Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/2da43d-3997-40a6-accd-f6fd6bd857b8/1/MobyhcXQwcfKuv4Ogi169-PCXvk.roa
File: MobyhcXQwcfKuv4Ogi169-PCXvk.roa (raw, json)
Hash identifier: 4IZK3+1siqGdn00f5uT1MHp74ba/TNsKdOpV/FQOWMg=
Subject key identifier: 32:86:F2:85:C5:D0:C1:C7:CA:BA:FE:0E:82:2D:7A:F7:E3:C2:5E:F9
Certificate issuer: /CN=44d2e7578aac94f42960a780d3996da8bb469477
Certificate serial: A957
Authority key identifier: 44:D2:E7:57:8A:AC:94:F4:29:60:A7:80:D3:99:6D:A8:BB:46:94:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RNLnV4qslPQpYKeA05ltqLtGlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/2da43d-3997-40a6-accd-f6fd6bd857b8/1/MobyhcXQwcfKuv4Ogi169-PCXvk.roa
Signing time: Tue 26 Apr 2022 20:36:28 +0000
ROA not before: Tue 26 Apr 2022 20:36:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47388
IP address blocks: 46.174.144.0/21 maxlen: 24
91.206.36.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43351 (0xa957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44d2e7578aac94f42960a780d3996da8bb469477
Validity
Not Before: Apr 26 20:36:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3286f285c5d0c1c7cabafe0e822d7af7e3c25ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a9:6c:66:33:cb:c4:68:03:93:fb:20:9a:10:
1d:0d:d6:d5:36:b5:55:b1:4c:6a:e1:0c:5c:42:36:
1f:fd:d1:83:99:4d:fd:81:33:81:1e:84:64:e0:f4:
35:8a:2a:4d:68:be:8e:64:ad:ef:37:b2:7b:fd:1c:
29:07:9a:27:73:dc:9a:3a:1a:93:d4:59:a1:be:05:
cb:e6:aa:d7:3d:70:f5:95:23:cc:fa:fb:00:2a:37:
04:c9:24:52:d8:09:43:00:a0:08:86:0f:f2:18:0d:
03:4b:d6:da:4a:22:d0:ee:bd:e8:0c:7d:c4:d6:59:
3c:f7:9a:5f:90:85:11:62:f2:3d:5c:bc:14:b7:e7:
f0:ac:33:bd:32:18:c2:c8:f5:fb:38:83:a1:2c:dc:
81:ff:a7:0e:c9:17:29:65:4a:a3:8d:1c:e7:14:bb:
7b:62:f7:c0:93:77:23:97:e6:9c:a8:b9:c2:86:2a:
c5:c9:1e:6c:87:32:61:07:c3:94:1b:ce:24:12:82:
48:2f:53:e1:4a:7a:5c:2c:2f:f4:4d:5b:25:87:23:
fd:cd:5e:ad:a0:d3:50:df:37:84:30:43:c1:82:be:
b8:42:10:5e:bc:20:3f:31:24:75:c1:37:81:02:1f:
15:69:1f:c2:30:51:ea:d5:f4:90:3e:ea:75:55:82:
5b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:86:F2:85:C5:D0:C1:C7:CA:BA:FE:0E:82:2D:7A:F7:E3:C2:5E:F9
X509v3 Authority Key Identifier:
keyid:44:D2:E7:57:8A:AC:94:F4:29:60:A7:80:D3:99:6D:A8:BB:46:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RNLnV4qslPQpYKeA05ltqLtGlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/2da43d-3997-40a6-accd-f6fd6bd857b8/1/MobyhcXQwcfKuv4Ogi169-PCXvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/2da43d-3997-40a6-accd-f6fd6bd857b8/1/RNLnV4qslPQpYKeA05ltqLtGlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.144.0/21
91.206.36.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:73:6f:2d:38:3d:be:91:df:58:5a:cc:4c:5c:8d:ac:03:7b:
e1:88:d9:80:7e:b5:52:cc:5b:a8:97:b4:92:ce:98:1d:1c:ad:
d4:d1:c1:92:77:27:74:84:3b:16:03:6d:29:fe:02:2c:67:fb:
ec:3f:9a:b5:85:2e:8d:c7:6f:e9:98:43:87:af:3e:90:ca:04:
aa:b8:16:50:43:de:2a:30:ce:e9:de:7c:ee:76:94:27:90:8b:
da:1e:06:6a:6b:26:44:a3:39:8a:c4:3a:6e:44:8b:12:52:86:
0a:7f:ab:5f:f5:1c:17:fd:20:c8:78:bd:a0:b7:fe:ef:c4:43:
07:c6:a5:e2:af:5e:1c:52:99:4a:73:e7:72:de:f0:d5:70:58:
b5:e6:46:18:d3:3c:fb:80:7b:26:67:19:c6:1e:4a:5b:7d:35:
16:fb:9c:bb:cd:55:7b:17:d9:76:3e:5a:ae:8b:f9:17:c6:65:
76:d5:e8:ad:3d:91:12:27:84:dd:83:9f:c2:0c:b0:48:51:17:
22:c0:7c:0a:56:ea:79:46:a5:d1:c5:3d:8c:6a:75:36:6e:a5:
32:7f:a5:f3:71:15:69:11:37:55:b6:ab:53:fb:76:c7:18:f3:
79:50:da:5d:47:13:63:7c:ac:50:cc:10:14:55:a2:84:e1:fd:
a1:b9:08:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:18 2023 by rpki-client on console.sobornost.net