Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MOBG2CDIYMQV81Fr-4Sv5o96UT8.roa
File: MOBG2CDIYMQV81Fr-4Sv5o96UT8.roa (raw, json)
Hash identifier: aC1i9AcXO0ALRE0VhQ1dsLI9Yvly51NN9UH772agkJE=
Subject key identifier: 30:E0:46:D8:20:C8:60:C4:15:F3:51:6B:FB:84:AF:E6:8F:7A:51:3F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183CE6570029848DBAE582FAF744E4FBCC0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MOBG2CDIYMQV81Fr-4Sv5o96UT8.roa
Signing time: Wed 12 Oct 2022 22:51:37 +0000
ROA not before: Wed 12 Oct 2022 22:51:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39526
IP address blocks: 2a10:2f01:380::/42 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ce:65:70:02:98:48:db:ae:58:2f:af:74:4e:4f:bc:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 12 22:51:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30e046d820c860c415f3516bfb84afe68f7a513f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:da:07:3a:b7:d2:63:3d:88:ac:04:f0:9a:67:
21:cc:dc:d4:06:92:15:50:53:b2:31:57:cd:2b:18:
2f:0b:3d:da:8e:81:8d:e8:86:8d:db:87:ef:2f:91:
ca:bf:d8:77:72:d2:a1:6e:b9:d9:1f:4a:59:5d:0e:
62:78:17:80:b5:3d:de:25:ef:e0:df:46:73:63:e1:
46:c9:74:93:d2:d0:75:11:c1:7f:58:cf:44:dc:26:
7c:49:38:76:fa:0b:c4:7a:75:cb:9d:44:90:88:70:
00:87:25:e7:ff:69:4d:e3:c2:e7:18:44:c6:b9:9a:
81:d4:58:89:93:d5:2b:a0:fb:d0:98:87:d8:0b:95:
2b:f6:2e:d4:56:b4:50:00:7e:51:16:23:b3:0f:11:
84:74:7f:58:eb:c0:7c:70:74:e3:76:0e:3f:fd:b2:
bf:d1:3b:8b:3b:a4:33:e8:9a:5b:4e:1a:54:24:e0:
76:b8:31:6d:dc:a8:30:b3:5c:3b:28:36:67:4e:6d:
03:f3:d3:8f:ad:8b:75:f2:77:91:d1:b2:ea:5a:06:
5a:57:35:c8:42:75:82:42:c5:46:95:fd:ce:ed:d7:
ab:ae:8f:39:50:a4:66:25:2a:99:34:ec:cf:07:e7:
6e:fb:51:76:0a:08:00:b1:00:c5:15:0c:58:65:05:
04:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E0:46:D8:20:C8:60:C4:15:F3:51:6B:FB:84:AF:E6:8F:7A:51:3F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MOBG2CDIYMQV81Fr-4Sv5o96UT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f01:380::/42
Signature Algorithm: sha256WithRSAEncryption
46:18:02:de:09:56:e7:2e:b0:5c:7d:8e:3c:6b:bb:75:18:b5:
31:27:51:22:fc:d5:80:91:95:4a:27:d5:bd:d8:bc:ac:d6:89:
57:85:72:ed:54:e6:27:3b:e0:a4:cd:86:a9:57:24:c8:77:db:
6b:c4:47:8a:ff:ed:73:07:86:9c:34:85:f4:f6:3a:1d:6e:69:
66:51:81:e4:7a:48:fa:22:8c:68:a3:1b:65:73:e1:85:a3:29:
6a:e9:5d:7e:dd:3e:37:e8:5f:fa:32:1c:99:a8:e1:6f:8c:1c:
7c:9b:81:42:5c:99:63:1c:49:2f:f8:ef:d2:cc:0a:17:c1:80:
6d:53:e4:7b:c6:94:11:f4:fe:14:5e:a2:e2:f7:de:b3:5e:73:
8a:89:89:7e:c5:db:cb:53:95:28:52:79:85:f3:62:5d:9d:4e:
c6:e7:09:8c:71:e8:d5:de:62:1e:e7:e5:fc:a2:b4:ba:f6:fa:
2f:fd:56:36:aa:90:ad:38:98:8a:2c:8c:04:5f:22:72:4b:58:
56:fd:62:b0:1f:f0:28:cb:2b:60:77:b3:ee:ca:21:e9:96:a2:
d1:37:d1:a8:c5:2d:49:0a:f1:37:da:43:69:56:03:a6:69:cd:
68:05:cd:2e:d7:49:1e:62:68:ac:cb:52:0e:a1:68:5c:47:d4:
15:30:be:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:01 2024 by rpki-client on console-ams.rpki-client.org