Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/Sobornost/KY2Kqq50EsBzqEzuSriY8b34wHE.roa
File: KY2Kqq50EsBzqEzuSriY8b34wHE.roa (raw, json)
Hash identifier: ukOrdlJ1lKHk+aiCXRw/PlxzcWf4/VIMRxiEYNwalOI=
Subject key identifier: 29:8D:8A:AA:AE:74:12:C0:73:A8:4C:EE:4A:B8:98:F1:BD:F8:C0:71
Certificate issuer: /CN=4be2706ac16dc810b08cbeb400e17382b2c25a64
Certificate serial: 2F
Authority key identifier: 4B:E2:70:6A:C1:6D:C8:10:B0:8C:BE:B4:00:E1:73:82:B2:C2:5A:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-JwasFtyBCwjL60AOFzgrLCWmQ.cer
Subject info access: rsync://chloe.sobornost.net/rpki/Sobornost/KY2Kqq50EsBzqEzuSriY8b34wHE.roa
Signing time: Mon 07 Dec 2020 15:18:50 +0000
ROA not before: Mon 07 Dec 2020 15:18:50 +0000
ROA not after: Thu 01 Jul 2021 00:00:00 +0000
asID: 15562
IP address blocks: 2001:67c:208c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4be2706ac16dc810b08cbeb400e17382b2c25a64
Validity
Not Before: Dec 7 15:18:50 2020 GMT
Not After : Jul 1 00:00:00 2021 GMT
Subject: CN=298D8AAAAE7412C073A84CEE4AB898F1BDF8C071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:83:0a:60:2d:d2:e6:8d:0d:31:f6:96:49:
8c:04:f6:c3:5a:8b:97:96:f2:0b:c5:22:73:18:80:
a5:ac:1a:31:58:27:60:fd:d9:90:08:49:25:54:bd:
a9:20:1d:b2:04:88:2b:f8:82:7d:cf:7d:a8:87:56:
53:62:bd:67:1e:ec:ad:cc:3f:d4:41:71:6e:6c:d7:
61:bb:e9:1f:cf:7d:f0:66:9f:16:ff:2f:ce:b0:30:
f6:a5:25:a2:45:9d:43:22:0f:40:46:dd:34:7c:d7:
cd:af:67:14:9b:e6:46:57:1e:ea:fc:e2:0e:75:04:
d6:1f:69:5a:9c:7e:99:dc:c6:d8:d4:ff:45:c5:76:
b0:06:0f:d6:9e:8e:24:be:13:69:5d:4e:bd:5d:39:
00:a6:e5:ca:db:ee:46:a8:bc:66:d4:da:43:a2:f8:
23:7c:22:87:3d:b2:ed:d7:94:a3:89:3d:27:39:fc:
b7:9a:c3:01:43:8a:80:51:8f:2d:98:4a:22:23:55:
7b:f0:48:9d:55:c7:7c:59:eb:24:0b:09:1e:28:ba:
ab:96:97:c0:13:aa:03:73:bd:37:9b:c3:02:33:63:
8b:83:be:03:37:18:f6:59:e0:15:5b:d9:37:f1:c6:
cc:c8:57:63:ce:b0:db:b6:65:74:c2:f3:02:70:b5:
b1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:8D:8A:AA:AE:74:12:C0:73:A8:4C:EE:4A:B8:98:F1:BD:F8:C0:71
X509v3 Authority Key Identifier:
keyid:4B:E2:70:6A:C1:6D:C8:10:B0:8C:BE:B4:00:E1:73:82:B2:C2:5A:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/Sobornost/S-JwasFtyBCwjL60AOFzgrLCWmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-JwasFtyBCwjL60AOFzgrLCWmQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/Sobornost/KY2Kqq50EsBzqEzuSriY8b34wHE.roa
RPKI Notify - URI:https://chloe.sobornost.net/rpki/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:208c::/48
Signature Algorithm: sha256WithRSAEncryption
19:66:de:ec:80:4e:70:92:06:12:1c:bc:71:39:bf:61:00:f4:
88:c9:a5:97:f6:fa:61:5d:9d:28:c5:bf:68:25:8b:58:23:cb:
40:50:3f:aa:c0:8c:c5:c6:c4:5a:f5:d5:31:51:b3:2f:70:db:
0b:cd:7d:05:9b:68:cc:37:e8:77:52:cc:7b:4c:43:ab:ac:57:
7e:62:5a:a8:db:36:be:fd:f9:54:1b:7e:68:d2:4c:73:dc:28:
c4:38:7b:2b:68:7f:f4:05:30:3d:e0:44:4d:38:7d:c9:00:f0:
b8:c4:64:ed:83:c9:e4:68:af:ba:b2:d0:f5:46:72:07:54:63:
cf:eb:fb:9b:1b:9f:78:79:04:86:28:f5:57:e7:01:53:68:41:
77:52:75:0c:5e:da:c2:dd:21:cb:d8:fb:24:5a:f0:d7:44:f5:
f7:e3:94:3f:35:7f:f9:ac:14:fc:49:cc:1d:cb:0b:76:88:c2:
2f:f9:cf:e0:f4:d7:c4:5f:18:4a:2c:ee:21:73:5b:92:bd:f3:
6b:0e:3a:3b:5c:13:ec:ca:af:f1:39:b9:51:30:9a:11:d5:2c:
7f:35:15:32:f1:bd:46:6c:bf:64:8e:43:aa:6f:b1:25:63:69:
ed:7d:c9:93:68:9c:b5:eb:0d:d6:e6:aa:af:34:b6:b5:82:dc:
f4:a6:ac:7d
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0YmUy
NzA2YWMxNmRjODEwYjA4Y2JlYjQwMGUxNzM4MmIyYzI1YTY0MB4XDTIwMTIwNzE1
MTg1MFoXDTIxMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjk4RDhBQUFBRTc0MTJD
MDczQTg0Q0VFNEFCODk4RjFCREY4QzA3MTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAK63gwpgLdLmjQ0x9pZJjAT2w1qLl5byC8UicxiApawaMVgnYP3Z
kAhJJVS9qSAdsgSIK/iCfc99qIdWU2K9Zx7srcw/1EFxbmzXYbvpH8998GafFv8v
zrAw9qUlokWdQyIPQEbdNHzXza9nFJvmRlce6vziDnUE1h9pWpx+mdzG2NT/RcV2
sAYP1p6OJL4TaV1OvV05AKblytvuRqi8ZtTaQ6L4I3wihz2y7deUo4k9Jzn8t5rD
AUOKgFGPLZhKIiNVe/BInVXHfFnrJAsJHii6q5aXwBOqA3O9N5vDAjNji4O+AzcY
9lngFVvZN/HGzMhXY86w27ZldMLzAnC1sZMCAwEAAaOCAfkwggH1MB0GA1UdDgQW
BBQpjYqqrnQSwHOoTO5KuJjxvfjAcTAfBgNVHSMEGDAWgBRL4nBqwW3IELCMvrQA
4XOCssJaZDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO
oEyGSnJzeW5jOi8vY2hsb2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1NvYm9ybm9zdC9T
LUp3YXNGdHlCQ3dqTDYwQU9GemdyTENXbVEuY3JsMGQGCCsGAQUFBwEBBFgwVjBU
BggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVG
QVVMVC9TLUp3YXNGdHlCQ3dqTDYwQU9GemdyTENXbVEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBoQYIKwYBBQUHAQsEgZQwgZEwVgYIKwYBBQUHMAuGSnJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1NvYm9ybm9zdC9LWTJLcXE1MEVzQnpxRXp1
U3JpWThiMzR3SEUucm9hMDcGCCsGAQUFBzANhitodHRwczovL2NobG9lLnNvYm9y
bm9zdC5uZXQvcnBraS9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA
AjAJAwcAIAEGfCCMMA0GCSqGSIb3DQEBCwUAA4IBAQAZZt7sgE5wkgYSHLxxOb9h
APSIyaWX9vphXZ0oxb9oJYtYI8tAUD+qwIzFxsRa9dUxUbMvcNsLzX0Fm2jMN+h3
Usx7TEOrrFd+Ylqo2za+/flUG35o0kxz3CjEOHsraH/0BTA94ERNOH3JAPC4xGTt
g8nkaK+6stD1RnIHVGPP6/ubG594eQSGKPVX5wFTaEF3UnUMXtrC3SHL2PskWvDX
RPX345Q/NX/5rBT8Scwdywt2iMIv+c/g9NfEXxhKLO4hc1uSvfNrDjo7XBPsyq/x
OblRMJoR1Sx/NRUy8b1GbL9kjkOqb7ElY2ntfcmTaJy16w3W5qqvNLa1gtz0pqx9
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:53 2023 by rpki-client on console-ams.rpki-client.org