Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/VvFHT2cMKHhhFdyOPzzr0dm6NpU.roa
File: VvFHT2cMKHhhFdyOPzzr0dm6NpU.roa (raw, json)
Hash identifier: Pv3CHnzDlIzqeWExNrz8N/V70bHoOEOCOV9dY7Q9n1I=
Subject key identifier: 56:F1:47:4F:67:0C:28:78:61:15:DC:8E:3F:3C:EB:D1:D9:BA:36:95
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D527D11
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/VvFHT2cMKHhhFdyOPzzr0dm6NpU.roa
Signing time: Thu 19 May 2022 15:08:29 +0000
ROA not before: Thu 19 May 2022 15:08:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272692
IP address blocks: 195.180.190.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223509777 (0xd527d11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 19 15:08:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56f1474f670c28786115dc8e3f3cebd1d9ba3695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e7:8e:f2:20:dc:e3:45:88:10:80:e2:17:c8:
6f:30:f6:89:68:6f:a7:63:52:de:cd:59:5d:1f:1d:
11:ed:6d:03:dd:c6:db:5e:7a:ff:a4:7f:eb:22:8a:
d0:b0:7b:6b:4a:20:3c:fe:3a:a4:31:81:07:f4:07:
20:5b:93:5b:4c:6b:6a:57:be:da:d2:f7:73:4e:f0:
9c:8c:d7:2a:01:52:87:c2:59:54:3a:6b:d1:f9:b9:
9f:32:a7:0a:6e:08:0b:d3:d7:68:50:f9:91:8c:28:
5f:f7:91:f1:cd:6b:0e:36:a5:39:50:20:74:47:6b:
a6:2f:9a:43:d2:67:e1:83:48:d3:8e:ac:75:fd:cd:
e8:98:4b:9c:f6:f1:8c:29:d6:d3:15:70:6d:3e:de:
04:05:9e:1d:7c:91:22:8a:13:e3:4c:3b:3d:78:8a:
b0:7f:80:7d:59:b7:a0:e5:8d:d2:95:e1:c7:86:1b:
ec:b4:f3:ff:ab:56:15:92:8d:71:a2:e8:33:40:76:
5e:4d:e4:ff:c3:70:81:f8:69:fa:b9:0c:94:0a:39:
74:83:e7:27:f6:11:2e:e3:5d:5c:41:b3:d0:61:6b:
3b:c5:13:be:b7:0a:a0:59:d2:30:df:c0:5c:c5:7b:
bd:4a:69:c2:85:57:27:22:32:fb:aa:86:99:32:8a:
06:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F1:47:4F:67:0C:28:78:61:15:DC:8E:3F:3C:EB:D1:D9:BA:36:95
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/VvFHT2cMKHhhFdyOPzzr0dm6NpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:31:33:8c:c4:63:ea:b1:ea:ea:f5:2f:9b:2d:f8:13:6d:69:
ae:15:c8:74:c3:44:e5:51:75:2f:2a:2c:84:79:13:33:c5:b2:
a6:47:b8:1e:f9:ca:70:a5:3d:78:09:a0:28:64:16:b6:02:40:
8b:15:b2:07:15:8c:54:24:e1:60:ce:67:32:ea:15:11:1b:98:
f5:ed:69:2e:8e:be:0d:0f:be:ca:6d:24:01:f9:a3:07:ec:af:
a7:7d:e4:f3:dd:75:c8:22:cd:17:25:58:7d:75:21:d6:b3:13:
7f:f5:ae:a0:1e:e3:6e:38:55:4f:a4:c8:b4:ea:f9:ec:76:23:
8d:2f:62:f4:4d:8f:7c:2f:1e:44:0f:7a:d3:8a:e0:7e:55:11:
4c:69:a5:ee:12:d9:54:ed:81:d4:1e:b1:8c:81:59:09:22:03:
bd:b6:c0:0c:e4:be:c5:ad:8a:40:bb:5f:63:7d:ad:ab:e5:c0:
1d:98:ac:6c:39:18:2c:c2:3f:c6:eb:19:c9:a8:03:3c:02:58:
12:d9:5b:ee:11:7c:6b:54:73:e6:cc:d9:84:12:70:82:f1:f8:
0e:43:57:3c:07:57:c9:cc:d4:2d:b8:ce:73:2d:33:d3:06:b3:
f5:2a:16:53:4e:52:d4:e2:0e:14:49:7e:35:e6:ae:37:00:f8:
38:48:d9:ef
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDVJ9ETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDUx
OTE1MDgyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTZmMTQ3NGY2NzBj
Mjg3ODYxMTVkYzhlM2YzY2ViZDFkOWJhMzY5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOTnjvIg3ONFiBCA4hfIbzD2iWhvp2NS3s1ZXR8dEe1tA93G
2156/6R/6yKK0LB7a0ogPP46pDGBB/QHIFuTW0xrale+2tL3c07wnIzXKgFSh8JZ
VDpr0fm5nzKnCm4IC9PXaFD5kYwoX/eR8c1rDjalOVAgdEdrpi+aQ9Jn4YNI046s
df3N6JhLnPbxjCnW0xVwbT7eBAWeHXyRIooT40w7PXiKsH+AfVm3oOWN0pXhx4Yb
7LTz/6tWFZKNcaLoM0B2Xk3k/8Nwgfhp+rkMlAo5dIPnJ/YRLuNdXEGz0GFrO8UT
vrcKoFnSMN/AXMV7vUppwoVXJyIy+6qGmTKKBscCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRW8UdPZwwoeGEV3I4/POvR2bo2lTAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L1Z2RkhUMmNNS0hoaEZkeU9QenpyMGRtNk5wVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMO0vjANBgkqhkiG9w0BAQsFAAOC
AQEAHDEzjMRj6rHq6vUvmy34E21prhXIdMNE5VF1LyoshHkTM8Wypke4HvnKcKU9
eAmgKGQWtgJAixWyBxWMVCThYM5nMuoVERuY9e1pLo6+DQ++ym0kAfmjB+yvp33k
8911yCLNFyVYfXUh1rMTf/WuoB7jbjhVT6TItOr57HYjjS9i9E2PfC8eRA9604rg
flURTGml7hLZVO2B1B6xjIFZCSIDvbbADOS+xa2KQLtfY32tq+XAHZisbDkYLMI/
xusZyagDPAJYEtlb7hF8a1Rz5szZhBJwgvH4DkNXPAdXyczULbjOcy0z0waz9SoW
U05S1OIOFEl+NeauNwD4OEjZ7w==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:01 2025 by rpki-client