Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/uplift/h4t_Bg0EeCGkH6UQKrCSN65-XR4.roa
File: h4t_Bg0EeCGkH6UQKrCSN65-XR4.roa (raw, json)
Hash identifier: UyxJLHVUBZIokRDQJ8hEhb4pSkhiNLfN9yr7HMlphgQ=
Subject key identifier: 87:8B:7F:06:0D:04:78:21:A4:1F:A5:10:2A:B0:92:37:AE:7E:5D:1E
Certificate issuer: /CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Certificate serial: 09C9
Authority key identifier: 20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
Subject info access: rsync://chloe.sobornost.net/rpki/uplift/h4t_Bg0EeCGkH6UQKrCSN65-XR4.roa
Signing time: Fri 17 Jun 2022 00:24:27 +0000
ROA not before: Fri 17 Jun 2022 00:24:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1880
IP address blocks: 2001:67c:2938::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2505 (0x9c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2017cc580d273c54ba3064cd2cd6af39b804b887
Validity
Not Before: Jun 17 00:24:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=878B7F060D047821A41FA5102AB09237AE7E5D1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:73:90:15:5b:27:46:ab:b1:70:cf:ef:94:20:
99:8a:5e:06:8a:fe:d9:4b:d1:eb:7e:e9:e6:02:1a:
14:ac:d6:72:a5:2e:30:62:db:a1:e5:d0:38:2f:76:
b8:ef:c1:6c:c7:37:a3:bb:83:2d:4c:3c:81:b4:e9:
d2:cb:cf:d8:22:8b:b0:e2:56:a3:35:7f:aa:98:f1:
83:7b:20:1d:7d:f7:04:24:ff:dd:86:5c:d2:36:7a:
7e:4f:35:c0:9a:c0:7e:b4:35:fe:c4:65:03:43:ff:
8d:6c:9e:b8:75:de:ac:86:28:21:e2:bf:07:af:d6:
e5:e4:28:ce:bf:0b:cd:64:81:84:ea:24:64:58:40:
11:73:22:98:4f:3d:41:00:2e:1e:23:d4:c3:2a:a6:
02:ba:b0:23:7f:b2:e5:4e:35:cf:79:c8:f3:05:af:
87:e0:d7:4d:53:28:66:65:a0:3b:14:dc:40:ae:14:
97:7d:25:9d:5c:38:3f:f6:32:4d:4f:8b:84:20:12:
f9:89:1a:49:aa:2b:50:d3:6b:74:38:37:a1:e8:8d:
8f:be:21:e9:8f:02:46:9c:30:61:fb:2f:50:cd:6b:
42:ea:0e:d6:6f:64:d4:fe:65:8c:5d:24:d4:49:d2:
68:c2:c2:02:a4:4d:9b:60:e9:c0:6c:00:0b:e1:35:
ad:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8B:7F:06:0D:04:78:21:A4:1F:A5:10:2A:B0:92:37:AE:7E:5D:1E
X509v3 Authority Key Identifier:
keyid:20:17:CC:58:0D:27:3C:54:BA:30:64:CD:2C:D6:AF:39:B8:04:B8:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/uplift/IBfMWA0nPFS6MGTNLNavObgEuIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBfMWA0nPFS6MGTNLNavObgEuIc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/uplift/h4t_Bg0EeCGkH6UQKrCSN65-XR4.roa
RPKI Notify - URI:https://chloe.sobornost.net/rpki/news-public.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2938::/48
Signature Algorithm: sha256WithRSAEncryption
54:ac:0e:e0:13:b2:59:af:8a:cb:89:c5:57:89:fb:72:7b:07:
ac:ca:49:35:bc:94:8c:30:a5:d9:12:1f:38:51:d1:5d:48:70:
7d:bc:23:b5:db:06:3b:93:8c:bb:89:8c:ea:b9:61:a3:fb:11:
2c:4e:41:1d:eb:83:3b:4b:2d:ce:c6:b8:52:84:0e:c6:5b:c6:
35:a6:0d:35:b1:9e:40:90:f5:48:91:43:09:d8:b6:c6:64:26:
cd:6e:04:1b:46:30:28:52:6c:29:c5:6d:5c:76:14:a4:fe:17:
c0:22:ff:86:08:9f:41:71:05:a1:0d:cf:a9:8c:c0:95:c9:d6:
c7:5e:3a:4c:41:e9:b5:7c:3f:ab:d7:36:e8:3e:2f:86:91:62:
e3:79:47:54:04:25:7b:eb:cb:10:3c:9c:fd:45:20:82:15:3b:
24:d4:32:ed:a2:53:45:00:3d:2a:3a:5e:7f:16:4f:e4:92:ed:
b9:2a:15:fb:83:f0:71:d0:04:c5:b7:25:2b:e9:49:38:9d:00:
a2:d8:55:e8:e8:f4:5e:9a:82:58:6f:e8:7b:51:7d:b2:11:b2:
d4:28:99:22:94:e9:4e:9f:15:86:b3:b9:31:27:23:d2:fe:d0:
85:cd:53:48:ae:d4:f7:6e:ef:11:98:49:b7:00:e1:b4:2a:0f:
fd:44:41:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:53 2023 by rpki-client on console-ams.rpki-client.org