Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/jCT_OyeBQn4uYDYrQWuZv9tqW9U.roa
File: jCT_OyeBQn4uYDYrQWuZv9tqW9U.roa (raw, json)
Hash identifier: DXc5Umk8ubATXVarqNXFhEXajpzqsCBwGjPhVNiAlcI=
Subject key identifier: 8C:24:FF:3B:27:81:42:7E:2E:60:36:2B:41:6B:99:BF:DB:6A:5B:D5
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: C7F7
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/jCT_OyeBQn4uYDYrQWuZv9tqW9U.roa
Signing time: Tue 06 Dec 2022 12:51:15 +0000
ROA not before: Tue 06 Dec 2022 12:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15562
IP address blocks: 2001:67c:208c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51191 (0xc7f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Dec 6 12:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8C24FF3B2781427E2E60362B416B99BFDB6A5BD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fb:1d:d8:9d:5c:d5:69:45:f4:fa:e5:9d:2a:
e1:dd:55:9d:57:9b:2d:8f:be:d6:83:ee:11:66:4e:
bf:82:5a:ec:2a:a9:c8:5c:67:45:f1:23:cd:12:a3:
a3:c8:3d:f8:ee:db:c7:dc:3a:89:ed:ea:6d:1a:8e:
0b:28:61:a1:92:95:2e:dd:3d:d0:ef:9f:b2:5d:ab:
86:72:3d:7f:ab:f6:41:d2:78:72:11:69:ec:5e:a3:
68:b6:3c:77:76:c6:15:5f:8a:f1:06:5e:2e:a6:2d:
ba:77:b0:9d:fa:20:04:b0:8f:ea:91:f8:0c:d1:8e:
93:72:ff:b8:3e:1e:77:3c:6e:6b:9b:ec:84:86:5d:
55:82:c8:9f:25:06:a6:b4:c3:31:15:1d:56:b4:28:
81:3c:5b:e0:e1:cc:f7:3c:08:0f:64:27:4b:ad:30:
c8:38:5c:51:43:4d:22:1e:cc:cf:03:7b:55:94:4f:
ea:25:4e:f6:35:da:d2:83:ff:b3:f6:38:d4:5c:38:
2f:46:5a:ff:73:80:ac:53:26:c7:19:f9:2b:2b:ff:
aa:90:c9:3f:e8:3a:16:5d:a7:18:bb:b8:93:f5:0c:
7d:3e:ed:1c:36:bd:1d:3a:d4:ba:05:e8:5a:2a:60:
6b:a4:8f:1e:50:f4:c3:11:4d:9a:58:2e:42:3d:d4:
55:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:24:FF:3B:27:81:42:7E:2E:60:36:2B:41:6B:99:BF:DB:6A:5B:D5
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/jCT_OyeBQn4uYDYrQWuZv9tqW9U.roa
Signed Object - URI:https://chloe.sobornost.net/rpki/RIPE-nljobsnijders/jCT_OyeBQn4uYDYrQWuZv9tqW9U.roa
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:208c::/48
Signature Algorithm: sha256WithRSAEncryption
aa:07:87:98:5e:89:04:6a:89:34:f8:83:a2:81:fc:3d:f3:84:
af:43:5e:a9:29:34:e0:e1:18:dd:79:49:e1:ad:47:0c:6c:ca:
5f:4c:54:cb:b2:69:f6:49:3f:19:d4:41:78:1b:50:19:ea:c7:
76:1a:40:f4:eb:72:d6:58:be:1c:79:9e:f5:89:95:77:b3:91:
3a:e3:a0:09:f9:18:7d:65:6d:eb:ee:7f:11:a8:05:c9:3d:e6:
d0:ea:8b:8e:01:fe:6c:ea:a8:06:46:d1:95:7d:7e:d6:ee:96:
c7:42:71:1d:15:1b:d5:da:e9:86:56:53:9a:8c:8e:a8:31:33:
86:9e:c4:06:94:8e:df:e2:67:4a:d3:f8:72:08:19:4d:ed:dd:
66:5a:da:f1:f6:de:f0:69:c4:71:12:0d:57:2f:5e:51:6a:5b:
70:25:ff:39:9d:7c:8d:4b:31:52:db:f5:13:e6:a9:79:02:35:
44:46:c8:e5:eb:14:0b:e1:82:1a:a4:10:24:89:b3:6a:7a:f5:
de:e6:80:d4:46:8b:4d:5b:e9:17:a1:ed:61:ee:d8:5f:ee:1d:
6c:e2:75:51:ca:7f:17:67:89:4a:19:68:53:be:87:07:46:39:
cb:31:ad:e7:65:8b:a9:e3:90:c2:73:a2:cc:f8:3d:48:d0:49:
8a:80:f7:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org