Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/mIMiKkoco4Wz9xVfTL6I1xHv2Ts.roa
File: mIMiKkoco4Wz9xVfTL6I1xHv2Ts.roa (raw, json)
Hash identifier: 3S4DTYMSrCt37ptaeDaCpN81xMkhVZNe7dl6J3RCIQ0=
Subject key identifier: 98:83:22:2A:4A:1C:A3:85:B3:F7:15:5F:4C:BE:88:D7:11:EF:D9:3B
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: CC0D
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/mIMiKkoco4Wz9xVfTL6I1xHv2Ts.roa
Signing time: Fri 16 Dec 2022 12:39:02 +0000
ROA not before: Fri 16 Dec 2022 12:39:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a0e:b240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52237 (0xcc0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Dec 16 12:39:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9883222A4A1CA385B3F7155F4CBE88D711EFD93B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:62:5f:a8:a3:e8:b0:a1:bd:04:e9:72:25:1e:
f7:58:04:78:cd:fc:e0:eb:0e:ec:db:20:d9:52:96:
a0:db:33:35:4a:75:95:93:d6:27:76:92:21:94:64:
ba:45:f8:ef:39:db:e3:40:24:6d:6b:15:af:64:9d:
b7:fa:77:ba:6b:bb:2f:91:18:91:3b:e2:bb:0e:4f:
56:4b:d0:97:90:1d:c2:de:8f:b5:79:54:70:69:4a:
bb:5e:50:b4:c6:9e:35:2c:a4:65:1c:d6:fa:3a:d1:
5f:57:8a:f7:0e:8b:79:c3:92:27:81:1c:cd:6d:66:
09:96:62:48:b0:bf:de:5e:9c:2c:2d:33:90:f3:53:
08:ef:de:91:f2:60:c3:10:c2:0e:7a:c2:4c:ea:af:
55:0c:c7:e0:f0:43:a9:60:bb:25:6c:d8:95:e5:47:
8b:5f:79:36:6c:77:36:5e:41:c3:98:c0:21:c5:09:
24:ff:7c:27:a9:aa:0e:29:dd:0e:bb:1a:44:f9:f1:
b0:ae:64:e3:f5:ad:88:65:d1:ac:1f:65:d8:1d:c6:
b4:ad:94:89:cf:cc:a6:5a:f9:64:08:93:74:67:51:
a6:ff:2a:b3:8c:c3:79:e6:9e:2e:1f:e0:70:2a:51:
5d:af:7e:f6:31:f9:a9:1a:9c:f4:74:31:c2:df:15:
0d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:83:22:2A:4A:1C:A3:85:B3:F7:15:5F:4C:BE:88:D7:11:EF:D9:3B
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/mIMiKkoco4Wz9xVfTL6I1xHv2Ts.roa
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b240::/48
Signature Algorithm: sha256WithRSAEncryption
34:42:18:53:6d:63:81:91:fd:c5:4a:02:ef:19:6d:2b:cc:59:
cc:d3:18:ea:9f:4c:c1:b0:df:42:d5:70:f7:32:1b:c3:3b:4a:
c5:45:e5:03:d4:e8:6b:82:b5:00:88:38:07:15:03:5d:93:e4:
81:c5:32:92:30:0d:f8:72:24:2c:01:48:e9:b9:6f:26:5e:37:
bb:1b:6b:b7:be:8d:f2:1b:3d:22:9a:38:fd:88:1a:44:a4:b1:
25:46:8d:cb:b0:7f:8d:7c:bd:c3:9f:07:9d:2f:c7:b8:cd:42:
79:67:0b:13:bd:6b:ff:77:fd:39:7e:0c:7b:ab:8a:23:dd:2e:
1a:64:d8:a6:fb:94:2b:65:4f:34:e5:56:ba:fb:c4:ab:db:c3:
d3:94:ee:a3:95:96:6d:68:1c:aa:dc:d8:e1:f8:ab:4b:d7:4d:
32:9d:21:d9:19:b5:4e:1e:31:36:9a:ed:32:72:57:84:20:4c:
3f:0c:ce:f9:56:e2:2d:69:32:78:70:31:29:37:78:1a:60:2d:
ee:52:7f:0a:ed:29:db:00:bf:9f:79:41:3a:a4:57:6d:be:b7:
96:b0:c3:11:31:1c:26:54:15:f4:02:40:dd:0a:41:94:96:f6:
48:5e:c9:e9:ce:93:c7:85:5d:17:64:cc:c4:fa:08:9f:52:a1:
58:b5:fd:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:53 2023 by rpki-client on console-ams.rpki-client.org