Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/Sobornost/orKeSay5jCyFv8svqKv9VNOa1bU.roa
File: orKeSay5jCyFv8svqKv9VNOa1bU.roa (raw, json)
Hash identifier: DOEcCE3tZS1mwVNXW3wrMby9jNuqob44w9cpCPVcQO4=
Subject key identifier: A2:B2:9E:49:AC:B9:8C:2C:85:BF:CB:2F:A8:AB:FD:54:D3:9A:D5:B5
Certificate issuer: /CN=1ABE80AE3501D812469E1EFEB187D241711AFCF2
Certificate serial: 2D
Authority key identifier: 1A:BE:80:AE:35:01:D8:12:46:9E:1E:FE:B1:87:D2:41:71:1A:FC:F2
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/Gr6ArjUB2BJGnh7-sYfSQXEa_PI.cer
Subject info access: rsync://chloe.sobornost.net/rpki/Sobornost/orKeSay5jCyFv8svqKv9VNOa1bU.roa
Signing time: Fri 18 Dec 2020 11:21:49 +0000
ROA not before: Fri 18 Dec 2020 11:21:49 +0000
ROA not after: Sat 11 Dec 2021 18:09:13 +0000
asID: 15562
IP address blocks: 147.28.48.0/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45 (0x2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ABE80AE3501D812469E1EFEB187D241711AFCF2
Validity
Not Before: Dec 18 11:21:49 2020 GMT
Not After : Dec 11 18:09:13 2021 GMT
Subject: CN=A2B29E49ACB98C2C85BFCB2FA8ABFD54D39AD5B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:51:c7:b8:9d:ce:19:ea:2b:49:82:8a:ef:7a:
e4:ba:0e:81:64:a5:c9:e8:74:77:ad:6b:51:b3:3c:
af:b3:e7:65:72:11:2d:f6:c6:4b:0c:fc:74:16:79:
2b:d9:70:44:2f:ba:81:37:79:9d:4f:de:60:4f:33:
18:60:05:31:79:40:7d:be:d7:05:9c:43:eb:e0:94:
3c:6e:09:aa:10:69:4d:d3:f4:a5:73:56:66:96:d2:
7e:09:d1:0c:18:74:b6:02:a3:d0:d4:e0:50:39:0a:
ca:3a:e7:77:bd:21:cf:a3:a6:58:f4:71:3b:99:90:
28:3c:1c:47:22:9f:f5:2e:e0:60:e5:bf:ee:8d:a3:
ba:0c:87:89:6e:b3:bb:f3:9e:f3:d7:86:85:bc:f3:
e4:70:a8:38:fe:61:59:8c:17:7d:59:b9:5d:c7:23:
23:0f:e3:d1:f9:d1:c5:1f:1e:ec:34:1a:53:ea:b0:
38:56:c9:cb:aa:b8:8d:98:8a:e0:15:4b:b0:9f:2e:
65:04:11:36:4d:46:18:87:4b:7a:80:bb:9b:56:e1:
8c:54:c8:69:15:21:f5:59:6d:e6:f9:9e:b8:47:10:
1b:82:9a:29:9c:1b:e1:f0:18:d8:d7:ec:9b:bb:b3:
7e:1b:dd:b9:76:7d:7f:92:2d:48:f9:09:86:29:f0:
4d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B2:9E:49:AC:B9:8C:2C:85:BF:CB:2F:A8:AB:FD:54:D3:9A:D5:B5
X509v3 Authority Key Identifier:
keyid:1A:BE:80:AE:35:01:D8:12:46:9E:1E:FE:B1:87:D2:41:71:1A:FC:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/Sobornost/Gr6ArjUB2BJGnh7-sYfSQXEa_PI.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/Gr6ArjUB2BJGnh7-sYfSQXEa_PI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/Sobornost/orKeSay5jCyFv8svqKv9VNOa1bU.roa
RPKI Notify - URI:https://chloe.sobornost.net/rpki/news.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.48.0/32
Signature Algorithm: sha256WithRSAEncryption
36:38:d8:41:0e:dd:18:e6:7b:b6:4e:c3:1d:e6:07:cc:85:8a:
2a:82:a7:14:d8:3d:08:d1:c2:72:41:04:d5:35:7a:b7:e2:a3:
8d:ac:2f:2e:de:f3:d6:5f:4a:c1:a0:71:cd:89:ae:1d:5f:60:
09:2b:39:d4:d0:96:aa:b7:66:67:49:0c:08:d3:3a:11:86:91:
92:40:f3:eb:9c:b6:73:35:99:e7:c6:f8:1b:77:5a:10:dd:00:
d9:7a:5a:86:c3:da:92:fc:63:c8:e8:63:ec:bb:58:b5:a7:b8:
27:cb:1a:f0:b1:bf:4a:fc:84:3a:f1:86:a2:79:41:6d:b3:3c:
e5:9f:96:19:d4:81:6c:02:5d:3f:58:4e:5b:2a:e9:e8:aa:e9:
69:86:df:d0:d2:c8:4d:1e:79:aa:52:33:a5:ca:44:94:05:b2:
d5:10:7c:98:4d:57:fc:f4:15:27:1b:89:39:44:0a:b9:af:4b:
d2:67:71:08:85:4b:38:4e:76:96:07:65:f7:45:bc:a9:7a:34:
89:e4:bc:70:4a:7b:75:4a:70:2e:f5:93:f2:37:03:48:79:85:
3c:00:a3:cc:6c:67:03:aa:cf:61:3c:3f:2c:3b:d6:2a:9f:1c:
44:9a:6a:a8:66:ec:92:ba:1e:77:92:8a:ba:d7:63:59:46:c8:
f9:87:8f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org