Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/hYkF55EP_c5Ew_nv13HMDyCkyLU.roa
File: hYkF55EP_c5Ew_nv13HMDyCkyLU.roa (raw, json)
Hash identifier: aaVzQIBVrlLHq3q5NrMiyZ6B/fyKdk+I4t7tR8qkn+0=
Subject key identifier: 85:89:05:E7:91:0F:FD:CE:44:C3:F9:EF:D7:71:CC:0F:20:A4:C8:B5
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: C7F6
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/hYkF55EP_c5Ew_nv13HMDyCkyLU.roa
Signing time: Tue 06 Dec 2022 12:51:14 +0000
ROA not before: Tue 06 Dec 2022 12:51:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a0e:b240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51190 (0xc7f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Dec 6 12:51:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=858905E7910FFDCE44C3F9EFD771CC0F20A4C8B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:b0:e2:51:c0:1f:a7:5b:7a:f8:2d:fc:c0:
55:2e:20:ba:5e:46:b2:0c:65:9c:14:e5:9a:fe:15:
54:2f:86:7c:e5:bb:62:63:fd:f1:e9:ae:8a:7d:c8:
7e:cb:76:d8:61:6a:fe:f4:3d:1a:3c:3c:ef:87:88:
de:02:ab:85:03:61:01:7d:e2:6e:53:88:a1:53:de:
98:7e:eb:13:72:94:f4:dd:17:c5:48:03:e8:a1:c3:
fb:1b:08:6d:27:e1:f1:b8:a9:80:0f:ab:00:a1:cf:
46:88:9b:8b:60:48:c4:83:77:b8:7d:5e:b0:c6:68:
a7:ce:ec:91:e3:14:4a:65:16:d5:82:ab:f5:f5:f0:
cd:0a:a1:38:60:17:6c:44:b0:5d:1c:b1:1f:dc:6f:
88:20:75:ee:85:53:7a:d3:06:89:26:f8:a5:1c:46:
a0:c7:c1:36:96:d1:cf:8d:08:7e:36:fe:70:bd:e3:
a2:13:50:28:a5:00:ba:cf:1a:1a:c2:7c:45:38:20:
5f:96:d9:c6:4f:64:96:d4:0e:27:06:f3:ca:41:00:
e6:ac:36:95:65:90:e6:79:cc:fb:58:75:c9:3c:b4:
b6:32:97:8a:1c:5c:1b:1a:35:d3:81:86:fb:cc:0a:
8e:e8:d5:ef:86:ee:1c:49:f2:f8:6c:54:5b:26:af:
7b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:89:05:E7:91:0F:FD:CE:44:C3:F9:EF:D7:71:CC:0F:20:A4:C8:B5
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/hYkF55EP_c5Ew_nv13HMDyCkyLU.roa
Signed Object - URI:https://chloe.sobornost.net/rpki/RIPE-nljobsnijders/hYkF55EP_c5Ew_nv13HMDyCkyLU.roa
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b240::/48
Signature Algorithm: sha256WithRSAEncryption
73:13:bb:47:f0:09:09:b4:4a:96:09:e1:c9:7b:4f:0c:c4:5a:
39:dc:88:b2:da:d2:ca:81:81:cd:0d:02:d1:ab:73:c2:eb:d8:
09:90:51:84:e6:6f:22:14:e5:7e:26:05:f8:84:5e:b9:7f:2d:
bf:43:cd:b5:c1:74:b5:97:e4:97:b1:ed:03:e8:46:e1:8a:14:
74:39:56:11:6e:fa:c6:06:86:fe:18:35:6c:7a:45:27:2e:70:
ad:b1:ad:ec:9b:07:6b:f9:71:1e:eb:78:3f:9d:43:a9:6a:ef:
b5:79:ff:5a:73:4f:65:3a:40:e9:45:f3:5e:60:5f:8b:2a:92:
f4:0e:83:e2:4e:e6:68:5c:54:96:c1:cd:0e:97:5a:7c:06:c9:
18:02:6c:d5:c3:93:bf:32:40:dd:55:9e:d1:3d:67:e2:07:c9:
93:43:0f:f6:9d:2f:c1:f2:bb:bf:83:35:f2:db:61:7e:c9:f7:
94:22:c3:b9:af:6c:86:be:db:aa:2d:75:1a:45:72:0c:cc:12:
ab:93:60:a1:11:63:c9:83:8c:d4:34:21:f8:2b:f6:12:c1:84:
d5:c1:2f:ee:89:56:57:29:7f:f5:6a:8f:dd:bc:5b:b3:d2:2e:
93:02:e4:cf:3a:ca:5a:d9:95:e6:cc:2a:bb:a5:90:18:85:ad:
d8:88:e7:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:53 2023 by rpki-client on console-ams.rpki-client.org