Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4b128d-ed47-41c1-aaf0-dfe6c5eb1f7c/1/8IlksQsyUlSJbpy8PsIUB7QKr_k.roa
File: 8IlksQsyUlSJbpy8PsIUB7QKr_k.roa (raw, json)
Hash identifier: rlttixJ+HAJT+yaT0D7BQ+dGqB6WWWip6G5JMNy65nU=
Subject key identifier: F0:89:64:B1:0B:32:52:54:89:6E:9C:BC:3E:C2:14:07:B4:0A:AF:F9
Certificate issuer: /CN=61658d5efa2a0a3c36c9239374258a98f7fda388
Certificate serial: 11AC5F
Authority key identifier: 61:65:8D:5E:FA:2A:0A:3C:36:C9:23:93:74:25:8A:98:F7:FD:A3:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWWNXvoqCjw2ySOTdCWKmPf9o4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4b128d-ed47-41c1-aaf0-dfe6c5eb1f7c/1/8IlksQsyUlSJbpy8PsIUB7QKr_k.roa
Signing time: Tue 08 Mar 2022 08:35:34 +0000
ROA not before: Tue 08 Mar 2022 08:35:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8771
IP address blocks: 213.240.0.0/19 maxlen: 19
109.121.64.0/18 maxlen: 18
213.198.192.0/18 maxlen: 18
213.240.36.0/22 maxlen: 22
194.247.192.0/19 maxlen: 19
213.240.40.0/23 maxlen: 23
213.240.40.0/21 maxlen: 21
78.30.128.0/18 maxlen: 18
213.240.48.0/20 maxlen: 20
2a00:1108::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1158239 (0x11ac5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61658d5efa2a0a3c36c9239374258a98f7fda388
Validity
Not Before: Mar 8 08:35:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f08964b10b325254896e9cbc3ec21407b40aaff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:86:59:35:4d:80:14:ee:5e:13:27:71:14:c9:
ed:cd:05:16:99:2e:e2:10:b2:2f:50:b2:54:92:01:
f1:c3:eb:7a:39:d4:3c:5f:03:d3:36:35:e4:9c:9d:
ce:89:c9:25:c4:e4:ad:bd:fb:04:8d:76:6b:41:c8:
81:be:10:84:b9:e4:ce:6a:a4:a1:19:38:b7:9c:63:
5e:b7:e8:8b:01:93:8b:06:5f:76:b2:32:e7:ef:05:
db:83:c4:be:0c:9a:ee:43:a4:5e:ac:a9:49:72:d8:
c3:05:77:c9:7f:8b:75:1b:9d:b2:ae:33:be:f1:2e:
d6:75:90:9e:8a:c0:1b:d7:73:ed:56:4c:2a:15:18:
b9:a7:33:da:3b:41:cc:bd:f3:1e:08:a2:6a:0a:43:
c6:fb:25:aa:42:45:42:27:71:73:17:eb:05:71:38:
6c:e3:93:d0:d4:a7:68:bb:a6:80:a1:82:f6:6e:8e:
03:f9:ad:36:9f:b1:e9:e6:69:f9:35:cb:17:64:73:
f4:01:b4:8a:40:a9:6e:40:bd:c1:95:cd:0e:26:1f:
d2:ae:38:e6:52:fe:af:d6:78:0b:a3:5d:8f:6f:b5:
f6:e7:dd:5a:a1:a5:a3:cd:32:d4:fa:1f:69:ca:11:
0a:57:ab:50:97:ab:24:96:8c:83:c5:63:5e:80:df:
4f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:89:64:B1:0B:32:52:54:89:6E:9C:BC:3E:C2:14:07:B4:0A:AF:F9
X509v3 Authority Key Identifier:
keyid:61:65:8D:5E:FA:2A:0A:3C:36:C9:23:93:74:25:8A:98:F7:FD:A3:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWWNXvoqCjw2ySOTdCWKmPf9o4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4b128d-ed47-41c1-aaf0-dfe6c5eb1f7c/1/8IlksQsyUlSJbpy8PsIUB7QKr_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4b128d-ed47-41c1-aaf0-dfe6c5eb1f7c/1/YWWNXvoqCjw2ySOTdCWKmPf9o4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.30.128.0/18
109.121.64.0/18
194.247.192.0/19
213.198.192.0/18
213.240.0.0/19
213.240.36.0-213.240.63.255
IPv6:
2a00:1108::/32
Signature Algorithm: sha256WithRSAEncryption
61:1c:f6:4b:25:66:e8:59:e3:a3:0a:29:24:73:db:86:d8:f3:
de:50:fa:b2:8d:ab:75:f7:51:8b:18:74:37:b5:4b:79:9a:fb:
14:cc:61:5c:b5:55:05:12:fd:9f:fc:21:db:df:3d:4e:4e:bb:
d8:af:9f:e4:71:22:e4:43:ef:aa:c2:b6:9e:03:95:77:ca:b8:
25:b8:99:ea:54:ef:2f:5f:2c:78:92:13:cc:c2:d7:f0:b0:06:
24:b5:c3:8c:3c:27:57:7a:85:b3:67:f1:fc:2c:91:1f:8c:e2:
8e:9b:95:f6:3c:b3:17:7e:80:d9:7f:aa:ca:f3:5d:f4:b9:95:
e4:21:01:d6:b4:54:78:66:e3:9a:07:9f:3d:aa:4e:ac:29:ba:
2b:d7:d1:fa:73:5a:0b:37:3c:39:3f:28:89:91:06:14:ce:a4:
d5:72:5f:cc:82:fa:e4:84:bd:d3:fa:4e:c3:8a:05:02:7a:80:
68:3a:51:09:5e:a8:47:cf:de:9d:5d:21:79:b6:ac:12:d7:b9:
a7:63:e7:dc:55:2b:a4:f8:6b:90:f2:bc:54:df:53:93:85:fc:
d0:24:ae:17:de:48:3d:c9:ce:0c:66:58:8c:8f:c5:a1:79:27:
e6:74:22:b9:06:d7:10:ae:e2:d6:0d:44:56:8c:29:a6:c7:2a:
86:52:7f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:35 2024 by rpki-client on console-fra.rpki-client.org