Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/uplift/7bVnkZL_z_nug3meHLRuEvie6DE.roa
File: 7bVnkZL_z_nug3meHLRuEvie6DE.roa (raw, json)
Hash identifier: eIPo2DBCwhUYLbNaoiRr3KR8tf9E4gBsRommWuW6UwE=
Subject key identifier: ED:B5:67:91:92:FF:CF:F9:EE:83:79:9E:1C:B4:6E:12:F8:9E:E8:31
Certificate issuer: /CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Certificate serial: 66
Authority key identifier: 20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
Subject info access: rsync://chloe.sobornost.net/rpki/uplift/7bVnkZL_z_nug3meHLRuEvie6DE.roa
Signing time: Tue 23 Feb 2021 18:37:46 +0000
ROA not before: Tue 23 Feb 2021 18:37:46 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 1880
IP address blocks: 2001:67c:2938::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102 (0x66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Validity
Not Before: Feb 23 18:37:46 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=EDB5679192FFCFF9EE83799E1CB46E12F89EE831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:89:dd:77:4a:91:f7:14:59:b5:f4:ff:2e:fd:
66:bc:00:a9:70:bd:2b:97:0f:2d:ef:da:69:aa:15:
5a:7f:bb:f9:93:08:15:b1:e4:db:84:9f:60:72:9e:
97:e3:94:cc:f5:af:cb:b1:44:64:a6:93:82:14:dd:
b7:95:87:d5:c1:ca:21:6a:b4:eb:dd:fa:08:3c:e1:
ac:c8:51:27:9a:f1:62:14:7f:c9:0c:dd:05:ef:13:
39:10:37:b1:40:8e:9b:92:22:eb:af:40:55:d4:27:
d5:65:6a:6a:f4:5b:06:fd:1f:27:e8:72:3e:e7:7a:
b9:85:98:e3:f7:64:3b:02:31:6f:30:3a:b2:6b:87:
7a:1c:a8:de:1f:f0:5e:da:39:91:37:51:6b:29:4d:
5a:b8:3c:09:4c:01:94:26:3f:4a:07:e5:85:36:ed:
f3:e4:c9:b6:41:f4:94:1c:69:9b:00:b7:89:17:d6:
92:84:81:d9:58:37:65:a0:35:ff:b0:59:87:cc:f0:
0b:6a:79:9e:63:ad:17:65:b7:fa:50:60:7c:94:61:
4c:27:0a:ec:b4:2b:a4:1e:5e:86:48:d3:db:c0:b3:
c1:5f:fd:e4:1d:1a:90:dd:b5:86:3c:61:b2:37:24:
c7:70:22:b3:22:74:d6:6c:2e:2d:0e:4d:64:19:24:
66:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B5:67:91:92:FF:CF:F9:EE:83:79:9E:1C:B4:6E:12:F8:9E:E8:31
X509v3 Authority Key Identifier:
keyid:20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/uplift/IBfMWA0nPFS6MGTNLNavObgEuIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/uplift/7bVnkZL_z_nug3meHLRuEvie6DE.roa
RPKI Notify - URI:https://chloe.sobornost.net/rpki/news-public.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2938::/48
Signature Algorithm: sha256WithRSAEncryption
17:6e:e0:58:8d:65:12:59:e9:d8:6e:25:d0:ad:32:1e:a8:4c:
c7:a6:92:5a:62:63:6f:1b:05:a4:84:8e:27:0b:c2:00:47:1d:
14:2e:21:8e:3e:2e:9a:be:d0:57:eb:9d:d7:a5:95:2f:f1:49:
4c:8c:f7:56:bb:fe:83:8f:c9:9b:04:a5:bd:d9:06:c6:41:b1:
b9:b7:2d:3a:fc:d1:cc:28:9e:0a:8a:e2:49:2c:5b:40:fe:cb:
bb:16:9f:0f:7a:e2:f6:83:bf:c9:84:69:7b:c4:ba:6e:64:28:
95:a9:35:03:27:c2:5c:ea:c4:40:ae:4d:c2:7a:f6:c6:ae:17:
2a:db:36:b4:48:3b:dd:5e:e8:81:5f:5a:bc:e5:c9:e1:0a:cc:
46:91:15:4d:f5:92:df:63:00:41:9c:59:de:05:3a:94:d1:4a:
c6:a4:f9:4e:8d:96:c5:af:8d:e8:1f:ec:76:d4:17:5f:ac:86:
a5:0f:88:04:50:c1:60:d3:18:3a:ef:ca:1e:83:20:18:c4:71:
1a:8f:87:d3:0c:ec:aa:70:40:d0:71:f8:1e:6f:49:4f:f5:d1:
7f:d0:f5:43:58:1e:13:5a:ec:94:5b:a4:73:92:90:67:f2:d8:
d5:e3:f8:fe:1a:4f:5d:93:66:26:56:35:bd:5a:83:2a:28:94:
47:68:1d:a8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:38 2023 by rpki-client on console-fra.rpki-client.org