Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/rHy_ZAi47FTQoUWrtqgXttN6W8M.roa
File: rHy_ZAi47FTQoUWrtqgXttN6W8M.roa (raw, json)
Hash identifier: OeTqjEodZCu5XZ/u8F2QoQN8RbBW5QgrlXpC1Es/kLo=
Subject key identifier: AC:7C:BF:64:08:B8:EC:54:D0:A1:45:AB:B6:A8:17:B6:D3:7A:5B:C3
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 037F
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rHy_ZAi47FTQoUWrtqgXttN6W8M.roa
Signing time: Sat 18 May 2024 15:55:03 +0000
ROA not before: Sat 18 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895 (0x37f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 18 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AC7CBF6408B8EC54D0A145ABB6A817B6D37A5BC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:57:cd:90:eb:94:74:ef:1f:29:da:a5:05:ed:
11:6f:79:7d:30:5f:4a:19:83:3d:a7:2d:4c:6b:6f:
a7:79:e9:55:be:44:a6:eb:ad:71:7c:94:3b:db:1b:
d8:bb:4f:05:6d:ad:d3:2f:d0:ea:59:17:19:64:98:
b6:41:89:19:74:94:dd:91:40:a0:e2:9e:e1:dc:a9:
12:fb:89:59:4b:70:44:7e:f4:d6:95:c5:8d:ac:28:
1c:8f:16:e9:dd:1b:c8:ee:af:f9:6e:8d:26:06:57:
70:f4:21:5e:79:fa:1b:11:4e:dc:12:bd:f5:01:a5:
68:80:95:c8:d8:dc:e9:d2:aa:a4:ee:59:f4:e4:bb:
ca:fb:ab:f2:e9:b0:97:c1:ec:cb:5a:11:b9:16:8a:
88:70:1f:06:cb:b6:e8:aa:03:c3:a9:a4:22:7e:c2:
e7:35:c5:bf:18:f9:f8:4a:47:c8:a6:53:74:90:61:
07:92:0f:99:4c:49:65:46:e6:18:61:6f:34:4f:1e:
ec:8d:5b:9e:f6:e5:0d:8e:44:b0:63:83:5a:07:2f:
c3:48:5d:6b:ed:c4:a9:ae:6f:65:d2:51:76:91:18:
d1:12:b1:e5:1b:3a:73:de:96:7d:98:11:d8:91:fb:
9f:07:24:7f:36:47:71:a3:57:21:11:af:20:b9:83:
88:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7C:BF:64:08:B8:EC:54:D0:A1:45:AB:B6:A8:17:B6:D3:7A:5B:C3
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rHy_ZAi47FTQoUWrtqgXttN6W8M.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:06:99:44:71:dd:c7:61:06:bc:33:c3:d1:8c:0f:6a:79:1b:
f2:ed:b2:6c:8d:8b:4a:3f:c3:04:3e:af:df:0f:28:28:e8:90:
1a:65:4c:c2:1b:69:37:08:8c:f8:fb:b6:d8:3a:6c:13:06:c0:
9c:fe:46:58:f1:74:d8:fa:c0:1b:cd:52:43:d2:ca:d2:cb:5b:
4e:78:3a:35:b1:be:48:1f:1e:19:75:b2:b5:45:df:16:66:4b:
ac:0b:25:d5:5e:76:90:20:1f:d7:20:dc:7f:51:6b:17:95:0d:
06:bc:0a:9d:ec:be:6c:bd:c3:d8:c9:ab:70:fc:7e:66:1e:4c:
e4:f9:80:d9:e3:cb:3c:11:e7:3e:da:9a:f9:b8:32:aa:d5:b7:
39:de:fa:e9:a1:78:42:fb:84:b1:68:b9:3b:a6:dd:8b:52:4b:
8a:b4:d1:cf:fd:e6:b6:da:49:1a:2d:28:38:34:f7:81:bb:a4:
cf:bd:f9:93:71:1d:b2:d8:05:b4:28:5e:be:36:1b:24:6c:48:
ce:79:e8:ab:20:ba:08:c8:cd:26:4b:93:0b:3d:4b:ef:22:7a:
7b:86:95:ed:15:49:07:4e:ae:1d:d2:7d:b8:97:56:a5:4f:1e:
a3:fb:e0:42:0f:83:a8:25:6b:52:d5:83:70:3c:5b:7e:83:17:
e0:a3:76:ff
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICA38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA1MTgx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEFDN0NCRjY0MDhCOEVD
NTREMEExNDVBQkI2QTgxN0I2RDM3QTVCQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZV82Q65R07x8p2qUF7RFveX0wX0oZgz2nLUxrb6d56VW+RKbr
rXF8lDvbG9i7TwVtrdMv0OpZFxlkmLZBiRl0lN2RQKDinuHcqRL7iVlLcER+9NaV
xY2sKByPFundG8jur/lujSYGV3D0IV55+hsRTtwSvfUBpWiAlcjY3OnSqqTuWfTk
u8r7q/LpsJfB7MtaEbkWiohwHwbLtuiqA8OppCJ+wuc1xb8Y+fhKR8imU3SQYQeS
D5lMSWVG5hhhbzRPHuyNW5725Q2ORLBjg1oHL8NIXWvtxKmub2XSUXaRGNESseUb
OnPeln2YEdiR+58HJH82R3GjVyERryC5g4jbAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUrHy/ZAi47FTQoUWrtqgXttN6W8MwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3JIeV9aQWk0N0ZUUW9V
V3J0cWdYdHRONlc4TS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAFoGmURx3cdhBrwzw9GMD2p5G/LtsmyNi0o/
wwQ+r98PKCjokBplTMIbaTcIjPj7ttg6bBMGwJz+RljxdNj6wBvNUkPSytLLW054
OjWxvkgfHhl1srVF3xZmS6wLJdVedpAgH9cg3H9RaxeVDQa8Cp3svmy9w9jJq3D8
fmYeTOT5gNnjyzwR5z7amvm4MqrVtzne+umheEL7hLFouTum3YtSS4q00c/95rba
SRotKDg094G7pM+9+ZNxHbLYBbQoXr42GyRsSM556KsgugjIzSZLkws9S+8ienuG
le0VSQdOrh3SfbiXVqVPHqP74EIPg6gla1LVg3A8W36DF+Cjdv8=
-----END CERTIFICATE-----
Generated at Sat May 18 21:36:25 2024 by rpki-client on console-ams.rpki-client.org