Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/Y4l-osnZdAGbEVzTuztIxbfH8IY.roa
File: Y4l-osnZdAGbEVzTuztIxbfH8IY.roa (raw, json)
Hash identifier: xP0bRsuZ4L8n/e1OwpT/CXrNlIxINeLS3+cwOWtwWmk=
Subject key identifier: 63:89:7E:A2:C9:D9:74:01:9B:11:5C:D3:BB:3B:48:C5:B7:C7:F0:86
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: C7F8
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/Y4l-osnZdAGbEVzTuztIxbfH8IY.roa
Signing time: Tue 06 Dec 2022 12:51:15 +0000
ROA not before: Tue 06 Dec 2022 12:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a0e:b240::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51192 (0xc7f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Dec 6 12:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63897EA2C9D974019B115CD3BB3B48C5B7C7F086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7a:b1:40:c5:c7:21:4c:60:61:63:53:1c:09:
7d:10:79:56:6e:d3:47:a9:0a:7c:be:7f:36:dc:d0:
ba:f6:66:46:3b:18:c2:96:56:f3:5e:06:ce:11:3e:
ae:a5:c5:d1:7f:7a:e7:94:91:af:27:5d:dd:0c:c8:
16:12:6c:3b:d1:f8:8a:87:ae:fe:b2:19:32:4a:6e:
62:c7:f0:88:fa:39:b0:6e:ee:fa:f8:52:b4:79:3c:
66:8e:1b:6b:9a:bc:69:9c:ab:51:cf:00:a0:88:2c:
f2:57:74:36:20:e4:e9:af:de:42:7d:71:10:18:d4:
98:f2:0c:01:d3:8b:d0:fc:e4:ae:a1:52:7c:39:f9:
92:5f:73:f7:55:cb:ec:75:08:9a:50:e6:6c:1b:4f:
d3:a7:11:2a:ad:d3:cf:a2:df:ee:0e:b5:73:b0:76:
9e:f4:12:4f:1b:bd:cb:00:fe:65:79:4a:ef:5e:a6:
d4:15:ef:3b:b2:85:ca:b5:6a:b8:bd:c1:ed:ca:cd:
e2:3f:5f:2c:f9:9d:7d:ca:51:10:99:2c:03:8c:9e:
3b:82:71:44:b3:e2:60:ef:a3:6e:ce:f2:79:c6:bc:
a3:1b:d1:4b:36:07:04:7a:97:b8:fa:58:c9:a2:8c:
06:61:3c:72:0c:71:39:93:32:85:c3:a7:00:c9:9c:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:89:7E:A2:C9:D9:74:01:9B:11:5C:D3:BB:3B:48:C5:B7:C7:F0:86
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/Y4l-osnZdAGbEVzTuztIxbfH8IY.roa
Signed Object - URI:https://chloe.sobornost.net/rpki/RIPE-nljobsnijders/Y4l-osnZdAGbEVzTuztIxbfH8IY.roa
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b240::/29
Signature Algorithm: sha256WithRSAEncryption
03:4d:de:e5:87:8d:44:e4:10:78:04:53:9f:0d:fb:ff:0b:69:
9d:8c:45:07:77:c1:b3:26:de:b6:bb:e7:8f:8c:c2:9f:ea:9c:
7d:dc:d5:a5:51:f5:57:2f:e6:4d:71:a8:07:7f:85:eb:a3:07:
72:36:fd:a0:38:ce:56:ef:29:9d:25:7d:fc:55:e4:32:71:69:
72:97:41:46:0f:93:94:bd:19:30:70:64:8b:ea:1f:14:eb:7d:
0f:ff:77:4c:0f:e4:ac:27:02:e0:6a:33:bf:36:1f:7d:52:1e:
e5:8f:22:e2:4e:d9:c0:98:44:c4:a1:f3:6f:3a:01:34:c5:27:
aa:54:2f:d5:9b:ab:c9:93:0c:fd:bc:7e:08:e2:47:17:4f:ea:
be:55:a8:40:46:e5:0a:62:56:66:4e:22:b9:c2:71:e4:02:93:
bb:4a:6a:3c:c6:ed:ce:2b:f9:45:45:7e:7f:0a:8d:0d:3e:a7:
af:ab:d6:08:69:a2:3a:df:d1:b5:31:61:cd:51:e6:e4:8e:09:
7e:3f:4f:5d:ca:fa:51:f9:09:0d:43:d0:63:7e:65:e8:33:80:
5b:eb:d0:56:a8:b9:ef:9c:9e:96:dd:ec:8e:2d:4e:df:e7:5f:
6e:a9:11:73:bf:f0:d6:3b:11:32:81:f3:ff:45:f0:0e:68:a3:
e7:fd:2a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:53 2023 by rpki-client on console-ams.rpki-client.org