Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/Wb8fpB6E0krC8_Iuumpz6SD1_KE.roa
File: Wb8fpB6E0krC8_Iuumpz6SD1_KE.roa (raw, json)
Hash identifier: Yi8Hoa2ietZOAuWAs8w0lZuyy2zVCTA76qqlfOoJh7M=
Subject key identifier: 59:BF:1F:A4:1E:84:D2:4A:C2:F3:F2:2E:BA:6A:73:E9:20:F5:FC:A1
Certificate issuer: /CN=c3abdcc49f7d9033b52904679f3c9b783d8c1358
Certificate serial: 9FE2
Authority key identifier: C3:AB:DC:C4:9F:7D:90:33:B5:29:04:67:9F:3C:9B:78:3D:8C:13:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6vcxJ99kDO1KQRnnzybeD2ME1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/Wb8fpB6E0krC8_Iuumpz6SD1_KE.roa
Signing time: Sat 02 Apr 2022 19:31:28 +0000
ROA not before: Sat 02 Apr 2022 19:31:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53755
IP address blocks: 194.105.158.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40930 (0x9fe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3abdcc49f7d9033b52904679f3c9b783d8c1358
Validity
Not Before: Apr 2 19:31:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59bf1fa41e84d24ac2f3f22eba6a73e920f5fca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:97:90:6a:04:03:ab:4c:d8:1a:64:21:d8:a5:
ef:ff:25:8a:59:00:d4:bb:dc:55:73:03:2b:0e:fc:
13:d4:22:20:31:90:6a:02:93:fc:b8:4a:08:1a:2d:
ee:0b:46:37:1c:51:fd:b3:9c:d1:61:3a:3a:7e:d2:
1e:2f:c5:1b:4c:59:98:d5:7e:71:51:0f:b1:21:52:
83:37:ef:7a:fe:ef:7c:cc:10:45:01:14:4d:e4:d3:
a3:39:f7:96:6e:2f:cc:c5:19:b5:ba:ac:68:fe:e9:
28:37:35:ec:c0:c4:21:31:53:4c:39:fc:61:eb:87:
89:f3:6a:59:98:01:6b:07:bb:a1:d5:cc:ab:a0:e6:
da:74:97:37:79:8d:9f:f8:3e:71:fe:d9:48:f7:9a:
c9:a5:6e:56:15:a2:9c:3b:21:ab:bd:15:7e:b1:7c:
1e:8a:21:40:0c:e7:12:85:f6:5b:e8:40:48:b7:05:
74:a2:fa:9a:a5:57:dc:33:4f:61:92:0a:bf:14:b0:
c4:fb:6e:c7:72:bd:a9:b6:55:00:6b:61:4b:9b:84:
3c:82:36:e6:80:83:99:26:e9:4d:40:aa:56:04:0b:
97:6c:a7:2f:0d:63:ce:42:fa:36:63:82:6d:da:c7:
e8:2b:04:99:a7:3c:63:24:94:97:2f:bd:f3:71:6a:
31:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:BF:1F:A4:1E:84:D2:4A:C2:F3:F2:2E:BA:6A:73:E9:20:F5:FC:A1
X509v3 Authority Key Identifier:
keyid:C3:AB:DC:C4:9F:7D:90:33:B5:29:04:67:9F:3C:9B:78:3D:8C:13:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6vcxJ99kDO1KQRnnzybeD2ME1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/Wb8fpB6E0krC8_Iuumpz6SD1_KE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/w6vcxJ99kDO1KQRnnzybeD2ME1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.158.0/23
Signature Algorithm: sha256WithRSAEncryption
61:7e:3c:56:43:07:44:34:bf:00:ac:61:e1:19:40:69:9b:f4:
22:c7:f9:f9:bb:ca:3d:cb:fd:6f:6a:bc:a7:61:5d:72:2e:f2:
c1:6d:aa:2e:4c:6b:0d:6a:31:0f:bb:5d:18:2c:cc:c7:7e:44:
3f:ea:67:d1:ec:9b:d1:17:46:a2:50:f1:28:35:43:19:93:3d:
f7:c1:16:5f:ee:e1:1f:24:0a:ed:67:3b:2e:e6:ca:57:a6:43:
d2:70:04:55:36:4e:bb:3d:4f:c1:14:ec:62:4b:29:d7:cb:43:
f5:db:06:f5:1b:1e:05:da:83:bb:f5:fb:96:e5:eb:53:8d:20:
47:91:6d:73:f7:1a:6d:ec:a8:68:81:8c:3a:d0:55:d9:e8:50:
58:2d:05:99:b9:bc:18:c8:38:90:4f:e4:85:de:95:2e:c0:f9:
f8:c9:67:8e:17:0e:f5:55:c2:5a:49:25:ed:4f:2c:39:46:77:
ce:de:94:bc:7f:cf:b9:39:16:82:2c:54:93:f1:47:76:6a:1d:
0f:fe:a6:43:cd:8c:50:81:1e:cf:ad:33:c5:94:e7:10:b0:09:
a4:3b:1c:cc:c8:9e:33:13:35:e1:82:ca:2f:b3:c4:9f:65:ca:
7d:3f:93:5c:86:f9:ef:37:48:35:1c:85:a4:68:a9:14:eb:3a:
ad:24:4e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:27 2024 by rpki-client on console-fra.rpki-client.org