Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/rUde35X5hiojZTrdi96kXoDVWQw.roa
File: rUde35X5hiojZTrdi96kXoDVWQw.roa (raw, json)
Hash identifier: 8/qm672YJRpxXopPSM06c7KlbmGufeuKO6/zPl7TxcQ=
Subject key identifier: AD:47:5E:DF:95:F9:86:2A:23:65:3A:DD:8B:DE:A4:5E:80:D5:59:0C
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: DC
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rUde35X5hiojZTrdi96kXoDVWQw.roa
Signing time: Mon 04 Mar 2024 15:55:03 +0000
ROA not before: Mon 04 Mar 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220 (0xdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Mar 4 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=AD475EDF95F9862A23653ADD8BDEA45E80D5590C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a2:1c:b3:24:6b:0a:2d:48:55:91:95:f8:1c:
32:e5:bf:ba:d5:ea:9b:56:c8:45:89:bd:38:fe:c7:
f6:e4:eb:28:38:92:c1:a2:38:49:eb:80:f3:63:c7:
67:f6:17:cf:c5:3f:b5:57:3b:75:c7:c6:53:db:80:
9f:e6:03:a7:ef:61:45:07:e8:77:8b:a3:9a:ef:d5:
2f:b9:78:d0:98:db:e5:6f:9f:49:ae:e5:7b:a3:bb:
c4:83:97:74:c5:6e:30:52:d9:31:93:cd:80:75:12:
fc:a1:1a:d8:1c:b6:29:62:0b:7f:5c:75:38:0d:52:
29:7f:b4:4d:cb:2b:e4:c4:72:46:50:80:64:1f:e8:
07:d7:1c:04:fc:7d:d8:8d:cf:39:a1:d0:a5:21:fa:
db:16:e2:5c:94:d0:f6:87:5f:57:2a:86:bf:16:55:
89:de:04:8f:7c:f3:e1:53:ef:89:08:b7:78:c7:b3:
e6:ce:e2:06:75:cd:cd:3c:78:de:41:69:bf:e0:3c:
84:39:3f:c1:b8:2b:bc:82:0e:11:45:ee:c1:50:97:
9d:cd:b6:ab:c0:f1:04:e3:6f:93:97:a2:24:90:ba:
f8:09:20:74:5d:8b:7f:a3:3c:97:25:6e:46:46:f3:
49:c5:05:d2:9d:28:de:ca:16:75:ca:99:31:05:b9:
af:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:47:5E:DF:95:F9:86:2A:23:65:3A:DD:8B:DE:A4:5E:80:D5:59:0C
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/rUde35X5hiojZTrdi96kXoDVWQw.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
62:8e:a2:49:d9:1c:31:56:2c:51:f7:ad:e2:48:ef:e4:86:16:
bc:89:20:63:b3:07:22:d0:ef:30:46:7f:07:63:2b:c4:c0:00:
5a:d2:94:93:44:d8:5a:2a:f8:00:f7:7a:60:fe:24:e9:c6:d2:
8e:23:38:44:16:57:80:bd:df:7c:5c:42:94:90:68:0a:af:05:
1e:5a:75:d4:4f:1c:06:b0:d3:e5:ff:b2:65:7f:61:eb:9f:5e:
86:d0:7d:55:d6:10:26:16:de:63:38:ab:63:d2:53:c0:57:4b:
53:e6:f2:89:43:8c:05:20:99:48:f9:77:6d:48:54:f4:42:2d:
4c:28:12:19:bf:ad:e4:27:63:da:1a:5d:31:74:a0:18:13:97:
f4:65:89:df:63:db:1c:b5:ce:54:d4:df:79:e6:99:89:6f:51:
91:16:12:45:9b:16:83:6d:31:26:09:9f:8e:4a:0c:51:95:b6:
ec:a0:13:02:01:3b:9f:d9:13:73:11:0f:cb:84:af:e6:77:7e:
c0:28:02:83:b0:41:e7:28:0a:f8:3a:89:ff:e4:bd:70:f1:e3:
a4:63:2b:72:47:fd:32:1c:9c:79:3c:e8:52:14:46:fa:df:e9:
c7:8b:ce:35:a0:3b:c7:a4:86:a8:20:d3:72:ef:de:0a:e9:d0:
ef:6f:09:bc
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDAzMDQx
NTU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEFENDc1RURGOTVGOTg2
MkEyMzY1M0FERDhCREVBNDVFODBENTU5MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCgohyzJGsKLUhVkZX4HDLlv7rV6ptWyEWJvTj+x/bk6yg4ksGi
OEnrgPNjx2f2F8/FP7VXO3XHxlPbgJ/mA6fvYUUH6HeLo5rv1S+5eNCY2+Vvn0mu
5Xuju8SDl3TFbjBS2TGTzYB1EvyhGtgctiliC39cdTgNUil/tE3LK+TEckZQgGQf
6AfXHAT8fdiNzzmh0KUh+tsW4lyU0PaHX1cqhr8WVYneBI988+FT74kIt3jHs+bO
4gZ1zc08eN5Bab/gPIQ5P8G4K7yCDhFF7sFQl53NtqvA8QTjb5OXoiSQuvgJIHRd
i3+jPJclbkZG80nFBdKdKN7KFnXKmTEFua/5AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUrUde35X5hiojZTrdi96kXoDVWQwwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3JVZGUzNVg1aGlvalpU
cmRpOTZrWG9EVldRdy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAGKOoknZHDFWLFH3reJI7+SGFryJIGOzByLQ
7zBGfwdjK8TAAFrSlJNE2Foq+AD3emD+JOnG0o4jOEQWV4C933xcQpSQaAqvBR5a
ddRPHAaw0+X/smV/YeufXobQfVXWECYW3mM4q2PSU8BXS1Pm8olDjAUgmUj5d21I
VPRCLUwoEhm/reQnY9oaXTF0oBgTl/Rlid9j2xy1zlTU33nmmYlvUZEWEkWbFoNt
MSYJn45KDFGVtuygEwIBO5/ZE3MRD8uEr+Z3fsAoAoOwQecoCvg6if/kvXDx46Rj
K3JH/TIcnHk86FIURvrf6ceLzjWgO8ekhqgg03Lv3grp0O9vCbw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org