Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/MhLpP-RdgmxOhWL12vx1cdEeUbQ.roa
File: MhLpP-RdgmxOhWL12vx1cdEeUbQ.roa (raw, json)
Hash identifier: vVf44oFIRy/d7bOF3Dh2dUzTDLeQ/ptlBlKz+pfrtyA=
Subject key identifier: 32:12:E9:3F:E4:5D:82:6C:4E:85:62:F5:DA:FC:75:71:D1:1E:51:B4
Certificate issuer: /CN=64d4e8723450d0a710c32d90ffea18529104e538
Certificate serial: 018770D179B4978253BD89865B802E480653
Authority key identifier: 64:D4:E8:72:34:50:D0:A7:10:C3:2D:90:FF:EA:18:52:91:04:E5:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNTocjRQ0KcQwy2Q_-oYUpEE5Tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/MhLpP-RdgmxOhWL12vx1cdEeUbQ.roa
Signing time: Tue 11 Apr 2023 14:56:29 +0000
ROA not before: Tue 11 Apr 2023 14:56:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21100
IP address blocks: 193.203.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:d1:79:b4:97:82:53:bd:89:86:5b:80:2e:48:06:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d4e8723450d0a710c32d90ffea18529104e538
Validity
Not Before: Apr 11 14:56:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3212e93fe45d826c4e8562f5dafc7571d11e51b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9c:c8:dd:9a:df:52:85:8b:fc:ba:6b:a9:2a:
e9:86:41:6a:27:ea:0b:f6:5c:b0:e3:66:73:15:77:
e8:ed:71:45:ad:ba:9c:06:12:fb:c8:50:55:25:cd:
e1:70:43:c9:b5:e1:45:d6:3a:11:0f:a1:03:b1:c6:
67:6a:ed:35:56:de:e9:d2:0e:e1:d1:85:29:de:70:
1c:d0:61:28:32:ae:02:20:59:3f:4e:5c:47:d9:6a:
e6:9d:6e:b9:21:52:95:9f:31:3c:aa:e6:93:0d:04:
a0:7c:36:63:af:2e:34:ea:8c:f3:a8:65:b0:76:56:
cf:2c:df:09:cd:a6:23:db:b4:f4:00:88:4b:82:11:
7e:8a:46:c0:94:fa:29:c3:ad:72:23:ee:69:72:87:
c8:62:03:cf:49:03:9c:e3:5c:93:42:c7:bb:ce:61:
70:c5:d1:da:d3:63:25:dc:d5:b2:4a:16:5d:04:de:
a8:ef:cf:d0:e8:e0:69:92:f5:6e:7c:52:0c:14:5b:
52:fa:39:c3:a7:e3:41:0c:03:dc:c8:8c:33:59:fb:
9f:fc:18:16:19:2f:83:16:4c:b4:85:5c:1e:48:dd:
b8:af:d0:75:e8:14:98:e7:fb:86:72:85:b9:dd:6b:
56:22:85:44:61:4f:32:20:ce:df:27:88:bb:cc:ca:
9d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:12:E9:3F:E4:5D:82:6C:4E:85:62:F5:DA:FC:75:71:D1:1E:51:B4
X509v3 Authority Key Identifier:
keyid:64:D4:E8:72:34:50:D0:A7:10:C3:2D:90:FF:EA:18:52:91:04:E5:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNTocjRQ0KcQwy2Q_-oYUpEE5Tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/MhLpP-RdgmxOhWL12vx1cdEeUbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/ZNTocjRQ0KcQwy2Q_-oYUpEE5Tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.50.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c7:d2:d6:ce:ea:2d:a4:0b:06:35:26:9c:61:09:ea:97:da:
d4:33:eb:ee:aa:98:95:0f:11:4a:11:23:0a:20:44:5e:e0:39:
65:85:e2:5e:4a:f7:6a:6e:fd:ae:96:46:a1:e5:45:de:17:68:
94:01:61:f6:76:1a:82:31:23:16:a2:18:ce:a8:2d:e6:26:a6:
9e:20:68:f2:9b:13:e8:70:c2:89:ad:1b:aa:51:11:14:51:04:
4e:01:b4:21:fc:45:06:9c:36:6d:d5:0f:5e:a6:07:9b:5e:ba:
87:58:50:45:c5:7f:2b:04:11:ff:7d:b2:a6:52:32:4b:07:59:
3e:0b:53:fa:fe:3a:ae:04:fd:1a:3d:17:11:c8:21:74:2e:24:
e8:db:ef:1f:40:f7:e8:cc:c2:0d:50:69:b1:5d:62:77:a7:24:
22:f9:82:32:a2:c9:9b:d8:0a:ac:52:fe:7c:61:36:36:0e:f6:
c3:04:94:3d:20:06:4d:e7:e1:45:39:23:24:ed:a9:68:06:93:
1b:81:71:90:46:81:01:64:4a:be:7e:1a:b2:07:dc:6c:d5:50:
79:e1:43:6d:d0:95:70:6f:27:78:16:cc:47:ca:55:d4:d2:44:
11:e1:e2:9a:8c:e0:a0:ee:d4:bc:6f:5c:11:df:67:34:d0:04:
fd:a6:3e:1f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdw0Xm0l4JTvYmGW4AuSAZTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZDRlODcyMzQ1MGQwYTcxMGMzMmQ5MGZmZWExODUyOTEw
NGU1MzgwHhcNMjMwNDExMTQ1NjI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjEyZTkzZmU0NWQ4MjZjNGU4NTYyZjVkYWZjNzU3MWQxMWU1MWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJzI3ZrfUoWL/LprqSrphkFqJ+oL
9lyw42ZzFXfo7XFFrbqcBhL7yFBVJc3hcEPJteFF1joRD6EDscZnau01Vt7p0g7h
0YUp3nAc0GEoMq4CIFk/TlxH2WrmnW65IVKVnzE8quaTDQSgfDZjry406ozzqGWw
dlbPLN8JzaYj27T0AIhLghF+ikbAlPopw61yI+5pcofIYgPPSQOc41yTQse7zmFw
xdHa02Ml3NWyShZdBN6o78/Q6OBpkvVufFIMFFtS+jnDp+NBDAPcyIwzWfuf/BgW
GS+DFky0hVweSN24r9B16BSY5/uGcoW53WtWIoVEYU8yIM7fJ4i7zMqdUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDIS6T/kXYJsToVi9dr8dXHRHlG0MB8GA1UdIwQY
MBaAFGTU6HI0UNCnEMMtkP/qGFKRBOU4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk5Ub2NqUlEwS2NRd3kyUV8tb1lVcEVFNVRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8yMzEwYjEtOTZhMS00OGU0LWFhNzIt
NDIyYWVkM2E3NzAyLzEvTWhMcFAtUmRnbXhPaFdMMTJ2eDFjZEVlVWJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8yMzEwYjEtOTZhMS00OGU0LWFhNzItNDIyYWVkM2E3NzAy
LzEvWk5Ub2NqUlEwS2NRd3kyUV8tb1lVcEVFNVRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcsyMA0G
CSqGSIb3DQEBCwUAA4IBAQBXx9LWzuotpAsGNSacYQnql9rUM+vuqpiVDxFKESMK
IERe4DllheJeSvdqbv2ulkah5UXeF2iUAWH2dhqCMSMWohjOqC3mJqaeIGjymxPo
cMKJrRuqUREUUQROAbQh/EUGnDZt1Q9epgebXrqHWFBFxX8rBBH/fbKmUjJLB1k+
C1P6/jquBP0aPRcRyCF0LiTo2+8fQPfozMINUGmxXWJ3pyQi+YIyosmb2AqsUv58
YTY2DvbDBJQ9IAZN5+FFOSMk7aloBpMbgXGQRoEBZEq+fhqyB9xs1VB54UNt0JVw
byd4FsxHylXU0kQR4eKajOCg7tS8b1wR32c00AT9pj4f
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:34:37 2025 by rpki-client