Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/R6mKInGbCw6WLu9RbuF8FjYNdnA.roa
File: R6mKInGbCw6WLu9RbuF8FjYNdnA.roa (raw, json)
Hash identifier: pQzNyPr1fRvbFoeCxR3kDIwE5dzSIBBNd5d5u/sUNd8=
Subject key identifier: 47:A9:8A:22:71:9B:0B:0E:96:2E:EF:51:6E:E1:7C:16:36:0D:76:70
Certificate issuer: /CN=e5bcfc1077cf876888fb6c75b2e394923205f3b5
Certificate serial: 01856E5D631A50A6FD69E6254FBB263544FF
Authority key identifier: E5:BC:FC:10:77:CF:87:68:88:FB:6C:75:B2:E3:94:92:32:05:F3:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5bz8EHfPh2iI-2x1suOUkjIF87U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/R6mKInGbCw6WLu9RbuF8FjYNdnA.roa
Signing time: Sun 01 Jan 2023 17:24:52 +0000
ROA not before: Sun 01 Jan 2023 17:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211836
IP address blocks: 147.189.214.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:63:1a:50:a6:fd:69:e6:25:4f:bb:26:35:44:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bcfc1077cf876888fb6c75b2e394923205f3b5
Validity
Not Before: Jan 1 17:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47a98a22719b0b0e962eef516ee17c16360d7670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8b:43:ff:2f:aa:b4:9b:04:97:e4:29:5c:08:
71:54:82:c2:d2:e1:7b:63:cd:e6:b2:8c:53:1d:4f:
ea:8c:68:58:7e:ea:5f:3c:d7:ec:40:6f:a5:bc:3f:
13:7c:ac:87:1f:de:55:d4:4d:98:94:5c:6b:b7:b4:
18:36:e4:69:b2:f7:bf:89:7e:d8:fe:33:18:0e:01:
96:9c:c2:79:47:74:30:50:62:f5:0c:35:19:bf:71:
3c:a1:1e:2c:f0:26:3b:11:ad:df:5b:71:c6:a3:78:
73:c0:ab:52:4a:0f:c1:d0:b7:43:07:6a:fe:62:99:
09:0d:67:9f:67:e4:07:a3:9c:9c:84:b6:2d:0d:6e:
d6:2d:a7:23:8a:5d:10:04:8b:70:26:5e:86:56:c4:
0a:03:a8:5e:3f:a0:94:3f:94:46:44:00:66:33:47:
7c:7f:c6:16:72:b7:9b:c0:af:94:b4:93:cd:94:e5:
e4:0d:13:03:4e:94:fa:e4:4b:14:c5:8b:6d:e9:5c:
b3:01:79:2c:6d:1c:84:d1:e2:25:7f:78:47:09:11:
fe:9c:ea:03:58:66:29:ae:47:7b:9f:55:0c:11:1d:
22:de:56:50:8b:1c:d4:3e:67:bb:db:55:10:1f:3e:
f9:3d:90:68:07:7c:28:53:81:30:fd:06:5e:be:15:
21:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A9:8A:22:71:9B:0B:0E:96:2E:EF:51:6E:E1:7C:16:36:0D:76:70
X509v3 Authority Key Identifier:
keyid:E5:BC:FC:10:77:CF:87:68:88:FB:6C:75:B2:E3:94:92:32:05:F3:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5bz8EHfPh2iI-2x1suOUkjIF87U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/R6mKInGbCw6WLu9RbuF8FjYNdnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e05e77-12ae-4f59-9491-cadd1129c98d/1/5bz8EHfPh2iI-2x1suOUkjIF87U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.214.0/24
Signature Algorithm: sha256WithRSAEncryption
31:8f:88:7e:f7:14:9d:20:70:8e:27:d4:15:f3:cc:c9:82:d0:
ca:a8:89:d5:48:2a:95:c2:2a:82:4a:e0:ae:67:be:4d:32:fd:
c8:c5:24:3a:96:6d:72:0e:42:22:78:f7:9a:34:dc:b5:b4:c1:
38:6f:a6:77:85:4b:d8:d0:c1:e2:2f:1e:cf:04:45:7a:79:77:
95:5e:ab:89:a1:14:6e:3c:e0:7e:b2:12:cb:c4:83:35:99:c2:
9a:30:7f:46:1d:de:de:5a:2b:e2:a6:0d:dd:03:04:a8:d8:40:
ee:51:33:5f:e7:5f:99:f6:d1:90:89:69:f2:c1:79:35:20:bd:
fd:6d:8a:80:63:5d:3b:38:c6:02:89:e9:d1:93:0c:6f:d4:e3:
66:e1:e5:90:72:b0:ba:4d:c2:c9:6d:97:54:94:24:c6:c5:93:
8a:22:98:8c:68:73:0f:84:1e:35:d4:14:3e:13:2b:03:9a:e4:
dd:8e:87:be:7e:60:0d:47:98:18:72:e8:84:ae:e6:06:17:35:
aa:d8:5f:59:c2:e4:42:e4:52:40:26:af:74:56:bf:ea:22:24:
98:14:d2:43:8c:8a:5a:63:38:f6:92:e6:5e:23:b3:e2:56:5d:
90:73:ca:ab:d9:30:d1:7d:98:9f:24:42:fe:1f:75:d6:3a:89:
22:83:2f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:22 2024 by rpki-client on console-ams.rpki-client.org