Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/hp3jhRHpVJzm31Dn_uuZbMLG044.roa
File: hp3jhRHpVJzm31Dn_uuZbMLG044.roa (raw, json)
Hash identifier: eLeWBbwHxJiktUOzqVo47wr0n06LTKafeZ288qHJ+Rs=
Subject key identifier: 86:9D:E3:85:11:E9:54:9C:E6:DF:50:E7:FE:EB:99:6C:C2:C6:D3:8E
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 421B3367
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/hp3jhRHpVJzm31Dn_uuZbMLG044.roa
Signing time: Thu 03 Mar 2022 10:40:31 +0000
ROA not before: Thu 03 Mar 2022 10:40:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51102
IP address blocks: 93.114.176.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1109078887 (0x421b3367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Mar 3 10:40:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=869de38511e9549ce6df50e7feeb996cc2c6d38e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e9:f4:65:7f:5a:0c:ec:ad:91:56:de:6b:fe:
9d:06:78:71:bf:c6:7f:7a:83:80:22:e8:09:a6:15:
74:61:f9:b4:ae:1a:b1:e0:a7:a9:10:86:bf:81:dd:
c1:83:f8:a7:e9:c7:c1:87:7c:9a:17:a6:9d:fb:5e:
35:58:89:fa:0a:fe:19:0a:ac:a2:98:4f:58:75:11:
d4:8c:60:dd:68:3d:38:a4:a8:35:26:8e:fc:95:00:
be:bf:0f:3e:83:71:79:54:f2:9b:b5:3b:f0:c8:b4:
82:37:3c:34:17:0c:46:87:c4:92:ea:bd:7d:6f:75:
94:7d:35:54:5c:5e:11:fe:26:89:56:4b:95:63:d7:
d5:c7:7c:0f:0f:e3:d3:51:f4:f9:03:e1:a1:2c:5b:
78:61:a9:e9:11:d4:d9:7b:f6:5e:23:e7:0d:c1:0b:
7d:6e:9d:d5:8c:3b:3f:62:8d:e3:c1:c5:e1:d0:b9:
e9:5c:29:9e:70:91:88:13:2e:8b:56:42:b8:c9:58:
ad:3c:79:61:db:35:c5:c1:f0:32:41:41:83:a6:90:
21:63:d9:00:02:71:0c:27:ef:f6:cc:49:79:18:f8:
86:45:a6:df:e6:5a:df:1e:34:0c:99:2e:80:e6:14:
75:c8:08:d6:00:c3:be:01:4a:9b:b4:c5:58:28:50:
cd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:9D:E3:85:11:E9:54:9C:E6:DF:50:E7:FE:EB:99:6C:C2:C6:D3:8E
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/hp3jhRHpVJzm31Dn_uuZbMLG044.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.176.0/23
Signature Algorithm: sha256WithRSAEncryption
67:d2:a9:43:6c:89:d4:28:d6:69:f7:fa:44:00:fe:ae:21:4f:
d1:12:68:c6:8a:64:dd:ee:89:2b:7a:6b:f9:1f:87:76:57:b2:
4a:df:c1:fb:43:d8:6e:bd:d8:e1:09:74:f8:8b:00:d4:62:96:
47:ad:51:6c:b1:33:64:c3:3d:89:08:8c:0d:b4:56:e8:a5:19:
d7:53:65:82:2c:1d:1f:d3:e0:ed:05:72:68:10:65:c2:a8:37:
b5:08:fa:cd:4a:17:0e:f0:3d:28:f9:9b:42:2b:26:b3:4f:5a:
c7:c1:e7:f4:4d:8d:b2:1e:d0:01:cc:65:01:89:1d:92:06:cd:
b7:87:7f:7f:f6:a1:51:97:3e:5d:b0:75:fb:d2:78:a0:e1:de:
ea:4a:99:35:71:af:6b:47:57:a0:2c:c6:ac:55:4d:d3:77:09:
26:ed:7c:24:63:2e:dc:33:e8:d1:7d:42:f4:28:f9:29:71:ae:
bb:51:51:71:5b:9a:6c:ba:dc:1d:08:48:b1:8b:91:14:fd:ad:
08:b7:71:a7:ba:dd:e3:05:d6:bd:31:28:0d:3f:d4:48:2f:dc:
fc:23:0b:a2:a1:74:fc:dd:be:76:b3:d1:ce:fb:04:9d:29:01:
cd:72:c6:20:7e:d1:03:f9:ae:ed:09:68:b8:c7:c1:f7:c8:35:
36:8b:28:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org