Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6j2lmyMl93JW0rrPcCH0z81Bfew.roa
File: 6j2lmyMl93JW0rrPcCH0z81Bfew.roa (raw, json)
Hash identifier: Py5idcY4Yh4E7QJ3r7IkCu3q/bIhukllaoW3cMF4rOI=
Subject key identifier: EA:3D:A5:9B:23:25:F7:72:56:D2:BA:CF:70:21:F4:CF:CD:41:7D:EC
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 1B57EF53
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6j2lmyMl93JW0rrPcCH0z81Bfew.roa
Signing time: Fri 08 Apr 2022 11:29:16 +0000
ROA not before: Fri 08 Apr 2022 11:29:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 5.180.8.0/22 maxlen: 22
185.209.4.0/22 maxlen: 22
83.150.240.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458747731 (0x1b57ef53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: Apr 8 11:29:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea3da59b2325f77256d2bacf7021f4cfcd417dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f6:37:9c:df:50:25:96:16:74:00:dd:de:ff:
ad:aa:e3:c4:81:89:62:ae:2c:b5:f0:ed:54:ff:09:
59:5f:3b:8b:77:87:10:da:26:58:7a:b4:42:02:42:
7b:9e:96:71:13:ed:a6:2a:28:dc:20:72:92:0d:c0:
08:29:a1:f1:d8:0d:2b:21:55:99:2b:50:9d:98:d9:
56:ce:2e:64:19:ab:1b:90:31:53:38:0f:cc:7c:da:
cf:49:df:ef:14:99:e5:67:93:e1:85:63:a1:d2:20:
8a:f0:97:ff:bc:f4:b3:26:98:ef:f3:fe:ac:99:ce:
e1:fc:dd:8b:04:c8:b9:f9:45:4a:a2:a6:69:da:cb:
a9:d7:17:b2:f3:d1:1e:a9:f3:69:f3:1b:c5:35:1b:
32:61:17:2c:88:b5:96:36:55:fe:a7:f0:cc:0b:9e:
9c:a1:2c:5c:45:45:38:66:98:8f:bf:dc:70:6f:fc:
ef:9c:e0:26:d5:0d:1e:13:eb:d3:cf:c2:5f:0d:7b:
14:4b:20:68:56:f9:b9:51:9b:e1:63:13:e1:85:ab:
60:4a:58:6b:eb:33:e3:9b:6e:1b:89:07:90:fa:d8:
69:14:db:68:35:86:ff:cc:e0:60:8a:71:99:9c:3a:
45:e3:3d:42:32:cb:f4:e8:91:a0:12:af:b7:c4:6e:
ee:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3D:A5:9B:23:25:F7:72:56:D2:BA:CF:70:21:F4:CF:CD:41:7D:EC
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6j2lmyMl93JW0rrPcCH0z81Bfew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.8.0/22
83.150.240.0/22
185.209.4.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:39:58:37:ea:1f:4f:36:44:c1:67:f8:dd:d9:91:4e:d1:50:
aa:36:be:9f:f9:73:56:44:6f:fc:75:32:a1:f4:c9:fb:ec:ab:
38:ca:ff:6d:b5:48:e3:9d:5c:c8:8f:26:e2:1c:d4:c5:c4:6a:
bb:ce:37:cb:ab:11:56:ea:cc:e9:1c:59:56:b0:68:11:db:f3:
26:9a:6d:6b:fa:bd:0f:28:49:d7:6b:39:e8:ed:73:00:76:f6:
95:56:5d:f1:42:e3:7e:4f:4f:0f:90:af:8a:24:e5:10:fa:c6:
7f:8c:00:d1:d5:e9:db:63:7c:d5:89:88:b6:77:f7:22:c1:df:
7b:4d:ef:76:8a:1a:3d:9f:31:55:de:bd:ca:05:b9:22:3e:14:
72:b1:cf:85:4e:e0:15:95:45:f6:bf:80:0c:42:c4:ad:d8:1e:
07:42:49:34:48:c6:38:db:0c:97:86:da:05:df:58:0b:c9:65:
ab:5e:ce:c6:1e:ef:78:07:31:82:8b:f0:23:82:c7:e6:33:f9:
da:50:d3:37:2c:01:f2:37:ad:c0:e4:70:3e:0f:2c:b5:70:c1:
dd:2f:69:42:30:31:3d:74:83:50:02:91:27:36:f7:1c:0c:a5:
15:38:05:bf:c6:dd:42:62:7a:5a:c7:bd:87:14:36:2a:f1:be:
6b:80:0e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:53 2024 by rpki-client on console-ams.rpki-client.org