Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/50f4f7-49cc-4c82-9324-a9d7ad442b3b/1/mlmiH6LpKb6GwOm1VSx_YbpiDjI.roa
File: mlmiH6LpKb6GwOm1VSx_YbpiDjI.roa (raw, json)
Hash identifier: 6EGRlb9430OdFpZbmaTRr/m/rdOMGgxdu7MXE3sHBRA=
Subject key identifier: 9A:59:A2:1F:A2:E9:29:BE:86:C0:E9:B5:55:2C:7F:61:BA:62:0E:32
Certificate issuer: /CN=62c66267943d413cdf760dc6850104c1c0fc1d65
Certificate serial: 018C86A9D6886FD29BE14DD15AD0BFC599D0
Authority key identifier: 62:C6:62:67:94:3D:41:3C:DF:76:0D:C6:85:01:04:C1:C0:FC:1D:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsZiZ5Q9QTzfdg3GhQEEwcD8HWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/50f4f7-49cc-4c82-9324-a9d7ad442b3b/1/mlmiH6LpKb6GwOm1VSx_YbpiDjI.roa
Signing time: Wed 20 Dec 2023 09:58:46 +0000
ROA not before: Wed 20 Dec 2023 09:58:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202108
IP address blocks: 89.31.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:a9:d6:88:6f:d2:9b:e1:4d:d1:5a:d0:bf:c5:99:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62c66267943d413cdf760dc6850104c1c0fc1d65
Validity
Not Before: Dec 20 09:58:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a59a21fa2e929be86c0e9b5552c7f61ba620e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:56:a6:2e:d8:13:4e:65:80:a3:59:ed:45:71:
ec:a2:df:9d:12:d1:92:18:33:0c:13:6d:80:a4:dc:
d9:99:df:b9:6b:51:4c:8e:c5:b6:9e:cb:01:4c:4a:
d1:ff:dc:a2:ef:84:22:7f:6b:3f:bc:f6:97:72:3f:
01:c6:df:b5:d7:44:cb:1c:20:2d:34:a5:9a:9e:14:
1b:89:c6:e1:1b:3b:90:81:aa:c2:c6:5f:43:20:56:
0e:42:c8:35:44:f8:e1:f4:c4:63:17:52:de:07:13:
40:e4:6c:6c:ba:75:ee:ef:ee:8e:71:70:68:f0:a5:
11:cb:32:18:75:67:47:8c:1d:28:0e:83:b7:08:fa:
da:ad:be:60:21:0d:bd:7a:b8:01:32:06:7c:1e:d5:
8c:29:45:cd:e5:d2:3c:6a:c1:17:7d:cb:84:37:e4:
af:55:bb:1f:7d:77:ca:7a:cf:f9:dd:98:ef:97:28:
0a:1a:03:95:2f:d8:00:3c:01:8a:8d:70:54:3c:74:
84:20:01:9f:ab:53:02:2b:b5:99:84:93:11:18:6e:
7e:f7:c6:9d:90:fc:cf:44:b6:73:01:71:c7:53:c6:
93:f5:72:b0:ad:f9:18:15:e4:83:67:1c:32:8e:02:
4a:89:b7:72:b4:9d:1d:8f:fa:ca:de:01:32:1b:8c:
38:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:59:A2:1F:A2:E9:29:BE:86:C0:E9:B5:55:2C:7F:61:BA:62:0E:32
X509v3 Authority Key Identifier:
keyid:62:C6:62:67:94:3D:41:3C:DF:76:0D:C6:85:01:04:C1:C0:FC:1D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsZiZ5Q9QTzfdg3GhQEEwcD8HWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/50f4f7-49cc-4c82-9324-a9d7ad442b3b/1/mlmiH6LpKb6GwOm1VSx_YbpiDjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/50f4f7-49cc-4c82-9324-a9d7ad442b3b/1/YsZiZ5Q9QTzfdg3GhQEEwcD8HWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.31.138.0/24
Signature Algorithm: sha256WithRSAEncryption
62:be:31:a4:89:9b:88:df:99:48:4e:eb:b0:c2:b5:e0:ef:b0:
35:cb:09:eb:88:cf:de:8d:af:2b:cb:41:92:96:25:ab:08:1e:
65:cb:ad:07:6e:0b:5f:8f:0d:cb:5a:2d:08:ac:86:f3:41:c3:
42:2a:f2:24:4f:75:04:96:37:80:19:c3:1c:1f:1c:50:de:0b:
77:d9:b2:58:3c:46:e2:2a:0a:fc:10:02:c0:92:5f:6d:5d:c9:
9e:3c:0f:af:82:4a:00:b6:da:44:f8:7e:0d:d2:6e:1c:f9:04:
16:38:72:5e:71:79:6d:71:9c:25:98:01:29:93:11:e7:f4:b3:
a9:c3:29:92:0a:be:ff:63:f3:f6:ae:f6:fb:19:33:bb:2f:6a:
5f:3a:22:37:15:f0:db:ec:17:d5:f3:c4:65:82:47:d1:51:97:
d7:22:4a:10:b4:65:2f:8e:01:46:f0:2c:54:41:50:70:ec:21:
f8:52:16:45:fc:5f:d5:af:e3:32:f7:a3:06:87:d1:71:09:7a:
18:ee:47:9a:d7:d9:85:36:99:dc:00:89:9a:9c:6e:a9:37:32:
dd:96:51:80:dd:6f:b4:63:a3:50:b4:69:2c:2b:3c:d2:40:9c:
28:31:33:da:09:9f:c9:22:8e:62:d3:2f:80:a1:69:cb:b1:1b:
bb:42:ed:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyGqdaIb9Kb4U3RWtC/xZnQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYzY2MjY3OTQzZDQxM2NkZjc2MGRjNjg1MDEwNGMxYzBm
YzFkNjUwHhcNMjMxMjIwMDk1ODQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTU5YTIxZmEyZTkyOWJlODZjMGU5YjU1NTJjN2Y2MWJhNjIwZTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1amLtgTTmWAo1ntRXHsot+dEtGS
GDMME22ApNzZmd+5a1FMjsW2nssBTErR/9yi74Qif2s/vPaXcj8Bxt+110TLHCAt
NKWanhQbicbhGzuQgarCxl9DIFYOQsg1RPjh9MRjF1LeBxNA5GxsunXu7+6OcXBo
8KURyzIYdWdHjB0oDoO3CPrarb5gIQ29ergBMgZ8HtWMKUXN5dI8asEXfcuEN+Sv
VbsffXfKes/53ZjvlygKGgOVL9gAPAGKjXBUPHSEIAGfq1MCK7WZhJMRGG5+98ad
kPzPRLZzAXHHU8aT9XKwrfkYFeSDZxwyjgJKibdytJ0dj/rK3gEyG4w4wQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJpZoh+i6Sm+hsDptVUsf2G6Yg4yMB8GA1UdIwQY
MBaAFGLGYmeUPUE833YNxoUBBMHA/B1lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXNaaVo1UTlRVHpmZGczR2hRRUV3Y0Q4SFdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81MGY0ZjctNDljYy00YzgyLTkzMjQt
YTlkN2FkNDQyYjNiLzEvbWxtaUg2THBLYjZHd09tMVZTeF9ZYnBpRGpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81MGY0ZjctNDljYy00YzgyLTkzMjQtYTlkN2FkNDQyYjNi
LzEvWXNaaVo1UTlRVHpmZGczR2hRRUV3Y0Q4SFdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWR+KMA0G
CSqGSIb3DQEBCwUAA4IBAQBivjGkiZuI35lITuuwwrXg77A1ywnriM/eja8ry0GS
liWrCB5ly60Hbgtfjw3LWi0IrIbzQcNCKvIkT3UEljeAGcMcHxxQ3gt32bJYPEbi
Kgr8EALAkl9tXcmePA+vgkoAttpE+H4N0m4c+QQWOHJecXltcZwlmAEpkxHn9LOp
wymSCr7/Y/P2rvb7GTO7L2pfOiI3FfDb7BfV88RlgkfRUZfXIkoQtGUvjgFG8CxU
QVBw7CH4UhZF/F/Vr+My96MGh9FxCXoY7kea19mFNpncAImanG6pNzLdllGA3W+0
Y6NQtGksKzzSQJwoMTPaCZ/JIo5i0y+AoWnLsRu7Qu2x
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:59 2025 by rpki-client