UTS0j2F2EygiBxEsGnnjzkYz
GWlogavtLrQoINhvSkJq6Bcby+34F7sHE8NQbBZ2d3GTXxT8hw4kMD8l3TqKdLSa
o3qiq4FjU4srzZL9ICOeuJstvlsPrr6hwkFu3+6sdU7J0PfJ2L9do6IAdKapXUp3
20+RPHM61Cq8U7+dRvG3gfV8SfdH9nRQoZbVAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUdo1zZ/qv6IurwgWJpOiWPZC2ER0wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL2RvMXpaX3F2Nkl1cndn
V0pwT2lXUFpDMkVSMC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAH6ViVLjlwYJysDbqrnwo+Y25ObZqYIT1ClD
KBWpYCR6/PeYq2/ElCpDbnHNmGMI1gr8522N0xLjdY53dNx26AeqqMwgHgahamxd
CDV6/UC5U5oGFMJtU0/aqlg45w0DwaTrqTxEkHod53eL8wl7vWns2A1XKt4uhLwT
Tsn8ZpgFzCwZ2uVwI7CdIVcxsrfrV5ya5zjgZwogRdUhb5uPDaolqIGD23RfxgIE
JVdIzS6kuSyXYAeOcYihdCHNTg6usFyyZoc4sL6MUbtZrK9OyTDpOGPQt5aNwJ44
HKQklw7js4B5av4b9Nl8xw64hGOxVdyFZ3bzKhOPWL9If7AUxKI=
-----END CERTIFICATE-----
Generated at Sat Jun 15 05:39:25 2024 by rpki-client on console-ams.rpki-client.org