Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/K1eJELm9fKS8cM206IZDmU0Yk3Q.roa
File: K1eJELm9fKS8cM206IZDmU0Yk3Q.roa (raw, json)
Hash identifier: xJ/Kbw7sRRJJA4IrRunA+frd+FgWd4pai+70Dg0f/Hw=
Subject key identifier: 2B:57:89:10:B9:BD:7C:A4:BC:70:CD:B4:E8:86:43:99:4D:18:93:74
Certificate issuer: /CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Certificate serial: 091998BE
Authority key identifier: A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/K1eJELm9fKS8cM206IZDmU0Yk3Q.roa
Signing time: Tue 22 Mar 2022 12:51:34 +0000
ROA not before: Tue 22 Mar 2022 12:51:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49761
IP address blocks: 45.131.34.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152672446 (0x91998be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Validity
Not Before: Mar 22 12:51:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b578910b9bd7ca4bc70cdb4e88643994d189374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7e:1d:75:c3:52:58:5a:9f:cd:b4:ca:05:17:
9b:4e:37:60:0b:6d:cf:2e:56:18:9b:00:02:16:b0:
9b:8d:1d:3d:ae:39:61:08:77:b7:33:37:de:94:7a:
6a:60:b9:37:21:b2:f4:f2:e7:03:c5:5d:27:4b:90:
81:ec:d6:65:3e:d2:0c:54:af:2d:40:52:25:04:ee:
8b:7d:b9:fc:83:1d:63:ef:d4:1f:5e:51:ea:e6:24:
fc:c6:96:eb:f9:2e:76:2d:a6:a2:ae:6c:86:60:ed:
f9:1e:d0:99:70:d4:26:c1:7b:c2:64:81:cc:d7:91:
fd:8d:bb:f6:9c:a2:7c:61:60:91:fc:2a:ea:8b:7b:
99:f1:ae:73:b0:f3:76:6a:56:74:f2:8f:8f:71:89:
75:27:fc:63:8d:99:82:d0:75:42:ab:ed:8a:38:5d:
42:b8:c8:8b:47:73:47:e8:27:5c:0a:a2:08:67:e7:
0d:53:f6:53:d0:a4:e8:34:11:33:5a:93:14:be:a1:
fb:2b:e6:f6:41:fe:0c:e6:8a:63:10:b8:2d:6d:fb:
3b:3c:57:39:90:3c:e4:8f:28:f3:15:22:1d:f0:d6:
73:cb:0e:49:09:72:95:b2:9b:73:c7:1e:21:32:46:
a5:41:cf:42:b8:d8:c5:7b:ea:76:45:f4:77:d0:ef:
7c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:57:89:10:B9:BD:7C:A4:BC:70:CD:B4:E8:86:43:99:4D:18:93:74
X509v3 Authority Key Identifier:
keyid:A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/K1eJELm9fKS8cM206IZDmU0Yk3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.34.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a8:0c:63:86:89:41:05:0a:cd:b9:bd:b0:5c:72:b2:7f:a3:
7f:55:6f:81:e2:89:50:08:b3:0f:8c:47:ca:37:81:19:00:ca:
99:ed:5b:52:d0:7c:0b:6e:8c:db:ab:00:0e:82:ee:9f:6b:43:
68:19:f3:9a:d1:46:2e:e1:0b:b7:8c:ed:da:43:2a:19:10:bc:
77:0a:44:1c:d4:c1:41:01:fd:74:c1:6c:08:de:3f:09:3a:b0:
df:e4:88:f4:5a:34:bf:5b:6e:cd:25:79:ae:79:5d:53:7f:2e:
e5:4a:73:57:6f:45:54:4f:25:9f:36:e9:a9:e8:f0:eb:b6:43:
51:01:50:82:81:54:5e:20:ef:6e:7b:2d:c8:0d:23:0d:9e:b7:
91:28:fb:f2:8d:ed:3e:5e:76:b1:fe:39:3f:87:b4:8e:82:a4:
9f:ef:51:b3:af:29:fb:c5:fe:48:d8:6d:b8:96:3a:94:b6:4e:
00:f7:25:06:b6:59:1c:03:27:e0:85:ae:9c:83:01:9d:fa:f5:
04:cd:41:48:e4:16:f7:13:16:0a:15:ba:d7:d8:11:b9:38:cd:
0d:0f:08:d3:f0:af:f8:b0:fe:a0:82:1a:44:b3:8e:a6:4f:ee:
55:1c:97:9c:b2:1e:f7:5f:fd:27:67:98:31:ad:a9:16:3e:32:
1f:ad:08:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:59 2024 by rpki-client on console-fra.rpki-client.org