Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/bUHpureYRBvl7nzV9Hx5yebW1BA.roa
File: bUHpureYRBvl7nzV9Hx5yebW1BA.roa (raw, json)
Hash identifier: BtiEniF5aXb7bADBRCWOxtwYzxspyaiOllvq9G8cyOo=
Subject key identifier: 6D:41:E9:BA:B7:98:44:1B:E5:EE:7C:D5:F4:7C:79:C9:E6:D6:D4:10
Certificate issuer: /CN=8a16a5fac65ac5e9c5ebbfed71518cae0c1311c5
Certificate serial: 03AA78F2
Authority key identifier: 8A:16:A5:FA:C6:5A:C5:E9:C5:EB:BF:ED:71:51:8C:AE:0C:13:11:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihal-sZaxenF67_tcVGMrgwTEcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/bUHpureYRBvl7nzV9Hx5yebW1BA.roa
Signing time: Sat 01 Jan 2022 08:53:13 +0000
ROA not before: Sat 01 Jan 2022 08:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 194.113.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61503730 (0x3aa78f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a16a5fac65ac5e9c5ebbfed71518cae0c1311c5
Validity
Not Before: Jan 1 08:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d41e9bab798441be5ee7cd5f47c79c9e6d6d410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6c:4c:88:21:62:10:b0:05:9d:ad:22:94:d9:
75:a9:5c:d0:7c:09:71:a7:ad:ce:f4:21:98:9c:cf:
06:82:f0:7f:50:fd:85:1b:ed:a7:ad:66:6a:4b:55:
25:a2:65:f1:43:33:b2:b9:35:87:09:cc:bb:08:2c:
c7:e7:0a:c7:2c:ab:ef:42:72:b6:ce:f3:cd:04:d3:
30:b5:78:43:81:e4:a0:9a:3b:51:88:f6:66:db:68:
95:70:15:a4:6b:90:06:8a:f3:97:14:db:13:5a:cf:
59:95:35:e4:83:64:c9:25:c7:76:7d:54:cc:9f:1e:
c1:e2:af:e8:0d:45:e8:80:ae:f0:83:7e:68:97:72:
98:e5:f2:7c:73:79:5f:0d:5c:0a:cf:73:98:6b:7f:
5d:b8:87:50:c0:5d:9c:e8:27:b9:ae:b0:45:5f:95:
fe:98:7d:de:b8:ce:d5:39:93:15:e5:c9:8e:34:2d:
6a:5b:da:58:8a:c5:ba:50:0b:6f:0b:c8:50:80:a0:
31:d3:5a:6d:57:c7:72:21:e0:35:c7:fc:ad:a7:4d:
ef:52:d4:1c:a4:aa:ca:29:76:e3:d0:76:89:0b:3b:
56:ba:59:3d:5c:57:37:ff:2d:4b:63:0e:2a:bf:00:
24:fb:0b:64:8e:dd:9f:a4:18:cf:b3:8d:6a:47:a7:
9b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:41:E9:BA:B7:98:44:1B:E5:EE:7C:D5:F4:7C:79:C9:E6:D6:D4:10
X509v3 Authority Key Identifier:
keyid:8A:16:A5:FA:C6:5A:C5:E9:C5:EB:BF:ED:71:51:8C:AE:0C:13:11:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihal-sZaxenF67_tcVGMrgwTEcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/bUHpureYRBvl7nzV9Hx5yebW1BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/ihal-sZaxenF67_tcVGMrgwTEcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.246.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:74:c9:f6:aa:5d:d4:ee:03:f0:49:da:7b:66:e7:d8:50:df:
02:8f:a8:9d:6f:1d:c6:c7:24:98:53:93:f3:ea:c9:86:01:35:
3f:ad:e8:15:80:dd:c6:00:51:cf:d1:a4:98:d2:26:53:cd:0f:
78:d7:31:62:36:aa:ff:d9:cb:1a:12:e9:ba:01:c6:8b:d5:5a:
be:08:f3:06:6e:4d:36:1f:3a:c2:bd:1c:a5:24:25:fa:1d:8a:
11:06:c8:a9:bf:cf:e2:ad:99:b7:90:7e:aa:04:c6:4e:f8:1f:
1b:24:6c:c7:4f:4e:7c:07:e3:1d:fa:42:cf:8b:cf:9b:20:6e:
c2:f7:8b:08:22:28:88:b2:7c:d4:31:59:ae:92:5f:b0:5d:65:
d2:75:cf:c4:d2:97:9e:d9:2b:25:c3:10:6b:91:b6:71:b1:cf:
60:94:87:35:af:44:e6:f3:d4:5e:62:b5:7a:73:c3:40:03:0c:
3d:fe:7d:5b:96:4b:25:4f:5e:68:f3:cd:82:8a:d6:91:93:0e:
41:59:b0:e5:af:14:ab:d7:cf:61:82:fb:f0:dc:c4:a5:96:be:
a8:5b:c7:89:02:44:a6:f5:fc:08:71:02:fc:49:21:da:75:01:
af:be:b9:34:27:b7:ec:75:3f:89:2c:70:07:02:03:0b:37:b2:
03:73:28:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:41:16 2025 by rpki-client