Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/cyvRpg4cu1sIfIdb2VaJwYkYs_0.roa
File: cyvRpg4cu1sIfIdb2VaJwYkYs_0.roa (raw, json)
Hash identifier: 8fc5lwb5gOMrJ73nDFKEJdvw10l8FJBOKOMa9pzmp/Y=
Subject key identifier: 73:2B:D1:A6:0E:1C:BB:5B:08:7C:87:5B:D9:56:89:C1:89:18:B3:FD
Certificate issuer: /CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Certificate serial: 9E86A5
Authority key identifier: F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/cyvRpg4cu1sIfIdb2VaJwYkYs_0.roa
Signing time: Sat 01 Jan 2022 03:57:08 +0000
ROA not before: Sat 01 Jan 2022 03:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15511
IP address blocks: 185.115.103.0/24 maxlen: 24
185.115.102.0/24 maxlen: 24
185.115.101.0/24 maxlen: 24
185.115.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10389157 (0x9e86a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Validity
Not Before: Jan 1 03:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=732bd1a60e1cbb5b087c875bd95689c18918b3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4a:42:02:21:98:d5:cb:d1:b7:02:03:16:15:
5d:66:c4:7d:fd:a3:0a:d2:e1:5e:aa:89:fe:12:c3:
7e:33:ef:14:f9:28:c1:f1:b8:83:44:db:11:52:93:
d7:06:a7:d0:39:08:34:e4:ad:e6:01:94:c7:c4:20:
74:a5:8b:86:38:e2:07:c9:f8:51:a1:6a:46:0d:35:
ad:e9:7c:11:42:86:93:91:6b:e5:54:29:55:18:cc:
ee:f2:a5:3b:95:c3:d5:f4:a9:83:87:cf:08:d9:3a:
9d:e6:23:94:55:ea:86:5a:d1:07:08:d5:5f:73:e2:
03:ee:57:eb:e8:fc:47:31:a7:9e:78:6f:de:f4:8f:
36:a1:46:9c:e6:98:c2:28:67:db:b5:ad:41:62:4a:
ab:7c:32:13:2c:fe:36:e3:80:22:8a:74:2c:e8:d7:
5c:c6:26:b2:54:be:ad:ed:53:3c:ad:41:4b:c9:9d:
f2:35:f3:58:ec:aa:98:f5:7e:9c:c4:ed:28:e4:b1:
ea:7c:34:3e:4b:4c:69:a3:15:8f:54:4a:5e:8a:4e:
ec:d5:52:33:95:8a:b5:48:ac:63:b5:15:2e:70:34:
62:38:9a:08:f1:5c:a1:b7:6e:54:a5:33:bc:c9:34:
c9:2d:1d:8c:ab:1d:c0:86:ab:75:63:ba:26:8e:01:
e0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2B:D1:A6:0E:1C:BB:5B:08:7C:87:5B:D9:56:89:C1:89:18:B3:FD
X509v3 Authority Key Identifier:
keyid:F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/cyvRpg4cu1sIfIdb2VaJwYkYs_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.100.0/22
Signature Algorithm: sha256WithRSAEncryption
72:bf:fa:5f:57:56:8b:41:57:e0:37:ed:0d:60:2f:83:de:c3:
b3:9c:58:6f:1b:27:57:c8:3b:02:de:31:01:1f:fe:5a:eb:40:
ef:30:af:83:cb:09:15:c3:15:10:a0:79:0b:22:07:43:a9:3a:
53:47:45:30:89:54:2c:91:73:56:ba:19:f7:42:00:3b:f9:c9:
42:ea:3d:4d:1f:63:de:71:fa:bb:1c:57:2c:f2:19:b7:78:90:
44:1f:40:0e:53:7b:7f:f4:06:d4:42:ec:15:74:00:a1:a5:e8:
95:4e:74:35:dd:a8:37:18:05:d9:4b:99:11:e8:b2:ec:df:b2:
c4:e7:84:1c:a4:72:a2:d4:55:da:4f:d9:d3:8d:b9:ce:7c:78:
00:f5:24:ef:6c:6c:40:26:94:06:7e:7d:bc:1e:5f:ea:bb:cb:
57:1f:93:96:30:8e:45:80:4f:11:70:c2:97:fa:ac:3a:f1:9e:
c8:72:e4:83:40:c7:db:5b:87:0d:51:d2:ea:c2:0c:c7:24:2f:
b0:b7:39:81:41:24:55:f8:78:8f:1e:99:1b:07:62:8e:31:7d:
a4:76:28:60:4a:ca:05:03:c1:fa:48:39:65:5e:9b:b0:c9:d6:
2e:e0:d0:b8:99:8a:66:e2:e6:c1:4c:dd:c8:16:9c:39:86:43:
af:92:a9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 08:04:11 2025 by rpki-client