Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/6wVycmzOHyGM96akgwjPGjnMs_Q.roa
File: 6wVycmzOHyGM96akgwjPGjnMs_Q.roa (raw, json)
Hash identifier: HXsD4E0d6f1Zs2fli15DXzfvIdBEs1i2CpVw3zjvOiU=
Subject key identifier: EB:05:72:72:6C:CE:1F:21:8C:F7:A6:A4:83:08:CF:1A:39:CC:B3:F4
Certificate issuer: /CN=e5bcfc1077cf876888fb6c75b2e394923205f3b5
Certificate serial: 04F87DF0
Authority key identifier: E5:BC:FC:10:77:CF:87:68:88:FB:6C:75:B2:E3:94:92:32:05:F3:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5bz8EHfPh2iI-2x1suOUkjIF87U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/6wVycmzOHyGM96akgwjPGjnMs_Q.roa
Signing time: Sat 01 Jan 2022 13:07:23 +0000
ROA not before: Sat 01 Jan 2022 13:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 176.116.119.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83394032 (0x4f87df0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bcfc1077cf876888fb6c75b2e394923205f3b5
Validity
Not Before: Jan 1 13:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb0572726cce1f218cf7a6a48308cf1a39ccb3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0d:b3:46:50:11:14:a1:30:42:24:6d:45:09:
84:7a:37:72:d1:2c:82:bf:b4:c0:c2:67:a4:d1:c9:
ce:ae:fe:63:f6:a4:1e:4e:f4:e3:e0:e5:10:cc:01:
7d:69:a7:ea:19:f6:5a:61:87:18:fc:6f:da:3f:f8:
bf:6e:9f:6d:20:aa:74:78:a8:ca:83:1e:ad:c3:7d:
38:44:33:94:dc:11:4b:cf:8e:27:8f:32:97:07:30:
be:e4:ad:0b:29:ad:d1:9f:fa:26:94:5b:43:96:51:
29:13:b2:ed:ed:23:3f:5a:02:4c:a8:95:7a:b6:fa:
fb:67:6e:43:9a:e5:6a:54:8d:13:bc:e3:f1:67:21:
be:88:ad:ef:2b:1c:fe:bf:87:92:74:24:40:05:b8:
76:09:fc:bd:a7:ff:1b:ce:24:51:a0:51:bd:9e:c9:
ad:75:2a:22:18:8f:61:08:75:a9:38:28:d6:50:94:
e9:da:76:e3:2e:7a:79:43:44:95:c4:c6:53:4c:be:
36:27:f6:57:e2:e0:c4:eb:6c:6a:e1:33:03:28:8e:
31:aa:15:97:f0:ab:ae:aa:fc:e7:a9:c8:eb:cb:31:
a6:35:e8:28:24:5a:98:24:51:b5:f2:c1:48:fb:92:
23:4b:4d:b8:17:1a:06:ca:37:af:fe:52:bb:95:9f:
9c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:05:72:72:6C:CE:1F:21:8C:F7:A6:A4:83:08:CF:1A:39:CC:B3:F4
X509v3 Authority Key Identifier:
keyid:E5:BC:FC:10:77:CF:87:68:88:FB:6C:75:B2:E3:94:92:32:05:F3:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5bz8EHfPh2iI-2x1suOUkjIF87U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/6wVycmzOHyGM96akgwjPGjnMs_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/5bz8EHfPh2iI-2x1suOUkjIF87U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.119.0/24
Signature Algorithm: sha256WithRSAEncryption
31:67:62:af:34:e7:7d:87:61:7a:5a:05:fa:a6:c4:17:26:b1:
89:a0:a8:06:36:7a:2b:11:f8:6c:d8:5f:ea:58:b9:f1:a2:4e:
78:7d:16:48:cb:9f:e3:84:91:5b:cf:67:ac:93:87:b9:23:2b:
fa:1a:d3:c5:85:c0:01:8c:ce:eb:db:c2:51:89:5b:4d:38:07:
f1:ce:db:e2:8c:a7:e7:b7:0d:0c:7d:c0:a5:a1:f0:cf:19:57:
2e:27:2f:59:14:99:2f:4e:51:fc:39:39:0d:c7:13:d9:28:ec:
2d:fa:87:07:36:0a:00:34:72:2e:96:1c:15:a8:23:51:2b:f0:
f4:1d:11:c7:0e:7e:d8:c7:1e:2d:ab:84:2e:ff:bf:69:a0:eb:
77:95:be:b7:7a:07:2c:97:69:01:70:14:d1:80:d2:44:f6:3e:
88:c8:bd:4f:2b:3f:58:58:1a:16:8d:26:cf:27:b6:b4:3c:d4:
c0:9c:93:dd:15:d4:fa:70:0f:91:4c:66:f1:ca:e6:b9:07:37:
22:33:97:32:eb:07:24:7c:1a:86:eb:bc:53:60:3c:82:46:2f:
db:ed:db:bd:8c:65:75:c1:23:dd:d4:ac:f7:a5:6c:5d:73:b5:
ee:37:4e:5c:af:82:14:2e:2b:5f:54:e3:2a:be:0a:46:93:ac:
b4:b4:9b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:06 2024 by rpki-client on console-fra.rpki-client.org