Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/jOeMUFSLbcstDpIYGuTJ411X85I.roa
File: jOeMUFSLbcstDpIYGuTJ411X85I.roa (raw, json)
Hash identifier: cxLO57hnO2e4s5XX9LiYa9FLda7s1ILtZTuNTRM/+zo=
Subject key identifier: 8C:E7:8C:50:54:8B:6D:CB:2D:0E:92:18:1A:E4:C9:E3:5D:57:F3:92
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0256
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jOeMUFSLbcstDpIYGuTJ411X85I.roa
Signing time: Mon 15 Apr 2024 15:55:04 +0000
ROA not before: Mon 15 Apr 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 19:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 598 (0x256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 15 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8CE78C50548B6DCB2D0E92181AE4C9E35D57F392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:de:90:f5:f6:2d:d7:be:6b:97:5c:c2:44:e3:
8e:aa:d6:76:f2:38:5a:0b:3e:e1:76:cf:da:17:30:
82:e6:33:ca:27:2e:c4:69:2b:3a:fa:bf:12:d4:b7:
b8:aa:ce:8d:82:e4:05:e8:40:71:c7:a3:a8:ab:7c:
b1:4e:d8:8a:eb:68:51:fd:1a:b2:ee:2d:95:73:cb:
da:3d:8c:46:84:bb:f9:7b:3d:48:4a:34:6b:79:f3:
49:60:93:77:0d:2f:88:8b:0f:ef:c3:96:71:f8:57:
f4:2c:16:91:f8:33:7a:c8:35:6f:0a:b9:a9:04:e6:
32:36:6f:35:1d:18:78:99:9c:79:24:f8:46:5f:47:
3b:be:e3:b7:d2:19:e3:7b:28:b7:dd:fb:fc:98:20:
af:04:4a:36:ad:10:f8:b6:a7:2f:1d:75:21:c3:8a:
53:a1:fc:60:c1:f7:15:c5:9c:f0:38:54:fe:1f:fe:
c9:49:84:97:8a:ad:56:ea:ca:33:66:2a:42:27:dc:
0f:b7:59:44:eb:d6:df:f0:48:2d:6f:13:ea:7f:a1:
10:87:51:ad:4c:34:17:87:9f:5d:6a:18:4e:8d:42:
92:51:9d:11:e0:cd:04:b6:cf:51:06:a8:b3:42:c0:
8c:31:1a:2c:af:c1:4d:fa:ad:71:31:a0:50:3c:30:
51:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E7:8C:50:54:8B:6D:CB:2D:0E:92:18:1A:E4:C9:E3:5D:57:F3:92
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/jOeMUFSLbcstDpIYGuTJ411X85I.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:36:d9:81:e5:f8:b0:36:d3:60:ab:9e:86:8e:0a:33:e5:fb:
9e:d1:f1:ad:1f:a8:99:29:ee:44:79:b3:80:f5:af:8e:06:59:
4f:93:1c:b9:d1:cb:57:7b:f7:11:d2:ee:88:c2:54:0c:26:fb:
a7:37:f9:c1:bc:37:40:5b:b6:f9:0c:8f:c0:64:ca:02:7a:b2:
6a:0b:60:1d:1d:ca:b8:0b:fa:a3:44:67:60:2d:58:9c:5c:47:
a1:8f:c5:01:c4:94:34:66:33:3f:e0:7d:6a:ac:aa:5a:b4:30:
83:f3:a0:87:c0:05:85:62:51:83:02:0f:99:7a:fd:cc:e6:a0:
2c:84:b5:6c:86:e6:82:ff:f5:cd:3e:a1:3d:d3:a8:1f:05:07:
64:9d:a1:37:f7:1e:4a:40:94:f2:b9:c2:3a:64:23:ad:4f:e2:
94:80:32:a7:b2:15:6c:49:02:2d:88:8e:f1:a2:e7:24:de:5b:
dc:05:32:0b:f3:67:97:77:0b:b8:4d:b1:29:fa:52:40:10:8c:
b7:6a:b1:fb:73:4d:6c:ad:e6:88:b4:2c:e6:4c:5a:5f:7e:d9:
06:4e:66:e4:b6:8b:dc:93:7a:a2:e3:89:67:60:33:54:77:40:
c3:f7:b5:a7:2e:4d:7c:9e:47:88:3d:17:de:de:ef:88:75:10:
27:f0:2c:74
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA0MTUx
NTU1MDRaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDhDRTc4QzUwNTQ4QjZE
Q0IyRDBFOTIxODFBRTRDOUUzNUQ1N0YzOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDz3pD19i3XvmuXXMJE446q1nbyOFoLPuF2z9oXMILmM8onLsRp
Kzr6vxLUt7iqzo2C5AXoQHHHo6irfLFO2IrraFH9GrLuLZVzy9o9jEaEu/l7PUhK
NGt580lgk3cNL4iLD+/DlnH4V/QsFpH4M3rINW8KuakE5jI2bzUdGHiZnHkk+EZf
Rzu+47fSGeN7KLfd+/yYIK8ESjatEPi2py8ddSHDilOh/GDB9xXFnPA4VP4f/slJ
hJeKrVbqyjNmKkIn3A+3WUTr1t/wSC1vE+p/oRCHUa1MNBeHn11qGE6NQpJRnRHg
zQS2z1EGqLNCwIwxGiyvwU36rXExoFA8MFF/AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUjOeMUFSLbcstDpIYGuTJ411X85IwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL2pPZU1VRlNMYmNzdERw
SVlHdVRKNDExWDg1SS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBANU22YHl+LA202CrnoaOCjPl+57R8a0fqJkp
7kR5s4D1r44GWU+THLnRy1d79xHS7ojCVAwm+6c3+cG8N0BbtvkMj8BkygJ6smoL
YB0dyrgL+qNEZ2AtWJxcR6GPxQHElDRmMz/gfWqsqlq0MIPzoIfABYViUYMCD5l6
/czmoCyEtWyG5oL/9c0+oT3TqB8FB2SdoTf3HkpAlPK5wjpkI61P4pSAMqeyFWxJ
Ai2IjvGi5yTeW9wFMgvzZ5d3C7hNsSn6UkAQjLdqsftzTWyt5oi0LOZMWl9+2QZO
ZuS2i9yTeqLjiWdgM1R3QMP3tacuTXyeR4g9F97e74h1ECfwLHQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org