Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/zsUVPlU7tF4mJd2A_If4P5qUZ60.roa
File: zsUVPlU7tF4mJd2A_If4P5qUZ60.roa (raw, json)
Hash identifier: LYUnpIxRX1dSM0n2sg12aP3IUFJ7ncPJ1dQaTe/7lu0=
Subject key identifier: CE:C5:15:3E:55:3B:B4:5E:26:25:DD:80:FC:87:F8:3F:9A:94:67:AD
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 02FE
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/zsUVPlU7tF4mJd2A_If4P5qUZ60.roa
Signing time: Sat 04 May 2024 07:55:03 +0000
ROA not before: Sat 04 May 2024 07:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 May 2024 11:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 766 (0x2fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 4 07:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=CEC5153E553BB45E2625DD80FC87F83F9A9467AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:df:c8:d3:9c:e5:92:1a:89:cb:63:60:c8:ea:
bc:0d:a0:ed:35:d6:f6:f7:d0:6c:2e:dc:4a:8e:9e:
e7:b4:d7:b7:fe:d1:4e:7f:8a:88:8a:6a:27:43:70:
c2:01:7b:9f:66:46:c8:e8:e2:46:18:2d:ae:c9:36:
00:0f:d0:39:2c:9b:ab:33:a8:17:c8:45:9e:eb:1f:
f9:ca:bf:3e:57:97:ac:27:b8:80:07:92:84:04:c1:
9a:f5:53:ee:97:9d:7a:75:74:da:83:10:76:ef:83:
0b:0b:db:8a:76:de:42:58:bc:6d:3f:d1:3c:b0:0d:
f7:8b:31:35:45:02:96:70:a4:6c:bf:90:6a:4a:57:
34:94:66:f8:e6:d3:5c:b0:9c:ce:b0:7b:d0:e1:b1:
54:85:8d:ed:e2:7d:06:54:bb:16:a9:c8:2b:38:6f:
08:e1:d5:f9:85:25:a5:44:1d:2f:22:1c:8f:54:5b:
12:d3:39:e0:48:c2:ee:09:dc:a9:4b:c0:63:bf:a1:
fe:75:3a:07:f0:2e:b0:63:a5:cd:87:9e:33:c6:8d:
e4:af:94:db:42:06:8d:fc:80:be:39:71:1d:73:c3:
2b:2c:38:99:3a:1f:15:45:36:32:cd:e4:f9:94:24:
18:11:1a:14:3d:ad:b0:7c:30:01:59:83:da:4f:c8:
c6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C5:15:3E:55:3B:B4:5E:26:25:DD:80:FC:87:F8:3F:9A:94:67:AD
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/zsUVPlU7tF4mJd2A_If4P5qUZ60.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
50:09:ca:c5:68:ab:55:16:24:1f:1f:0a:e3:72:66:b2:e2:95:
91:9f:f0:cd:36:47:e9:34:46:d9:4a:be:e7:7c:33:b7:6d:6b:
da:c8:30:f8:f3:45:d7:1b:6e:cd:a4:ad:48:18:f2:0d:aa:cb:
3e:ae:fe:2c:0d:33:d5:d0:4f:89:f4:b5:37:5d:cd:ce:51:6f:
46:23:9e:31:07:43:86:c7:98:3c:7b:8c:af:22:3d:a1:4b:1e:
6e:41:1e:38:f3:36:ed:0b:66:ef:03:7d:60:4e:2e:c7:c9:2c:
c1:7f:91:db:06:fe:25:79:12:c6:45:1f:c1:0a:b3:33:09:d7:
f3:8a:03:1e:48:0e:ae:c8:81:18:9c:be:00:7e:89:14:db:6e:
98:55:86:23:a8:ae:eb:f8:69:9c:bd:7c:a1:4d:2d:e4:31:90:
8e:16:2a:a1:ed:4a:1a:4b:9d:38:db:bc:73:4b:80:ee:83:a8:
45:41:81:ec:c0:66:36:f2:45:35:80:cb:17:b3:69:d8:0a:39:
6b:99:3f:38:64:6e:77:27:9c:b4:83:9d:0f:bd:d5:18:42:92:
78:11:3c:72:f8:f3:a0:14:63:db:45:f0:28:9f:04:8f:e0:0e:
3b:47:30:78:76:4a:bd:cf:6f:a6:c1:6f:d4:b2:b1:09:9f:6c:
2e:62:24:b5
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA1MDQw
NzU1MDNaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKENFQzUxNTNFNTUzQkI0
NUUyNjI1REQ4MEZDODdGODNGOUE5NDY3QUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDg38jTnOWSGonLY2DI6rwNoO011vb30Gwu3EqOnue017f+0U5/
ioiKaidDcMIBe59mRsjo4kYYLa7JNgAP0Dksm6szqBfIRZ7rH/nKvz5Xl6wnuIAH
koQEwZr1U+6XnXp1dNqDEHbvgwsL24p23kJYvG0/0TywDfeLMTVFApZwpGy/kGpK
VzSUZvjm01ywnM6we9DhsVSFje3ifQZUuxapyCs4bwjh1fmFJaVEHS8iHI9UWxLT
OeBIwu4J3KlLwGO/of51OgfwLrBjpc2HnjPGjeSvlNtCBo38gL45cR1zwyssOJk6
HxVFNjLN5PmUJBgRGhQ9rbB8MAFZg9pPyMZJAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUzsUVPlU7tF4mJd2A/If4P5qUZ60wHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL3pzVVZQbFU3dEY0bUpk
MkFfSWY0UDVxVVo2MC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAFAJysVoq1UWJB8fCuNyZrLilZGf8M02R+k0
RtlKvud8M7dta9rIMPjzRdcbbs2krUgY8g2qyz6u/iwNM9XQT4n0tTddzc5Rb0Yj
njEHQ4bHmDx7jK8iPaFLHm5BHjjzNu0LZu8DfWBOLsfJLMF/kdsG/iV5EsZFH8EK
szMJ1/OKAx5IDq7IgRicvgB+iRTbbphVhiOoruv4aZy9fKFNLeQxkI4WKqHtShpL
nTjbvHNLgO6DqEVBgezAZjbyRTWAyxezadgKOWuZPzhkbncnnLSDnQ+91RhCkngR
PHL486AUY9tF8CifBI/gDjtHMHh2Sr3Pb6bBb9SysQmfbC5iJLU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org