Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/p497BWjNJvSnZV4riueQNgc9Lo8.roa
File: p497BWjNJvSnZV4riueQNgc9Lo8.roa (raw, json)
Hash identifier: 4ifbo0TFfXGSFnYaEWcqunwdkwZwqKWjBZXwet2O0+c=
Subject key identifier: A7:8F:7B:05:68:CD:26:F4:A7:65:5E:2B:8A:E7:90:36:07:3D:2E:8F
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0265
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/p497BWjNJvSnZV4riueQNgc9Lo8.roa
Signing time: Wed 17 Apr 2024 07:55:02 +0000
ROA not before: Wed 17 Apr 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 11:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 613 (0x265)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 17 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A78F7B0568CD26F4A7655E2B8AE79036073D2E8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3f:37:9c:ac:c4:50:26:a7:a1:eb:57:d3:c4:
52:9f:2f:03:fb:82:e6:26:f0:87:5c:e0:ee:9e:2a:
c1:87:36:bf:be:40:82:91:79:a1:f3:e9:d1:a7:66:
66:76:38:7e:f0:23:75:8e:61:3f:05:3d:e7:e5:02:
b8:6c:9e:b8:0a:31:6a:ed:7f:69:e9:e7:b9:25:80:
bf:f8:0b:cc:10:32:d4:72:4d:d5:ef:2e:ca:83:f4:
6e:96:b9:0a:66:b5:40:78:9a:8b:eb:3b:50:4b:29:
de:66:4e:b9:bb:76:68:98:ee:54:4e:88:2c:55:94:
11:f9:58:67:e8:28:fd:57:5e:25:f9:99:0e:2b:2f:
ae:52:01:dc:3a:31:64:d4:bd:76:99:a9:28:bf:04:
2d:45:b7:d6:f7:55:4d:88:a5:28:66:d4:ff:44:94:
43:f0:18:09:55:1c:e8:72:61:63:d3:74:53:a3:c4:
e7:d1:3c:dc:ce:40:06:b5:51:7c:ef:00:05:23:f2:
09:1e:d3:39:95:d5:65:4c:f6:7e:50:dc:1f:84:72:
db:2a:ad:63:93:69:6e:3c:17:2d:7d:53:e8:14:1b:
15:1d:1a:d3:0f:30:bc:13:7e:8a:4f:94:d2:aa:e8:
88:e2:eb:ff:1c:f2:48:b8:25:02:32:d6:fc:b6:fa:
b0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8F:7B:05:68:CD:26:F4:A7:65:5E:2B:8A:E7:90:36:07:3D:2E:8F
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/p497BWjNJvSnZV4riueQNgc9Lo8.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:d4:b7:af:3b:a5:0c:1e:c8:8c:db:a5:59:2c:b7:84:1c:69:
3c:a9:8e:20:80:82:e1:f3:ee:83:f5:70:1e:54:48:a1:0d:ee:
7b:33:9b:62:bf:7e:ed:17:e1:8b:b0:fc:e1:4c:4f:9a:c2:de:
f6:c7:1f:5a:09:0c:12:d6:95:18:4e:54:79:c0:d5:ca:b2:65:
63:66:9a:d3:80:b4:3e:41:db:36:94:f8:75:69:17:10:de:f4:
4f:29:c5:81:be:51:cf:88:26:07:04:62:a7:27:47:35:77:5a:
68:96:c7:ae:68:4c:44:e6:48:ac:be:92:89:9b:df:16:0d:f0:
a8:09:e8:bf:8a:1e:39:c9:3f:e6:cd:8c:56:58:c2:59:ef:47:
d7:bf:de:0b:95:72:b3:a0:fc:66:7d:02:a8:0a:34:4c:3e:0a:
dd:d8:cb:79:d5:91:3b:43:de:e1:23:ca:c4:be:00:da:40:e0:
ae:42:62:2e:fe:fd:9a:67:dd:37:f7:75:8d:a0:48:ca:80:f3:
1f:d8:0d:e2:65:8e:ff:ba:e8:a4:93:91:c6:8a:d7:23:5a:67:
b9:07:46:5e:53:24:12:b6:43:1d:52:12:db:5a:7e:9a:c4:e4:
99:0a:a7:04:e5:8f:a1:4c:54:83:3b:85:18:0f:df:ad:0c:66:
40:38:3c:10
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAmUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA0MTcw
NzU1MDJaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEE3OEY3QjA1NjhDRDI2
RjRBNzY1NUUyQjhBRTc5MDM2MDczRDJFOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFPzecrMRQJqeh61fTxFKfLwP7guYm8Idc4O6eKsGHNr++QIKR
eaHz6dGnZmZ2OH7wI3WOYT8FPeflArhsnrgKMWrtf2np57klgL/4C8wQMtRyTdXv
LsqD9G6WuQpmtUB4movrO1BLKd5mTrm7dmiY7lROiCxVlBH5WGfoKP1XXiX5mQ4r
L65SAdw6MWTUvXaZqSi/BC1Ft9b3VU2IpShm1P9ElEPwGAlVHOhyYWPTdFOjxOfR
PNzOQAa1UXzvAAUj8gke0zmV1WVM9n5Q3B+EctsqrWOTaW48Fy19U+gUGxUdGtMP
MLwTfopPlNKq6Iji6/8c8ki4JQIy1vy2+rBnAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUp497BWjNJvSnZV4riueQNgc9Lo8wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3A0OTdCV2pOSnZTblpW
NHJpdWVRTmdjOUxvOC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAB7Ut687pQweyIzbpVkst4QcaTypjiCAguHz
7oP1cB5USKEN7nszm2K/fu0X4Yuw/OFMT5rC3vbHH1oJDBLWlRhOVHnA1cqyZWNm
mtOAtD5B2zaU+HVpFxDe9E8pxYG+Uc+IJgcEYqcnRzV3WmiWx65oTETmSKy+komb
3xYN8KgJ6L+KHjnJP+bNjFZYwlnvR9e/3guVcrOg/GZ9AqgKNEw+Ct3Yy3nVkTtD
3uEjysS+ANpA4K5CYi7+/Zpn3Tf3dY2gSMqA8x/YDeJljv+66KSTkcaK1yNaZ7kH
Rl5TJBK2Qx1SEttafprE5JkKpwTlj6FMVIM7hRgP360MZkA4PBA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org