Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6vc8Ps1gSnJvgHI5addSkhnCzog.roa
File: 6vc8Ps1gSnJvgHI5addSkhnCzog.roa (raw, json)
Hash identifier: m+IKV/ThDFEw6RVvL02la1itQqjyjdV0gGmCNEDK5Yw=
Subject key identifier: EA:F7:3C:3E:CD:60:4A:72:6F:80:72:39:69:D7:52:92:19:C2:CE:88
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD52DC1E407B312229F7187DFA8780D
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6vc8Ps1gSnJvgHI5addSkhnCzog.roa
Signing time: Mon 02 Jan 2023 00:15:19 +0000
ROA not before: Mon 02 Jan 2023 00:15:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51102
IP address blocks: 93.114.176.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:2d:c1:e4:07:b3:12:22:9f:71:87:df:a8:78:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eaf73c3ecd604a726f80723969d7529219c2ce88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1e:18:90:04:3f:b1:55:cf:00:48:7e:34:cb:
27:31:73:af:40:69:05:db:c4:0d:42:6c:29:ab:de:
ea:93:a9:ac:2f:20:ef:aa:01:3c:27:ab:fd:29:0a:
23:ca:38:c7:fc:64:12:68:fc:7d:8a:ec:74:18:32:
ea:3c:09:b1:e6:b6:1b:01:be:13:e3:47:d5:4f:59:
04:10:a5:f0:4a:17:9d:d8:3d:c3:20:79:2c:66:00:
4c:c2:5c:6f:2f:aa:1b:67:a9:b1:48:e3:69:79:7f:
c3:d8:b5:e0:d7:b9:b2:86:c0:ec:05:96:d6:d3:c0:
1b:32:ee:35:b0:86:0f:78:6a:79:87:ac:48:d4:76:
0a:77:a0:e5:dc:7e:1c:00:42:cd:7b:22:a6:a9:3e:
fe:e4:09:08:78:9a:e8:d5:c7:f0:16:f2:38:aa:05:
b4:1e:81:4e:92:46:45:a2:af:07:a4:0d:e7:0a:29:
6e:4f:08:a4:fe:15:51:11:e3:93:d1:14:50:a6:13:
70:7f:82:30:83:c5:3e:11:39:f4:9d:d7:a4:7f:d7:
76:28:91:d5:0f:37:17:cb:2d:1f:34:c4:d4:09:a9:
bc:d7:e5:e3:38:b4:c9:ea:27:22:97:5d:37:95:0a:
25:82:dc:ac:ec:56:c3:74:d9:d8:8b:76:80:2a:40:
61:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F7:3C:3E:CD:60:4A:72:6F:80:72:39:69:D7:52:92:19:C2:CE:88
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6vc8Ps1gSnJvgHI5addSkhnCzog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.176.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:ee:56:42:c0:15:78:a9:bb:f7:cd:51:2f:6b:3f:24:b2:83:
4d:89:37:fe:16:4e:24:95:69:9e:2f:87:ea:a6:08:e5:02:72:
6c:8b:76:41:9b:5d:57:3e:8a:97:29:9a:04:ec:c7:41:6c:e1:
f1:12:d7:75:50:99:d8:e7:dd:33:48:4c:36:93:a8:f4:63:8f:
13:43:3c:96:7f:e3:a0:8a:01:db:64:23:b4:e9:eb:05:48:b7:
49:08:43:80:a8:2b:de:8a:c6:c8:9d:b4:91:2a:fc:42:e5:85:
5f:37:17:1d:e4:78:85:59:ab:f3:bb:c8:15:12:db:08:71:ac:
ca:7c:de:d7:68:39:4a:2e:6f:78:f9:2a:e7:0c:f0:07:7b:d0:
34:0d:76:b6:e5:52:ed:07:35:9e:2d:21:15:11:e1:41:fb:e1:
3e:b0:de:5e:e0:e1:3c:ac:c7:a9:7f:9b:80:5d:10:cc:8d:19:
95:47:4b:e5:96:b4:2d:ab:32:8c:bd:db:0a:14:cd:9c:b8:06:
72:c9:a8:21:58:5f:67:67:fc:b3:66:62:dd:9e:d8:77:90:f9:
62:2f:7e:7e:5b:fd:85:2d:ef:ed:15:19:8e:06:bc:7d:53:7c:
5e:60:cc:21:f3:24:27:27:1e:97:b9:64:43:11:04:4b:68:bb:
22:30:42:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org