Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/kYFUWK5_co5oHSo5qTRfY13lGBs.roa
File: kYFUWK5_co5oHSo5qTRfY13lGBs.roa (raw, json)
Hash identifier: 76cbpFB8tnrW1rX+WcVhT0/cEMYAzKsK0ulP1xDQ03M=
Subject key identifier: 91:81:54:58:AE:7F:72:8E:68:1D:2A:39:A9:34:5F:63:5D:E5:18:1B
Certificate issuer: /CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Certificate serial: 06E5FB84
Authority key identifier: 36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/kYFUWK5_co5oHSo5qTRfY13lGBs.roa
Signing time: Sat 01 Jan 2022 08:05:55 +0000
ROA not before: Sat 01 Jan 2022 08:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39591
IP address blocks: 91.233.206.0/23 maxlen: 24
91.233.207.0/24 maxlen: 24
2001:678:c30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115735428 (0x6e5fb84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Validity
Not Before: Jan 1 08:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91815458ae7f728e681d2a39a9345f635de5181b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b2:3d:0c:10:2a:78:cf:e1:af:32:8a:65:cb:
ed:93:d6:15:79:de:73:1f:1e:92:e8:a6:d2:43:7e:
84:98:63:8e:61:b9:f8:40:e6:ee:a2:03:ab:d6:06:
b0:20:fb:7d:10:c8:d5:a4:85:a6:52:1a:b9:a4:65:
a9:9a:1e:02:f4:b1:be:c1:7f:65:da:9b:ac:13:13:
da:33:60:a4:81:fa:56:67:93:94:81:d9:6f:ad:c9:
2e:37:e2:45:c7:10:e7:d4:e7:e4:a5:62:69:98:d7:
cd:f7:6c:00:1a:e6:3a:36:46:39:14:9b:ca:0f:19:
a6:92:e2:75:94:58:ac:84:df:83:87:55:c8:b6:ff:
c7:da:c8:c2:6b:fd:08:99:65:2f:4d:db:58:65:cc:
e1:27:03:f7:d0:31:7b:ee:30:47:6e:71:95:48:e9:
2b:8e:9b:71:6c:65:45:78:ea:ec:14:82:1c:90:d8:
7b:59:a1:79:48:4d:89:e5:b2:3c:d4:26:95:de:2d:
b8:93:3e:dc:9d:b3:3a:37:76:09:99:f4:9f:92:6b:
bc:3b:8b:a6:07:eb:a4:88:b4:eb:5a:25:f8:a9:43:
dc:fd:8c:3e:6b:0a:d5:e1:40:f3:f5:b2:3e:5c:67:
ef:c3:f0:1a:19:ed:82:3c:9c:c0:a4:a3:13:9d:60:
07:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:81:54:58:AE:7F:72:8E:68:1D:2A:39:A9:34:5F:63:5D:E5:18:1B
X509v3 Authority Key Identifier:
keyid:36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/kYFUWK5_co5oHSo5qTRfY13lGBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.206.0/23
IPv6:
2001:678:c30::/48
Signature Algorithm: sha256WithRSAEncryption
46:a1:92:83:be:0a:2b:e2:19:72:f7:38:65:fd:3e:ee:04:fe:
fe:c7:4a:12:97:c9:25:31:a6:64:c7:fa:94:62:41:bf:c4:87:
38:41:34:53:3c:8b:ab:6e:8c:5c:ae:ea:43:08:52:72:2d:1c:
1a:83:a2:e6:f6:a3:22:cb:75:51:80:da:fb:ad:6d:4e:e5:6a:
fc:5a:2c:c3:3c:b3:56:2a:05:4a:11:4c:3f:b5:1e:52:0f:b7:
b6:6a:c6:79:dd:0b:68:78:0e:14:8a:ac:7f:c8:ff:c1:20:2e:
60:7d:2d:a3:45:71:ff:f0:3a:ab:c4:b6:5c:50:e2:3c:89:02:
80:c2:0e:18:ca:af:fb:c1:5d:1a:58:53:8d:cd:6d:7b:01:75:
61:5f:2e:99:e1:ef:bc:a9:d0:48:ef:38:a5:2f:a3:e5:6e:99:
01:5b:8d:df:87:29:c2:e8:49:bf:c8:83:d5:df:cf:c1:89:7a:
c6:94:19:7a:d5:1d:70:bf:3a:5c:d2:98:37:20:1c:96:1a:a8:
47:1b:f7:3d:f7:60:2d:9b:31:57:38:4a:3e:bb:aa:3f:59:b5:
d2:e0:b6:8c:1f:cf:f0:9d:56:88:33:9d:41:a0:9f:4f:9c:d2:
66:14:31:63:cf:b4:c0:05:7f:c4:6d:f8:0e:81:a8:38:b4:40:
9a:98:fd:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 07:48:15 2025 by rpki-client