Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/z4hN7CFWKmyD9KZlobnSrVMg2S0.roa
File: z4hN7CFWKmyD9KZlobnSrVMg2S0.roa (raw, json)
Hash identifier: /ONC2IiywR50D6D7Mm9XYrx/SFRaLLz+LLwND1w3Oi8=
Subject key identifier: CF:88:4D:EC:21:56:2A:6C:83:F4:A6:65:A1:B9:D2:AD:53:20:D9:2D
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 047E
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/z4hN7CFWKmyD9KZlobnSrVMg2S0.roa
Signing time: Sat 15 Jun 2024 23:55:02 +0000
ROA not before: Sat 15 Jun 2024 23:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jun 2024 03:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150 (0x47e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jun 15 23:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=CF884DEC21562A6C83F4A665A1B9D2AD5320D92D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:33:fd:61:6f:76:77:db:a0:eb:8c:25:37:94:
0f:54:d0:5c:7b:18:86:9e:8c:e7:08:30:9b:41:c3:
24:e4:b4:88:f5:ea:6e:b5:a4:69:4a:b6:e3:0e:3b:
34:5a:20:35:a4:1e:5a:f8:7d:9b:88:4a:51:ee:01:
92:85:2a:0d:04:5c:e7:63:12:7a:b4:71:a1:7d:c6:
bc:70:21:89:8c:fe:c0:93:da:f8:8f:14:47:ab:64:
11:ef:ab:07:11:c2:0c:15:a7:5e:50:4a:98:11:cd:
f2:ff:b5:d3:a9:ab:c9:d8:82:98:3e:9e:69:62:e1:
a2:35:f7:ef:fa:d8:75:f5:e6:d6:30:53:83:5b:e3:
47:b8:a3:ed:2a:9b:b3:7b:1c:b9:47:34:0d:c8:10:
aa:ae:a3:78:69:a9:e9:39:d5:ad:01:e7:4f:0f:9e:
64:e7:b0:ec:09:17:b2:f4:61:eb:c4:90:a7:d1:19:
c1:b1:3c:ae:b1:a8:a7:a3:b9:9a:7d:fa:e4:1b:ee:
55:bb:97:fc:7a:82:42:f6:e2:32:41:0b:59:44:18:
84:64:f9:0e:fd:44:ed:a0:bf:1c:38:0c:92:6b:22:
33:7d:bb:83:39:8a:a4:08:24:82:57:2d:1a:e6:7c:
62:82:e1:d8:62:2b:45:c1:15:26:8e:56:40:61:fd:
c9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:88:4D:EC:21:56:2A:6C:83:F4:A6:65:A1:B9:D2:AD:53:20:D9:2D
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/z4hN7CFWKmyD9KZlobnSrVMg2S0.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:b1:74:a0:e0:29:31:53:70:a5:14:26:d2:20:d1:32:14:c8:
57:24:8f:6e:ba:81:ad:46:4d:35:c7:a4:c1:31:46:75:e4:93:
e8:c8:65:46:4c:d9:8b:be:67:8c:1e:20:6e:48:18:c1:5e:b6:
a4:40:91:a1:64:10:3b:b2:85:35:6b:2a:f5:e6:6d:0e:aa:35:
f7:96:b9:3d:dc:3b:0e:72:88:67:13:43:66:04:35:56:bf:b7:
4f:9f:b8:a1:49:a2:07:f4:a1:f8:37:3f:fd:ed:f1:ce:3d:52:
ea:2e:d9:6f:e9:38:da:e8:bf:fd:59:5d:98:03:59:93:56:87:
28:f0:c0:b8:28:35:c5:a7:6e:b1:16:65:96:1a:19:6b:91:14:
a0:8e:0d:02:8e:2c:70:f2:1d:88:16:0a:b7:e8:19:6c:59:2f:
3b:e8:1b:64:30:e5:af:7f:20:45:45:4f:9c:d6:87:93:45:7e:
1a:a9:71:51:3e:e0:4e:2b:b5:c0:b5:41:6e:43:dd:63:54:80:
6b:70:1a:4f:69:a3:1c:b7:af:d6:9f:0e:b6:ce:d8:04:20:e2:
26:97:b0:a8:79:87:2f:b1:8e:50:bc:f7:a9:16:1b:09:b6:ce:
4f:44:cf:e0:31:dc:42:40:83:11:bc:bc:1e:9d:ad:9d:98:89:
dd:87:85:67
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICBH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA2MTUy
MzU1MDJaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKENGODg0REVDMjE1NjJB
NkM4M0Y0QTY2NUExQjlEMkFENTMyMEQ5MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNM/1hb3Z326DrjCU3lA9U0Fx7GIaejOcIMJtBwyTktIj16m61
pGlKtuMOOzRaIDWkHlr4fZuISlHuAZKFKg0EXOdjEnq0caF9xrxwIYmM/sCT2viP
FEerZBHvqwcRwgwVp15QSpgRzfL/tdOpq8nYgpg+nmli4aI19+/62HX15tYwU4Nb
40e4o+0qm7N7HLlHNA3IEKquo3hpqek51a0B508PnmTnsOwJF7L0YevEkKfRGcGx
PK6xqKejuZp9+uQb7lW7l/x6gkL24jJBC1lEGIRk+Q79RO2gvxw4DJJrIjN9u4M5
iqQIJIJXLRrmfGKC4dhiK0XBFSaOVkBh/cmfAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUz4hN7CFWKmyD9KZlobnSrVMg2S0wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3o0aE43Q0ZXS215RDlL
WmxvYm5TclZNZzJTMC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBALmxdKDgKTFTcKUUJtIg0TIUyFckj266ga1G
TTXHpMExRnXkk+jIZUZM2Yu+Z4weIG5IGMFetqRAkaFkEDuyhTVrKvXmbQ6qNfeW
uT3cOw5yiGcTQ2YENVa/t0+fuKFJogf0ofg3P/3t8c49Uuou2W/pONrov/1ZXZgD
WZNWhyjwwLgoNcWnbrEWZZYaGWuRFKCODQKOLHDyHYgWCrfoGWxZLzvoG2Qw5a9/
IEVFT5zWh5NFfhqpcVE+4E4rtcC1QW5D3WNUgGtwGk9poxy3r9afDrbO2AQg4iaX
sKh5hy+xjlC896kWGwm2zk9Ez+Ax3EJAgxG8vB6drZ2Yid2HhWc=
-----END CERTIFICATE-----
Generated at Sun Jun 16 04:53:06 2024 by rpki-client on console-fra.rpki-client.org