Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/60rqJLpxFdD7SQdB9vDFBp-venM.roa
File: 60rqJLpxFdD7SQdB9vDFBp-venM.roa (raw, json)
Hash identifier: wapZE+MVOmRkU/7JcDbv0YQHRxTEBzXvM+YdPfPnUoc=
Subject key identifier: EB:4A:EA:24:BA:71:15:D0:FB:49:07:41:F6:F0:C5:06:9F:AF:7A:73
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0C27
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/60rqJLpxFdD7SQdB9vDFBp-venM.roa
Signing time: Sun 19 Jan 2025 15:55:02 +0000
ROA not before: Sun 19 Jan 2025 15:55:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3111 (0xc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jan 19 15:55:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=EB4AEA24BA7115D0FB490741F6F0C5069FAF7A73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d1:9b:a8:76:c8:35:af:de:5c:ef:a8:67:89:
50:2c:99:18:f0:09:af:dd:8d:ce:d2:1b:b2:03:78:
98:be:35:d2:58:80:6a:62:af:e3:7f:96:4d:84:cb:
53:6e:d4:8d:0c:74:b9:9c:80:50:6f:20:72:32:a6:
1c:e4:14:80:87:26:0b:18:55:4a:2a:ff:3c:16:23:
9d:75:47:70:3b:aa:08:18:07:78:b7:53:9d:ed:44:
37:80:03:92:29:6c:f9:5e:ea:80:5e:df:cb:c0:38:
92:7d:6d:b1:e6:04:0f:be:cb:5b:23:bc:a4:e2:ac:
0c:63:d3:21:d9:24:e0:a3:79:13:48:62:a8:a3:c5:
07:cc:63:05:86:3a:f2:50:17:11:97:85:f0:0e:9d:
35:bf:b0:68:64:66:25:87:5c:ae:7a:ac:7e:05:55:
10:03:e8:f1:38:65:e1:9f:3d:01:3b:e4:c0:e4:04:
17:0a:39:ad:e2:bd:d5:61:6e:6f:4b:a9:5e:3d:af:
57:fa:b0:f6:b3:cc:05:d0:35:65:9e:62:3a:d7:c3:
4c:73:ad:3d:70:c8:89:c8:62:15:cd:b6:b3:72:d9:
e1:49:25:9a:aa:08:1d:2a:d4:00:d1:c4:4c:7d:05:
cb:1c:1a:15:a1:94:34:95:54:59:44:d6:11:e5:12:
48:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4A:EA:24:BA:71:15:D0:FB:49:07:41:F6:F0:C5:06:9F:AF:7A:73
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/60rqJLpxFdD7SQdB9vDFBp-venM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:4b:52:db:04:26:25:da:0a:35:56:82:7b:dc:74:46:78:84:
43:9d:25:1e:1f:48:0f:f2:b9:c4:35:3d:ed:3a:72:71:b0:9d:
e2:20:ce:fc:21:23:68:92:c4:cd:bc:7b:72:3a:ab:47:5d:d8:
14:36:35:51:c8:31:e7:1e:c5:12:fe:10:76:62:61:4d:d1:e1:
ef:21:a7:66:47:85:4a:2a:44:d0:7a:d8:73:3d:be:bd:34:d1:
a6:14:64:6a:6c:eb:2a:0d:19:68:1c:39:fe:b9:d0:4a:2e:6a:
fe:c0:e1:88:d3:d4:3d:b0:f2:f7:c2:f0:b7:2d:55:0d:4d:5f:
05:4b:69:90:92:30:12:1c:ab:a8:dd:75:3f:5f:9c:8b:ff:df:
81:43:6b:db:2d:7f:51:45:dd:fa:20:7d:37:4e:c2:99:dd:2c:
9f:6b:d0:b5:82:1b:c6:d5:ab:47:fe:50:0a:67:3e:d6:79:32:
70:b5:48:c2:09:30:f4:57:06:02:83:c8:52:10:66:1d:e2:a5:
a4:7a:dd:f6:bd:d6:8e:13:24:40:f0:c2:5a:cf:03:a4:8e:ea:
eb:3f:48:0d:c3:47:b5:79:85:96:2e:84:81:4e:13:c2:83:40:
f9:8e:fc:43:99:3d:c1:db:87:ab:c6:56:93:a9:9e:3d:5d:d7:
3c:84:b3:ca
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNTAxMTkx
NTU1MDJaFw0yNjA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEVCNEFFQTI0QkE3MTE1
RDBGQjQ5MDc0MUY2RjBDNTA2OUZBRjdBNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDl0Zuodsg1r95c76hniVAsmRjwCa/djc7SG7IDeJi+NdJYgGpi
r+N/lk2Ey1Nu1I0MdLmcgFBvIHIyphzkFICHJgsYVUoq/zwWI511R3A7qggYB3i3
U53tRDeAA5IpbPle6oBe38vAOJJ9bbHmBA++y1sjvKTirAxj0yHZJOCjeRNIYqij
xQfMYwWGOvJQFxGXhfAOnTW/sGhkZiWHXK56rH4FVRAD6PE4ZeGfPQE75MDkBBcK
Oa3ivdVhbm9LqV49r1f6sPazzAXQNWWeYjrXw0xzrT1wyInIYhXNtrNy2eFJJZqq
CB0q1ADRxEx9BcscGhWhlDSVVFlE1hHlEki5AgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQU60rqJLpxFdD7SQdB9vDFBp+venMwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmLzYwcnFKTHB4RmREN1NR
ZEI5dkRGQnAtdmVuTS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBAH9LUtsEJiXaCjVWgnvcdEZ4hEOdJR4fSA/y
ucQ1Pe06cnGwneIgzvwhI2iSxM28e3I6q0dd2BQ2NVHIMecexRL+EHZiYU3R4e8h
p2ZHhUoqRNB62HM9vr000aYUZGps6yoNGWgcOf650Eouav7A4YjT1D2w8vfC8Lct
VQ1NXwVLaZCSMBIcq6jddT9fnIv/34FDa9stf1FF3fogfTdOwpndLJ9r0LWCG8bV
q0f+UApnPtZ5MnC1SMIJMPRXBgKDyFIQZh3ipaR63fa91o4TJEDwwlrPA6SO6us/
SA3DR7V5hZYuhIFOE8KDQPmO/EOZPcHbh6vGVpOpnj1d1zyEs8o=
-----END CERTIFICATE-----
Generated at Sat Jun 7 10:08:24 2025 by rpki-client