Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/v7DC13hOFCCKju9uQDk3v16oC7Y.roa
File: v7DC13hOFCCKju9uQDk3v16oC7Y.roa (raw, json)
Hash identifier: uX0V8VOv6utNttDsrHXiwFB/X0965qu1oIwXfXYO9t0=
Subject key identifier: BF:B0:C2:D7:78:4E:14:20:8A:8E:EF:6E:40:39:37:BF:5E:A8:0B:B6
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0BC1
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/v7DC13hOFCCKju9uQDk3v16oC7Y.roa
Signing time: Wed 08 Jan 2025 07:55:03 +0000
ROA not before: Wed 08 Jan 2025 07:55:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3009 (0xbc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Jan 8 07:55:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=BFB0C2D7784E14208A8EEF6E403937BF5EA80BB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3d:46:d0:0f:db:f5:87:32:b8:cc:31:f4:73:
24:b2:e9:69:a8:31:84:76:08:4b:09:e5:0c:0e:ea:
74:de:ba:df:5a:2d:e4:48:83:8f:9f:66:bf:66:4d:
32:7f:af:8d:09:57:f2:77:52:13:f7:07:23:b4:45:
02:b1:20:33:b1:f4:94:fc:17:66:f4:4f:23:0f:0e:
51:79:d7:6e:a5:ec:5f:e4:a2:f2:1b:dc:4c:c0:3a:
cf:20:52:92:71:bf:05:d8:99:6f:45:53:fd:d1:8d:
92:a6:f2:f3:1f:6a:c9:eb:05:65:64:e2:1b:40:d5:
5b:23:72:59:7d:e0:fe:c6:38:93:a5:74:22:b4:bf:
43:26:31:d8:24:c1:43:da:36:45:77:ee:be:73:b1:
d5:11:cc:13:7a:3f:ec:34:93:e8:30:6f:1d:a1:ee:
56:e4:18:55:04:fb:19:ae:af:d3:ca:76:f9:15:8a:
33:aa:08:bd:4a:b4:39:1f:7c:51:f7:89:3b:c4:04:
d2:23:82:5f:92:b2:7e:4d:b7:51:8d:0a:fe:ca:d3:
98:74:17:83:1c:7b:73:f4:8f:b3:50:1f:ba:31:4e:
5e:2a:74:e5:ec:25:eb:38:7d:df:3a:a0:8c:02:5a:
9c:a3:f0:87:73:57:ec:4f:e6:fa:ce:bd:34:71:d4:
c8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B0:C2:D7:78:4E:14:20:8A:8E:EF:6E:40:39:37:BF:5E:A8:0B:B6
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/v7DC13hOFCCKju9uQDk3v16oC7Y.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
26:57:7c:2b:d6:2b:0d:13:85:9f:fb:db:fb:26:73:95:9a:8d:
b4:2e:19:b8:bf:43:24:42:bf:c3:df:03:d0:ff:9d:81:b5:fb:
17:b3:7f:e2:f8:03:30:42:9a:49:a0:2a:b1:18:fa:86:fd:a0:
c1:ee:7f:6b:33:d6:04:09:d6:ae:92:8a:f6:c6:31:f8:8f:e5:
23:eb:37:24:27:12:d7:ce:4a:65:55:c3:1e:a1:05:84:d9:40:
24:e8:5f:46:4b:d3:df:5a:76:9d:8e:16:8e:76:e2:79:ab:e6:
50:bc:3c:ca:22:5e:ab:23:84:0d:2b:7c:5a:f6:ed:3e:3f:8f:
8d:00:10:16:48:15:77:ff:cf:ee:8f:a0:ac:31:9d:f1:4e:c4:
bf:07:94:83:94:c5:4c:a2:a9:ea:f8:ab:d1:f0:2d:d8:9f:a7:
70:97:28:80:77:52:63:21:4a:0e:22:13:6e:e6:23:b7:95:02:
01:94:70:03:f1:7e:97:7e:b0:2b:b4:9b:42:ee:55:22:02:64:
6b:80:08:d9:d8:9d:ce:94:ef:da:3f:c3:66:9a:bc:2f:74:e4:
7d:a5:c7:fe:81:97:3b:77:04:b3:3c:69:b2:6f:71:ea:29:7a:
4f:8c:80:90:42:8c:c3:f4:ef:57:32:61:79:d1:d3:07:e1:dd:
ef:72:29:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:35:42 2025 by rpki-client