Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/99ba20-9bb7-4171-af56-dfe566411016/1/mgRZvI0-A6Cd-y5Mj45cHhxQ-NU.roa
File: mgRZvI0-A6Cd-y5Mj45cHhxQ-NU.roa (raw, json)
Hash identifier: GtHDG8jIaZ4mxCWmPreNDm28tRKUdJUdP1UjjHcBEEQ=
Subject key identifier: 9A:04:59:BC:8D:3E:03:A0:9D:FB:2E:4C:8F:8E:5C:1E:1C:50:F8:D5
Certificate issuer: /CN=c2e3fa87eb3169a7d2dd74453283021a2703c769
Certificate serial: 1051E526
Authority key identifier: C2:E3:FA:87:EB:31:69:A7:D2:DD:74:45:32:83:02:1A:27:03:C7:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wuP6h-sxaafS3XRFMoMCGicDx2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/99ba20-9bb7-4171-af56-dfe566411016/1/mgRZvI0-A6Cd-y5Mj45cHhxQ-NU.roa
Signing time: Sat 01 Jan 2022 05:02:11 +0000
ROA not before: Sat 01 Jan 2022 05:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44923
IP address blocks: 185.24.52.0/22 maxlen: 22
93.92.200.0/21 maxlen: 21
2a00:6f60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273802534 (0x1051e526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2e3fa87eb3169a7d2dd74453283021a2703c769
Validity
Not Before: Jan 1 05:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a0459bc8d3e03a09dfb2e4c8f8e5c1e1c50f8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:87:fa:7b:d0:1d:57:b5:1e:7e:f9:64:40:53:
ae:ef:2b:44:cb:ed:50:de:ce:dc:c3:74:56:29:88:
e0:09:ca:ee:b3:0f:c0:e9:a0:a8:78:e6:04:e1:59:
12:9b:3e:5e:0c:a6:5a:8d:39:22:56:55:3c:42:da:
5b:b1:65:e5:00:5d:95:6d:1a:2a:db:44:7d:41:d3:
ce:63:be:9a:15:76:d4:3d:97:cb:f7:5a:ce:3b:5d:
c3:db:e5:d5:58:23:b4:d3:87:51:29:fe:4f:b8:a2:
83:f8:2e:6a:39:3f:43:b7:c4:1e:4f:4e:c3:b3:90:
0b:e2:65:5c:85:23:e4:69:b1:ff:a2:94:23:0e:1a:
04:8a:18:26:25:54:08:06:6a:3b:2c:0b:a6:8b:72:
11:c1:6d:00:27:7f:a6:bb:d3:a4:76:7e:11:18:69:
9f:bd:b2:58:02:d5:97:5e:bd:2a:3d:a8:16:34:15:
e7:ae:88:46:28:79:a4:c4:e1:77:48:8d:05:99:bb:
d3:03:fa:a9:45:3d:51:a2:82:db:d1:48:eb:73:15:
41:21:67:4d:de:a6:2a:6f:96:20:fc:f1:49:8a:ca:
a7:e1:f6:a9:d9:92:cf:35:1c:a8:6f:49:cf:96:64:
87:43:0f:56:d9:79:ec:94:5e:00:cd:de:4f:2f:20:
38:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:04:59:BC:8D:3E:03:A0:9D:FB:2E:4C:8F:8E:5C:1E:1C:50:F8:D5
X509v3 Authority Key Identifier:
keyid:C2:E3:FA:87:EB:31:69:A7:D2:DD:74:45:32:83:02:1A:27:03:C7:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wuP6h-sxaafS3XRFMoMCGicDx2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/99ba20-9bb7-4171-af56-dfe566411016/1/mgRZvI0-A6Cd-y5Mj45cHhxQ-NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/99ba20-9bb7-4171-af56-dfe566411016/1/wuP6h-sxaafS3XRFMoMCGicDx2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.92.200.0/21
185.24.52.0/22
IPv6:
2a00:6f60::/32
Signature Algorithm: sha256WithRSAEncryption
be:47:43:a9:4d:cf:c5:15:c7:4d:9e:ea:a8:09:27:e6:1f:0c:
82:ef:09:19:26:20:9c:5a:71:b3:bb:d4:b7:bb:5f:32:59:4e:
b2:04:80:c4:90:6d:37:99:ca:38:49:69:44:44:b6:2a:d3:ae:
15:8b:2c:76:07:e3:62:c5:d7:2a:be:9f:64:02:78:e9:85:29:
73:f8:41:39:75:0b:c8:c6:b6:07:7c:05:81:97:c7:21:83:28:
a1:ec:a3:c2:82:1e:c1:91:26:a7:28:ab:b9:83:1f:43:bf:3d:
cc:ed:27:c1:e7:5e:85:15:e9:44:45:b6:95:0c:39:01:5b:d5:
81:a1:39:72:83:78:aa:70:0c:de:1f:b0:7e:5d:59:42:e4:19:
eb:47:fc:ab:89:d5:0c:f8:c7:85:a3:bc:9b:14:4c:de:59:20:
dd:0e:bc:ae:5d:ea:04:42:c1:49:33:1c:95:01:29:98:c1:35:
64:a9:ce:82:1b:4a:24:bf:46:ec:cd:4f:b2:21:01:25:91:30:
da:82:9d:c5:cb:a9:52:87:dd:83:a4:4a:f3:41:08:56:eb:10:
26:21:a4:05:b4:7d:ab:ee:d3:96:91:c9:d2:f5:46:69:4e:e5:
0d:b6:da:84:ce:e6:37:63:2d:6c:4a:61:3d:1e:98:56:6e:44:
be:5e:b8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 15:31:19 2025 by rpki-client