Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/tOfkWzSCFLgXDoSH3GdxRbDFU8w.roa
File: tOfkWzSCFLgXDoSH3GdxRbDFU8w.roa (raw, json)
Hash identifier: CnElr8SMaiCTd9Vr13omZduymbSrE554ByMoH/FL/is=
Subject key identifier: B4:E7:E4:5B:34:82:14:B8:17:0E:84:87:DC:67:71:45:B0:C5:53:CC
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0953
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tOfkWzSCFLgXDoSH3GdxRbDFU8w.roa
Signing time: Thu 31 Oct 2024 07:55:03 +0000
ROA not before: Thu 31 Oct 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 11:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Oct 31 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=B4E7E45B348214B8170E8487DC677145B0C553CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:35:94:cc:15:7f:8b:1e:cc:6f:2c:b7:25:dd:
5c:de:cf:8b:07:f4:e8:30:59:4a:5d:1e:5e:cc:68:
f3:d5:5d:0b:5a:08:92:6b:0e:a4:e4:07:2e:d3:5c:
36:69:59:fb:62:8d:cd:04:31:4b:8d:55:b3:38:3d:
9e:da:8d:0a:34:09:39:02:cb:40:3e:41:d6:eb:ba:
d6:16:1d:8b:ac:af:f9:70:18:3e:71:bb:8d:c1:fa:
61:f1:3d:1a:9a:13:cd:52:98:e1:07:82:64:c3:f8:
14:b0:4c:24:46:1b:91:7a:23:03:4d:f2:30:fd:20:
5a:8c:e1:56:63:00:3d:04:42:0b:a1:ef:1a:2e:fa:
b2:c4:ba:a8:35:34:a2:a4:63:43:66:3b:dd:8e:39:
b1:84:65:03:92:b1:55:c7:1b:71:fe:d5:33:f6:bc:
0b:e0:0b:5c:23:db:cc:1e:40:b7:c6:7f:b3:a1:bd:
b3:5a:0c:67:4b:b8:e3:b9:7b:13:55:50:6a:d3:30:
d1:43:a6:3e:de:35:fe:57:98:53:ff:a0:34:62:f7:
c1:7e:57:fe:cc:3d:d3:10:77:71:b7:c6:95:e0:d6:
bc:44:d3:c6:f2:a6:c3:4b:cc:85:a9:d6:7e:7d:a4:
75:46:fb:57:ac:4c:aa:b6:a6:ee:8b:7e:5f:9b:de:
3d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E7:E4:5B:34:82:14:B8:17:0E:84:87:DC:67:71:45:B0:C5:53:CC
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/tOfkWzSCFLgXDoSH3GdxRbDFU8w.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:ab:26:a4:f8:11:59:bd:ed:32:00:ec:d1:0a:1a:32:01:7e:
51:cf:9e:44:68:bb:af:e2:ce:52:ab:49:96:60:78:70:0d:b8:
e4:a2:ec:43:23:44:ba:8e:a9:b2:5f:74:60:d4:28:a3:67:c2:
f4:67:9a:d2:2e:33:5d:a4:2a:a9:f0:cc:20:5f:63:6f:2c:dc:
67:a1:3c:58:7b:5e:54:79:91:13:dc:56:53:18:cd:e6:44:36:
09:53:83:20:82:6a:4a:8a:f7:1a:bd:d3:a3:30:87:ca:f2:6e:
c0:f5:c8:ae:14:d0:3f:51:b5:ab:84:b0:c7:47:c3:8d:06:21:
80:8e:7d:94:1c:40:b5:7b:27:06:32:23:35:07:3b:9f:cb:b2:
1b:a1:fe:bd:3b:22:30:ae:e0:ac:25:07:de:47:93:f7:10:c1:
9d:f0:66:23:26:ac:38:be:25:25:d4:4d:25:fc:5c:4d:2d:4e:
8d:07:2b:7d:26:58:86:16:53:c4:71:51:c2:52:3e:90:f9:e1:
77:98:4a:5f:f7:d1:43:eb:4f:46:0d:7f:30:9e:1a:86:0e:9c:
6e:5b:bc:55:70:29:84:a7:67:a3:d0:7d:4e:13:12:08:be:55:
59:2f:b7:64:04:91:3d:41:17:50:1b:3d:eb:b7:94:89:b2:33:
52:e1:18:71
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICCVMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDEwMzEw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEI0RTdFNDVCMzQ4MjE0
QjgxNzBFODQ4N0RDNjc3MTQ1QjBDNTUzQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCgNZTMFX+LHsxvLLcl3Vzez4sH9OgwWUpdHl7MaPPVXQtaCJJr
DqTkBy7TXDZpWftijc0EMUuNVbM4PZ7ajQo0CTkCy0A+QdbrutYWHYusr/lwGD5x
u43B+mHxPRqaE81SmOEHgmTD+BSwTCRGG5F6IwNN8jD9IFqM4VZjAD0EQguh7xou
+rLEuqg1NKKkY0NmO92OObGEZQOSsVXHG3H+1TP2vAvgC1wj28weQLfGf7OhvbNa
DGdLuOO5exNVUGrTMNFDpj7eNf5XmFP/oDRi98F+V/7MPdMQd3G3xpXg1rxE08by
psNLzIWp1n59pHVG+1esTKq2pu6Lfl+b3j29AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUtOfkWzSCFLgXDoSH3GdxRbDFU8wwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3RPZmtXelNDRkxnWERv
U0gzR2R4UmJERlU4dy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAMyrJqT4EVm97TIA7NEKGjIBflHPnkRou6/i
zlKrSZZgeHANuOSi7EMjRLqOqbJfdGDUKKNnwvRnmtIuM12kKqnwzCBfY28s3Geh
PFh7XlR5kRPcVlMYzeZENglTgyCCakqK9xq906Mwh8rybsD1yK4U0D9RtauEsMdH
w40GIYCOfZQcQLV7JwYyIzUHO5/Lshuh/r07IjCu4KwlB95Hk/cQwZ3wZiMmrDi+
JSXUTSX8XE0tTo0HK30mWIYWU8RxUcJSPpD54XeYSl/30UPrT0YNfzCeGoYOnG5b
vFVwKYSnZ6PQfU4TEgi+VVkvt2QEkT1BF1AbPeu3lImyM1LhGHE=
-----END CERTIFICATE-----
Generated at Thu Oct 31 13:18:29 2024 by rpki-client on console-fra.rpki-client.org