Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/oFH4a6VZXheTJ8YgGR0xRXKwqfc.roa
File: oFH4a6VZXheTJ8YgGR0xRXKwqfc.roa (raw, json)
Hash identifier: cZWyTkiGU1USJD2iUhg8QdlVAiwldEgCy7Q6c6Eu4LI=
Subject key identifier: A0:51:F8:6B:A5:59:5E:17:93:27:C6:20:19:1D:31:45:72:B0:A9:F7
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: C7F9
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/oFH4a6VZXheTJ8YgGR0xRXKwqfc.roa
Signing time: Tue 06 Dec 2022 12:51:16 +0000
ROA not before: Tue 06 Dec 2022 12:51:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15562
IP address blocks: 2a0e:b240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51193 (0xc7f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Dec 6 12:51:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=A051F86BA5595E179327C620191D314572B0A9F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bf:9e:05:54:5b:64:f5:c7:75:65:ca:c3:5b:
91:97:9b:fc:9c:a0:4a:9e:22:2c:26:59:2e:da:79:
8f:ea:e1:ab:c8:91:2f:e7:75:8f:98:37:23:7d:a9:
61:39:44:c9:d9:65:e3:50:d2:4f:e9:b2:71:03:9d:
74:08:e6:3d:93:96:ed:d1:be:b1:b3:c5:cb:a1:5e:
11:e3:31:c1:dc:47:f4:94:14:0a:70:51:4f:4b:09:
b1:91:e5:7f:8b:92:77:a9:7d:b5:34:63:19:1a:bb:
93:72:f4:38:3a:e5:ea:58:26:52:96:b8:86:b2:af:
2f:5c:f3:83:fa:ed:60:12:06:8f:f2:4c:7e:1f:14:
4f:34:6d:3b:d6:f3:59:e7:f7:a0:bf:e5:c8:1e:5d:
c9:35:84:02:f5:45:0e:57:e4:aa:77:be:08:7b:13:
bd:1e:6a:a5:86:42:67:9a:25:f1:53:d0:02:1e:c9:
b9:2d:cb:73:51:15:75:fe:46:d8:77:c8:45:e7:a3:
6a:5d:cf:2c:2e:1b:84:72:6b:77:3a:ec:20:48:cb:
a6:c1:1d:b3:d4:7a:1b:69:6f:4f:c0:55:b0:de:ae:
80:c4:37:27:e3:70:b5:f3:b5:c4:7b:54:6e:18:1f:
bf:62:4a:8c:1b:66:5c:fe:9d:ad:ab:e3:fd:c0:aa:
37:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:51:F8:6B:A5:59:5E:17:93:27:C6:20:19:1D:31:45:72:B0:A9:F7
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/oFH4a6VZXheTJ8YgGR0xRXKwqfc.roa
Signed Object - URI:https://chloe.sobornost.net/rpki/RIPE-nljobsnijders/oFH4a6VZXheTJ8YgGR0xRXKwqfc.roa
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b240::/48
Signature Algorithm: sha256WithRSAEncryption
2b:f9:40:a3:9f:1f:ae:54:63:53:80:dd:31:d0:a7:aa:05:e8:
b3:9f:68:34:6f:96:75:1f:c4:19:f3:7b:ac:08:e0:c2:bf:05:
fd:68:34:86:2a:ea:4e:17:ac:2c:76:0d:1a:6e:76:89:0e:1f:
09:c2:48:ad:61:c0:41:f1:f0:d9:ec:b2:ff:f3:e0:67:22:5f:
88:99:0f:cd:1c:d0:be:9b:4d:25:dd:4e:46:7e:5a:4a:50:34:
59:60:24:d6:33:e5:21:48:83:9b:28:2e:e4:d3:56:7f:c5:99:
35:bc:ff:c6:f2:8f:ab:94:c9:62:3e:fa:5f:d2:82:ad:bd:db:
06:71:a5:4c:76:bf:af:67:06:3d:01:76:16:a8:00:42:b3:7a:
58:45:ff:47:bf:e7:0b:e2:68:cf:69:99:b1:d0:19:3a:75:6b:
b8:c7:75:c0:a4:33:37:3b:fc:cf:59:44:e6:29:e4:3f:bf:04:
f9:50:b5:67:21:c6:3c:b8:99:9b:6a:64:9e:49:13:c6:57:fd:
86:13:09:2d:cb:97:79:85:a9:da:5d:9a:d4:7a:d7:e5:e3:ad:
86:69:11:20:54:34:4b:03:16:89:d2:ce:1d:42:ef:8a:82:01:
63:90:e1:83:4b:e1:53:8a:8e:a6:88:8a:3f:f8:9e:6c:27:ea:
05:5d:8a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org