Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/uplift/AXG3AfXs41I9eJF3s5OA6mFKqUU.roa
File: AXG3AfXs41I9eJF3s5OA6mFKqUU.roa (raw, json)
Hash identifier: QqqUXTPh9+G5IjNwJWS1Skb8sRmwFk1SPF/OjhX+aKA=
Subject key identifier: 01:71:B7:01:F5:EC:E3:52:3D:78:91:77:B3:93:80:EA:61:4A:A9:45
Certificate issuer: /CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Certificate serial: 1111
Authority key identifier: 20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
Subject info access: rsync://chloe.sobornost.net/rpki/uplift/AXG3AfXs41I9eJF3s5OA6mFKqUU.roa
Signing time: Sat 17 Jun 2023 00:00:36 +0000
ROA not before: Sat 17 Jun 2023 00:00:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1880
IP address blocks: 2001:67c:2938::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4369 (0x1111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Validity
Not Before: Jun 17 00:00:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0171B701F5ECE3523D789177B39380EA614AA945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ab:25:13:cf:eb:b8:84:4f:5a:c6:8b:f7:0e:
0e:95:d0:06:7d:0b:d3:00:c6:98:80:6e:c1:92:d2:
64:7a:f8:03:ba:d2:8e:a6:2e:7e:e7:cb:5f:ac:44:
20:cf:e9:94:04:96:1c:a1:3f:89:0b:07:67:d1:5c:
f4:09:3b:04:f3:7f:c5:4f:a0:1a:0d:6b:77:af:ed:
c0:87:5c:91:87:47:d0:42:1c:56:29:64:7f:50:d9:
1e:6a:71:97:02:ae:f0:df:8e:d8:ac:ac:4f:2a:af:
c5:97:d1:5e:18:c1:d8:aa:d5:3f:de:f0:32:15:ed:
c7:00:a4:dc:82:66:a0:e6:50:aa:0f:50:8c:4e:7a:
d0:0b:4f:7c:f4:83:06:46:01:62:82:8f:11:12:ad:
64:06:65:11:c3:84:95:11:d0:e8:60:06:b8:03:cf:
cf:50:95:48:ed:cd:20:e4:f8:6a:dc:c4:18:31:c6:
98:69:db:b0:9f:b3:d5:03:ec:c9:f0:72:ef:5a:4f:
d4:1e:1a:04:fb:ef:bc:be:48:32:25:38:fd:17:2f:
7a:2c:bf:7e:4e:18:2f:39:55:28:55:61:ed:99:2e:
23:16:db:d2:60:e7:01:46:37:f5:74:00:cd:6c:f8:
49:4a:f9:cb:75:94:54:c2:8a:94:00:d5:b1:6d:0c:
0b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:71:B7:01:F5:EC:E3:52:3D:78:91:77:B3:93:80:EA:61:4A:A9:45
X509v3 Authority Key Identifier:
keyid:20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/uplift/IBfMWA0nPFS6MGTNLNavObgEuIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/uplift/AXG3AfXs41I9eJF3s5OA6mFKqUU.roa
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2938::/48
Signature Algorithm: sha256WithRSAEncryption
75:77:cb:30:48:28:c2:45:99:59:ef:99:82:56:fb:5f:22:ba:
78:7e:02:c9:3b:06:9d:fc:b1:8e:9e:a0:65:43:41:12:d4:bf:
34:58:8c:fe:0f:2b:29:60:20:a0:7a:e3:cf:36:2e:d6:71:a1:
a2:f9:cd:35:cb:65:e1:e8:cd:03:98:f5:c0:5e:f7:5a:5d:e8:
aa:20:2b:18:4f:ec:4e:dd:2c:52:b3:38:a8:a0:21:50:07:25:
b9:fa:df:e4:00:91:6e:16:54:92:c7:41:b7:99:ed:b9:71:d3:
e9:c5:0a:0c:89:42:a4:ab:04:93:ed:52:fc:b9:dd:ee:a1:77:
11:cd:e2:43:7c:75:62:f4:5c:43:9d:81:f9:26:eb:ca:0f:da:
7b:38:81:8b:74:9c:e5:5c:ce:64:dd:ef:14:96:2b:36:60:6a:
f8:63:77:f8:cb:fd:f6:7b:32:be:2a:d9:f9:64:5d:6e:76:da:
8b:bf:91:70:54:0c:0c:fe:5a:3e:a1:13:4c:6e:f6:1e:d9:1c:
a2:91:cd:51:12:39:bb:4d:aa:20:d9:67:fa:1e:09:ea:14:8d:
9f:0d:00:ab:60:01:82:47:c6:fc:91:a1:91:0e:45:f4:b5:5f:
4c:10:b5:16:74:bf:b1:03:85:cf:2b:8b:fd:5b:86:ef:9a:66:
17:35:40:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 11 17:40:00 2024 by rpki-client on console-ams.rpki-client.org