Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/Sobornost-RIPE/kyoEW0BPqnsbcrUFTT0_s3k6hxg.roa
File: kyoEW0BPqnsbcrUFTT0_s3k6hxg.roa (raw, json)
Hash identifier: cA0AexnjNJ74fJG83PuIoYEVvitYcuWlJP1IZuyjF3s=
Subject key identifier: 93:2A:04:5B:40:4F:AA:7B:1B:72:B5:05:4D:3D:3F:B3:79:3A:87:18
Certificate issuer: /CN=82a1b27c74e7f5dc030e401c534a61b1bc3ca512
Certificate serial: 0256
Authority key identifier: 82:A1:B2:7C:74:E7:F5:DC:03:0E:40:1C:53:4A:61:B1:BC:3C:A5:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gqGyfHTn9dwDDkAcU0phsbw8pRI.cer
Subject info access: rsync://chloe.sobornost.net/rpki/Sobornost-RIPE/kyoEW0BPqnsbcrUFTT0_s3k6hxg.roa
Signing time: Mon 01 Feb 2021 13:40:42 +0000
ROA not before: Mon 01 Feb 2021 13:40:42 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 15562
IP address blocks: 2001:67c:208c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 598 (0x256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82a1b27c74e7f5dc030e401c534a61b1bc3ca512
Validity
Not Before: Feb 1 13:40:42 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=932A045B404FAA7B1B72B5054D3D3FB3793A8718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fd:fd:3e:e6:93:75:6c:bf:5b:0c:2c:65:7b:
37:94:bf:69:4b:12:1f:0c:6a:3f:f4:4e:0e:4a:f1:
fc:b0:57:6c:0b:84:90:44:a8:b1:7d:c8:c4:20:af:
88:37:0b:c2:85:55:02:15:1b:da:c4:13:a3:1b:e8:
82:5a:8f:37:6a:27:c9:65:74:d9:08:6b:e7:c4:61:
c9:90:84:53:bb:96:e1:e8:15:0b:fa:ee:0b:ff:5f:
bd:a5:9a:cb:ae:d9:77:d3:b3:5d:1e:c0:9a:c2:7f:
97:db:85:4a:6c:8b:4e:6a:91:e4:83:90:23:c5:47:
a2:89:a6:53:ed:f0:bc:c9:31:2a:14:be:e5:ac:2d:
86:93:01:68:31:67:43:a3:83:1d:e2:36:1d:31:77:
e9:7c:88:59:23:1f:31:f9:8b:89:cc:3c:e4:2d:93:
92:5c:8b:81:cb:19:3f:83:87:f9:f5:e8:87:78:6d:
c9:a3:2f:e1:f1:de:a7:19:b8:e8:c8:10:16:b0:e1:
86:1e:01:67:a9:1c:a1:20:ef:27:2d:1f:d3:c5:ba:
40:bc:95:03:3a:f0:49:e0:1f:a7:b4:84:e4:5a:7f:
26:ec:55:69:20:52:07:db:b5:8b:fc:ec:c3:40:66:
0a:b9:ce:87:71:e2:ea:69:1b:5e:c3:2c:46:76:6d:
69:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2A:04:5B:40:4F:AA:7B:1B:72:B5:05:4D:3D:3F:B3:79:3A:87:18
X509v3 Authority Key Identifier:
keyid:82:A1:B2:7C:74:E7:F5:DC:03:0E:40:1C:53:4A:61:B1:BC:3C:A5:12
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/Sobornost-RIPE/gqGyfHTn9dwDDkAcU0phsbw8pRI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gqGyfHTn9dwDDkAcU0phsbw8pRI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/Sobornost-RIPE/kyoEW0BPqnsbcrUFTT0_s3k6hxg.roa
RPKI Notify - URI:https://chloe.sobornost.net/rpki/news-public.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:208c::/48
Signature Algorithm: sha256WithRSAEncryption
80:08:1c:a2:53:ca:63:62:73:fd:19:5e:a0:76:45:e6:8c:19:
c3:24:ad:16:b2:12:8d:40:82:da:33:a7:34:d6:10:81:a4:60:
82:17:dc:36:07:40:d3:d5:2f:ae:a6:00:37:24:fc:65:fb:43:
a7:c1:4e:74:c1:93:25:c2:a7:af:8a:f9:0d:a3:24:db:41:d7:
94:b6:1d:96:5d:8c:4c:36:e8:0e:09:c8:03:1c:ed:df:05:94:
ee:45:9c:1b:4d:61:83:c7:4e:47:3b:38:61:78:59:15:df:c5:
01:c9:af:30:f9:b8:69:42:75:f7:12:7b:26:13:44:31:d4:75:
af:8b:23:91:d3:82:bc:93:24:84:a9:a2:9f:32:db:bc:0c:3b:
6d:4e:50:f1:68:41:14:8a:c3:cf:16:8b:ef:f1:32:31:2d:52:
a4:19:3e:3d:2c:ac:72:6e:2e:05:d7:bc:2d:c1:02:65:f9:de:
3b:f0:fb:04:52:da:8a:84:99:b2:d9:5a:c3:85:61:93:ba:5e:
72:eb:b7:65:ed:f4:6b:db:a3:98:f9:81:11:b5:34:95:a8:9d:
11:73:c6:0c:a7:b1:9b:9d:f6:d7:d7:9a:92:17:ff:84:52:25:
3c:06:a9:ee:03:42:a2:b9:49:00:aa:13:20:7a:9f:a7:bc:c8:
f1:5b:6a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org