Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/g7w2-eWLWbxfwu5HB6aSeR6Fb6s.roa
File: g7w2-eWLWbxfwu5HB6aSeR6Fb6s.roa (raw, json)
Hash identifier: rmJ/RE1fpHwPsC/KWhe19fTTlIDgC0fS59n67jeXwGo=
Subject key identifier: 83:BC:36:F9:E5:8B:59:BC:5F:C2:EE:47:07:A6:92:79:1E:85:6F:AB
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 423A0B12
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/g7w2-eWLWbxfwu5HB6aSeR6Fb6s.roa
Signing time: Tue 15 Mar 2022 06:06:51 +0000
ROA not before: Tue 15 Mar 2022 06:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49852
IP address blocks: 86.106.188.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1111100178 (0x423a0b12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Mar 15 06:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83bc36f9e58b59bc5fc2ee4707a692791e856fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4d:40:47:e8:c9:ed:30:a4:7b:e1:37:0f:46:
e8:98:a4:fd:b5:a8:ae:db:8b:0e:0f:34:3c:c5:75:
78:dd:44:b9:70:8f:cf:a2:1d:10:43:9c:0c:5a:1e:
61:c3:5b:c3:e0:00:1f:82:92:ac:39:0f:14:94:b2:
0b:dd:e7:26:f4:ca:c7:99:60:e4:20:52:53:3f:92:
32:71:de:7b:6c:f6:19:e4:8d:ed:56:32:2c:bc:c4:
8b:87:1e:9d:c8:85:de:56:51:90:23:10:f1:76:3a:
43:c8:cb:28:28:bc:e7:43:8e:33:c1:e3:66:87:7d:
49:71:72:68:03:92:38:21:5b:3e:69:38:23:0b:71:
67:cf:b1:32:1a:88:83:b2:a1:52:bb:fc:c0:10:7e:
8a:2a:fa:fa:6b:5c:b5:83:aa:1c:fb:6f:8f:18:b5:
35:fa:58:4e:ae:25:43:d6:7d:45:30:03:b1:c2:a6:
6d:33:0a:e7:65:0a:50:0c:d2:08:6b:b0:9b:5e:1b:
ff:d6:a0:6e:fe:1c:f1:9d:0f:8f:ec:42:7c:60:9c:
91:33:26:37:9b:ac:fe:3a:48:db:7e:bb:c5:e8:5e:
d2:76:f8:e3:99:58:23:fc:79:d8:80:11:38:e8:54:
a7:e3:c9:a8:b7:69:ce:fb:49:bc:72:f0:af:71:de:
cc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:BC:36:F9:E5:8B:59:BC:5F:C2:EE:47:07:A6:92:79:1E:85:6F:AB
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/g7w2-eWLWbxfwu5HB6aSeR6Fb6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.188.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:42:37:99:a0:02:a5:4c:2a:1d:e8:37:bd:2d:01:87:1e:21:
2a:e3:6e:71:de:9b:49:90:ba:c3:56:16:7b:96:37:d7:e2:8e:
ef:35:f9:4b:d4:ab:09:77:d2:1a:99:ec:28:77:02:f3:d4:c0:
7f:68:e5:b0:24:fb:ba:46:56:89:a7:c1:60:30:0b:81:4c:12:
34:55:ae:57:fd:e1:5f:88:ae:ce:b8:9b:32:c1:84:b2:67:19:
2d:cc:a7:a1:24:54:84:2a:d1:b0:d3:e4:b5:61:34:ee:15:60:
9f:29:f4:e0:17:41:3a:c4:df:08:f6:e4:94:87:aa:fa:f4:d3:
a8:bd:fb:c3:69:ad:29:95:19:a1:c3:5a:e2:78:5c:c6:f1:04:
03:0f:06:5d:59:99:e1:16:f5:27:aa:25:6c:54:7b:49:9d:8f:
95:c1:4d:ff:ff:41:b5:ae:d9:72:b8:0c:5c:6d:31:7d:5d:75:
ac:0e:1d:ca:53:5c:32:1b:fa:82:68:16:97:3b:96:73:03:98:
cc:7f:30:09:95:ef:75:8e:36:5f:ac:29:f1:b9:2b:d3:e8:e9:
89:ec:01:5f:18:b5:1e:97:40:ec:6e:95:4c:66:bf:cb:3e:32:
9e:00:4a:62:e1:8f:f2:b6:57:76:e6:ef:2c:41:1e:35:0c:e0:
d8:e4:c1:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org