Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f8fb71-a7c7-4f92-8743-9c708dac1d92/1/Byp4Ng9TxLRNDB7mqiXcq7WiPwU.roa
File: Byp4Ng9TxLRNDB7mqiXcq7WiPwU.roa (raw, json)
Hash identifier: phwmb5IatdktuGW6nFJtUgPTjt5GcpJ7CgdxDQ+uEJ4=
Subject key identifier: 07:2A:78:36:0F:53:C4:B4:4D:0C:1E:E6:AA:25:DC:AB:B5:A2:3F:05
Certificate issuer: /CN=59007408bbf8ad9044de68046587c7589b72ebef
Certificate serial: 0185736853BE8383416D628F757CA67176D2
Authority key identifier: 59:00:74:08:BB:F8:AD:90:44:DE:68:04:65:87:C7:58:9B:72:EB:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WQB0CLv4rZBE3mgEZYfHWJty6-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f8fb71-a7c7-4f92-8743-9c708dac1d92/1/Byp4Ng9TxLRNDB7mqiXcq7WiPwU.roa
Signing time: Mon 02 Jan 2023 16:54:55 +0000
ROA not before: Mon 02 Jan 2023 16:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35407
IP address blocks: 91.213.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:53:be:83:83:41:6d:62:8f:75:7c:a6:71:76:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59007408bbf8ad9044de68046587c7589b72ebef
Validity
Not Before: Jan 2 16:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=072a78360f53c4b44d0c1ee6aa25dcabb5a23f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e7:b6:39:44:1d:6e:87:c1:cd:9d:28:9e:5a:
bd:b2:83:a3:2e:31:04:c6:24:c8:34:1e:f0:02:e7:
71:30:59:2b:0b:8f:fd:c4:e0:7f:06:67:ec:3b:83:
5e:25:a9:d0:43:f0:6c:3a:56:f7:8f:65:0e:31:b7:
8d:1d:7d:38:63:c3:d5:a4:c7:0c:db:a5:d3:ed:41:
07:a6:1b:5f:86:02:84:68:92:cc:d7:cf:df:5c:45:
e4:f6:0c:1c:f6:73:98:cb:37:4a:6e:7d:b3:64:b3:
df:d0:ec:0c:2d:44:aa:ef:95:7e:ab:ca:b8:c0:ca:
60:25:3b:2a:57:21:37:2a:d0:28:c7:37:45:57:fd:
cd:8c:29:17:1e:6f:98:8c:b4:19:70:3f:92:2d:23:
21:d0:7d:d8:15:0a:b0:d4:da:c0:31:b4:8d:9f:f6:
c4:5f:e8:2d:98:9d:42:56:17:bd:90:c8:6d:fa:07:
d7:31:66:ef:e9:8e:b5:ae:9f:0c:3c:d7:ed:00:bc:
2b:6a:c3:cc:94:5f:a7:e3:69:fa:93:4d:89:c7:30:
84:04:39:8f:0b:fd:82:80:3a:ac:5e:db:15:4f:11:
32:cd:db:0f:83:d1:29:87:6a:12:2c:a6:b8:cd:e9:
fe:f6:cf:91:ff:37:50:84:4f:87:d3:da:10:7a:03:
35:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2A:78:36:0F:53:C4:B4:4D:0C:1E:E6:AA:25:DC:AB:B5:A2:3F:05
X509v3 Authority Key Identifier:
keyid:59:00:74:08:BB:F8:AD:90:44:DE:68:04:65:87:C7:58:9B:72:EB:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WQB0CLv4rZBE3mgEZYfHWJty6-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f8fb71-a7c7-4f92-8743-9c708dac1d92/1/Byp4Ng9TxLRNDB7mqiXcq7WiPwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f8fb71-a7c7-4f92-8743-9c708dac1d92/1/WQB0CLv4rZBE3mgEZYfHWJty6-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.105.0/24
Signature Algorithm: sha256WithRSAEncryption
88:f9:45:1e:dd:57:e0:bb:e0:2f:e1:b3:a1:21:91:4e:7f:56:
3b:0f:65:7f:e1:90:c3:d5:9a:05:37:7e:c1:09:62:4a:f9:48:
41:eb:38:18:f4:54:4c:d2:41:8f:79:96:dd:4b:5b:a8:7d:d6:
e1:5e:dc:18:eb:ef:25:ee:76:b2:c2:b2:e7:9c:9f:b1:70:f3:
11:01:e9:f4:bf:08:99:0b:6d:b6:0f:1d:f4:c3:42:a1:c3:e3:
49:5b:a3:f9:03:b1:76:a1:d6:27:a6:ab:26:38:38:22:bb:fc:
6e:28:45:86:e9:8a:0e:bf:8c:f3:f3:37:ad:d2:10:1f:7d:7f:
ff:5f:bf:27:cf:f7:69:e2:14:66:a1:8c:ac:3b:d5:2a:1a:9e:
5e:2e:b4:e2:c2:94:1f:6f:9c:fe:fc:a0:a6:aa:50:c5:75:9d:
03:9f:70:81:af:98:5f:c1:62:5a:6e:91:7a:cd:2e:43:c2:61:
68:5f:ed:7d:c3:3b:2f:3f:a0:e8:f4:8b:00:df:9a:a4:d0:16:
8b:da:f1:52:b9:dc:f4:b6:5f:86:98:ee:63:74:78:0b:7f:88:
20:e5:7c:f9:53:2d:e4:e6:42:0d:aa:7f:61:d5:1d:96:b6:b7:
c4:bf:3a:64:ed:85:9c:5c:c3:1f:51:0c:69:6d:c8:df:b0:4f:
9e:cb:09:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:29 2025 by rpki-client