Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/uplift/XmTKF1q5NjmjkHUBdR_CGpVH7Ms.roa
File: XmTKF1q5NjmjkHUBdR_CGpVH7Ms.roa (raw, json)
Hash identifier: VDepa/ICkvBnzkEhA6BnKWcan55r+JyhQyChqnWnrFk=
Subject key identifier: 5E:64:CA:17:5A:B9:36:39:A3:90:75:01:75:1F:C2:1A:95:47:EC:CB
Certificate issuer: /CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Certificate serial: 09C8
Authority key identifier: 20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
Subject info access: rsync://chloe.sobornost.net/rpki/uplift/XmTKF1q5NjmjkHUBdR_CGpVH7Ms.roa
Signing time: Fri 17 Jun 2022 00:24:26 +0000
ROA not before: Fri 17 Jun 2022 00:24:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1883
IP address blocks: 2001:67c:2938::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2504 (0x9c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Validity
Not Before: Jun 17 00:24:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5E64CA175AB93639A3907501751FC21A9547ECCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:da:3b:7e:26:71:4d:42:e7:4b:55:7f:ae:ec:
94:21:9c:dc:6e:06:5c:15:46:47:51:b8:63:9c:f5:
2c:71:a8:3c:85:dc:fc:07:c7:60:d0:00:55:d0:ce:
88:16:e7:f4:a8:c7:07:ef:14:b1:81:35:3c:30:3c:
3f:64:bd:9a:20:53:ca:db:8c:79:6f:e0:bd:bf:34:
18:55:b1:67:d9:ae:7c:b7:e8:a2:0f:df:63:a6:3e:
31:39:61:ea:2b:fd:12:cf:18:e4:51:42:68:1b:ec:
40:a6:bf:86:28:1c:b5:c9:ae:8c:87:0c:6c:7a:d9:
ec:43:c1:90:f8:c1:d9:07:a8:a3:e0:e8:0c:08:58:
18:29:44:79:f9:da:d5:f9:ef:73:16:e0:f0:9f:31:
37:1b:71:24:2b:47:a3:b4:96:59:5c:08:14:82:9b:
f6:c8:1d:b1:ab:86:6e:68:bb:4f:de:6f:df:6f:02:
2f:6b:c4:52:c3:03:27:e3:15:3b:d2:8b:a1:b0:92:
9c:3d:f9:27:84:58:1e:df:09:fd:f6:62:e5:59:ec:
4f:db:86:43:26:94:c0:b0:aa:9b:9b:71:ca:ef:4c:
51:76:cb:04:73:b3:19:12:e1:6c:1a:05:76:5e:3d:
ed:e0:54:bd:9c:65:dc:ef:5f:87:d7:ce:26:7f:ef:
d2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:64:CA:17:5A:B9:36:39:A3:90:75:01:75:1F:C2:1A:95:47:EC:CB
X509v3 Authority Key Identifier:
keyid:20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/uplift/IBfMWA0nPFS6MGTNLNavObgEuIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/uplift/XmTKF1q5NjmjkHUBdR_CGpVH7Ms.roa
RPKI Notify - URI:https://chloe.sobornost.net/rpki/news-public.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2938::/48
Signature Algorithm: sha256WithRSAEncryption
33:46:1b:e3:2d:8a:d9:50:ab:dc:68:5c:62:4a:d4:17:90:75:
0b:88:26:bc:5d:57:9a:7d:0d:fb:ef:6c:84:1d:8a:9b:88:0e:
bf:aa:88:fb:c4:0f:62:77:b6:3b:3c:99:6e:6e:9e:5d:21:d9:
2d:02:a7:7c:81:f4:2a:d1:68:32:f0:ec:69:94:f0:f4:3b:d2:
86:25:85:c3:90:f2:63:fa:ec:b8:3f:1c:e1:b6:48:b9:96:48:
1c:a0:7a:02:3c:84:f9:0c:95:31:bb:02:91:64:71:93:bc:de:
68:2a:ae:10:58:44:e0:db:ab:2f:f9:22:a0:17:64:a6:8d:05:
38:2f:ae:4c:ae:28:ab:0b:07:dd:4e:67:73:f9:e5:eb:c8:d1:
60:ab:fd:9a:05:27:ab:53:8a:e6:20:79:63:93:9e:2b:77:37:
a0:0e:96:98:7f:84:34:15:77:22:09:04:08:3b:4f:5e:d4:45:
c9:0a:59:a5:80:21:22:dd:1c:cd:72:2f:12:f5:b9:57:aa:f7:
0a:27:be:62:65:4f:3e:5d:3c:e8:56:27:81:df:33:b7:ee:71:
e4:43:f4:7c:c8:7e:ae:05:8e:f5:e1:09:3b:ee:f4:4a:a0:1f:
7d:4c:92:57:2a:56:52:78:d1:97:c3:b7:62:5b:ef:aa:e3:7a:
c5:07:66:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org