Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/27vzyu9L4cXKfVmBEuDHshdmzNI.roa
File: 27vzyu9L4cXKfVmBEuDHshdmzNI.roa (raw, json)
Hash identifier: PQeL+2yPvTtuPFj5uyWbnTKDaIK4Tsu/l1wknTcVLUY=
Subject key identifier: DB:BB:F3:CA:EF:4B:E1:C5:CA:7D:59:81:12:E0:C7:B2:17:66:CC:D2
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0C7B
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/27vzyu9L4cXKfVmBEuDHshdmzNI.roa
Signing time: Tue 28 Jan 2025 23:55:03 +0000
ROA not before: Tue 28 Jan 2025 23:55:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3195 (0xc7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jan 28 23:55:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=DBBBF3CAEF4BE1C5CA7D598112E0C7B21766CCD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e5:69:77:61:e0:2d:33:80:f3:c4:77:7b:80:
bb:44:d6:9f:df:eb:c8:59:d2:bf:55:4f:79:ce:78:
5a:74:f9:a4:ec:d1:64:4e:c0:27:d1:6d:35:9f:d4:
de:fe:ec:7a:15:e8:ab:87:95:2e:0b:71:ee:7a:04:
ac:1e:16:2f:21:98:32:ab:d7:b5:67:3a:55:8b:79:
af:4b:fe:41:a9:31:52:2e:28:9b:db:ea:19:f3:54:
a2:ff:c4:c7:4f:fe:9b:3e:ad:82:bc:28:3f:7a:05:
c9:b9:a9:47:f4:d3:48:75:c2:e5:12:1a:16:7b:40:
ce:0c:18:ee:e5:9f:c3:9e:a9:db:44:de:a5:f1:13:
c0:b5:84:04:ad:29:ff:26:17:7d:b4:0f:2e:f4:72:
03:2d:5d:f1:f7:dd:bd:b9:33:70:66:94:ab:36:33:
84:1a:2f:6d:45:05:0b:bf:e2:39:ba:b9:9a:1f:d1:
20:9c:e2:68:02:7a:7e:34:5f:a3:55:88:ae:2b:6c:
d8:1f:e5:04:5e:34:a6:99:57:ae:16:74:ad:73:1d:
f8:b4:b8:48:08:42:07:b1:fe:97:6d:2f:66:12:0e:
80:27:94:6b:2c:69:3c:2d:4f:b2:e9:31:44:49:71:
38:42:84:b2:13:18:57:8d:80:7e:39:cd:b7:4b:35:
01:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BB:F3:CA:EF:4B:E1:C5:CA:7D:59:81:12:E0:C7:B2:17:66:CC:D2
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/27vzyu9L4cXKfVmBEuDHshdmzNI.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:54:e6:0c:c6:32:dc:e1:b1:2f:db:22:b4:bb:90:43:05:4b:
11:41:cd:40:ed:7b:ba:b2:cc:bb:00:59:af:09:d5:b5:b6:0b:
03:28:26:f5:b8:c0:5b:2e:24:7a:f3:1b:18:4b:76:b7:c1:9d:
bd:f7:99:cf:25:44:e1:b6:c2:43:7b:cb:ce:c7:3d:7f:f0:5e:
33:54:cd:5e:70:7e:66:56:42:25:ec:bc:c3:17:a3:24:91:07:
90:dc:da:8f:88:cd:5b:45:2a:10:f1:bb:a2:6c:9d:6f:5b:0d:
5c:d5:ec:7e:6c:8c:82:a2:c4:5e:9b:63:ea:c4:83:33:ea:4d:
bf:4b:2b:59:04:e8:59:90:44:85:ad:e0:47:62:0e:f6:2e:fe:
fd:3c:e0:11:be:4d:23:7b:e7:63:5a:52:55:d0:ec:b1:23:91:
1a:7a:0c:b4:de:27:63:02:ef:10:15:72:a2:5c:87:3a:e3:9e:
52:cb:4b:93:87:3d:8c:86:2c:5f:7d:de:09:f8:5f:d3:17:a5:
fd:3b:68:92:9e:b5:30:9f:86:ee:ff:d9:a1:7d:02:eb:5f:d2:
99:cc:aa:4b:7b:cd:b0:b7:b9:ee:3f:8f:0f:a1:1e:a2:94:0d:
c1:3b:e6:58:47:ed:09:c3:ed:9e:e4:cf:03:ae:f4:71:14:8a:
1e:a0:1d:64
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICDHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNTAxMjgy
MzU1MDNaFw0yNjA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKERCQkJGM0NBRUY0QkUx
QzVDQTdENTk4MTEyRTBDN0IyMTc2NkNDRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDa5Wl3YeAtM4DzxHd7gLtE1p/f68hZ0r9VT3nOeFp0+aTs0WRO
wCfRbTWf1N7+7HoV6KuHlS4Lce56BKweFi8hmDKr17VnOlWLea9L/kGpMVIuKJvb
6hnzVKL/xMdP/ps+rYK8KD96Bcm5qUf000h1wuUSGhZ7QM4MGO7ln8OeqdtE3qXx
E8C1hAStKf8mF320Dy70cgMtXfH33b25M3BmlKs2M4QaL21FBQu/4jm6uZof0SCc
4mgCen40X6NViK4rbNgf5QReNKaZV64WdK1zHfi0uEgIQgex/pdtL2YSDoAnlGss
aTwtT7LpMURJcThChLITGFeNgH45zbdLNQGTAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU27vzyu9L4cXKfVmBEuDHshdmzNIwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzI3dnp5dTlMNGNYS2ZW
bUJFdURIc2hkbXpOSS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAOFU5gzGMtzhsS/bIrS7kEMFSxFBzUDte7qy
zLsAWa8J1bW2CwMoJvW4wFsuJHrzGxhLdrfBnb33mc8lROG2wkN7y87HPX/wXjNU
zV5wfmZWQiXsvMMXoySRB5Dc2o+IzVtFKhDxu6JsnW9bDVzV7H5sjIKixF6bY+rE
gzPqTb9LK1kE6FmQRIWt4EdiDvYu/v084BG+TSN752NaUlXQ7LEjkRp6DLTeJ2MC
7xAVcqJchzrjnlLLS5OHPYyGLF993gn4X9MXpf07aJKetTCfhu7/2aF9Autf0pnM
qkt7zbC3ue4/jw+hHqKUDcE75lhH7QnD7Z7kzwOu9HEUih6gHWQ=
-----END CERTIFICATE-----
Generated at Sat Jun 7 10:11:11 2025 by rpki-client