Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/YXSvBkVTtxOg97Tn_Q1ZpFK2PYw.roa
File: YXSvBkVTtxOg97Tn_Q1ZpFK2PYw.roa (raw, json)
Hash identifier: 9GBry2A1jEu8+NoBvFg4rmOucQXM7vKnDg1Q6g2+BwA=
Subject key identifier: 61:74:AF:06:45:53:B7:13:A0:F7:B4:E7:FD:0D:59:A4:52:B6:3D:8C
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42D8CB3C
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/YXSvBkVTtxOg97Tn_Q1ZpFK2PYw.roa
Signing time: Tue 03 May 2022 16:04:38 +0000
ROA not before: Tue 03 May 2022 16:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31554
IP address blocks: 188.212.134.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1121504060 (0x42d8cb3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 3 16:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6174af064553b713a0f7b4e7fd0d59a452b63d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:76:ee:73:75:f7:c5:4a:92:37:c1:0c:70:fd:
e2:58:55:0c:da:6f:aa:8d:89:3d:ca:4a:45:e8:77:
eb:c1:6b:55:bc:0b:ed:da:fb:43:16:cd:f9:cb:d9:
36:d2:da:3f:54:82:42:13:2f:3b:05:32:49:92:94:
e6:97:3c:42:bb:c5:13:b4:5e:6d:6a:e4:b5:3b:1e:
72:77:e0:c3:e2:02:18:a3:0b:ee:e3:63:86:e4:81:
a6:15:a3:68:8d:04:b4:23:00:90:7b:96:bd:e7:18:
cc:c6:e4:07:31:5b:b9:88:73:db:ac:9b:d8:52:cf:
e3:9d:b6:65:cd:5d:f5:af:33:ab:7b:b1:d7:4b:26:
fa:04:f2:ee:ce:a2:6f:21:9e:a0:5b:23:77:3f:9c:
ff:35:74:18:85:a7:d6:ac:e3:82:1e:e5:c1:12:3e:
62:20:ed:d3:2d:9d:59:ec:43:6b:9d:d6:72:13:c9:
f3:7b:b0:08:f3:20:8f:4d:d8:2b:2f:f5:2a:58:47:
77:bd:6a:f9:d4:de:5b:86:f1:34:16:69:62:b1:41:
3f:f4:b7:ed:9f:75:0b:94:12:f8:ef:e0:ed:c5:ed:
e8:e6:06:d9:9b:af:6a:18:23:83:ea:ce:ad:1a:8d:
a2:80:da:b3:5e:d4:ff:c1:c9:9d:e4:07:48:fa:fd:
6f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:74:AF:06:45:53:B7:13:A0:F7:B4:E7:FD:0D:59:A4:52:B6:3D:8C
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/YXSvBkVTtxOg97Tn_Q1ZpFK2PYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.134.0/24
Signature Algorithm: sha256WithRSAEncryption
00:64:8f:1f:df:6c:1c:0e:4b:3d:5f:00:97:67:e8:a1:6d:40:
34:6a:f2:22:6c:43:1d:b6:d4:57:46:22:d1:57:a0:a3:fc:9d:
f3:61:2a:8d:3e:b4:2c:11:0a:67:31:d7:80:5b:33:12:96:7c:
7d:20:70:42:07:e9:b5:a3:82:9a:34:43:a3:dd:ea:08:89:13:
96:4c:cc:01:32:86:a1:a4:91:53:f5:b0:b9:31:d8:18:5a:cd:
83:06:9a:3c:ec:af:2d:26:fa:47:48:ad:5d:23:a7:75:17:b2:
41:bd:9a:be:86:e9:1a:ce:f3:2e:4f:3d:dc:05:e1:7b:68:7d:
9b:9a:83:3a:c1:01:03:6c:8e:27:06:10:5d:0b:4e:0e:5c:b5:
ec:eb:2d:b6:35:66:2b:9f:44:0a:28:90:36:94:2f:bd:2e:c6:
3a:95:34:d2:77:2b:d3:af:2e:34:82:94:d5:fc:1a:0b:f8:43:
93:3a:57:5c:f4:12:50:da:03:3f:aa:cf:e9:eb:17:fb:97:4c:
a8:db:9d:49:d2:64:02:2e:e5:a9:29:6a:58:16:09:33:f9:54:
60:2c:29:66:a1:70:54:7c:be:84:00:cf:b1:8f:dc:a6:86:29:
3c:b2:52:a9:fd:f7:5f:b9:01:63:6c:7a:bc:0f:1a:44:38:08:
34:b5:31:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org