Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/eV_u-ijK0x2Bl2Zro6w0ydSfyy0.roa
File: eV_u-ijK0x2Bl2Zro6w0ydSfyy0.roa (raw, json)
Hash identifier: BpvY+wySBElKXj5W/Soz2e5JgNEdMBUA7xqxdcDbGc8=
Subject key identifier: 79:5F:EE:FA:28:CA:D3:1D:81:97:66:6B:A3:AC:34:C9:D4:9F:CB:2D
Certificate issuer: /CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Certificate serial: 01856CE627ACCBFDE5E89F14CC4A057E599D
Authority key identifier: A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/eV_u-ijK0x2Bl2Zro6w0ydSfyy0.roa
Signing time: Sun 01 Jan 2023 10:35:00 +0000
ROA not before: Sun 01 Jan 2023 10:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198518
IP address blocks: 45.131.35.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:27:ac:cb:fd:e5:e8:9f:14:cc:4a:05:7e:59:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Validity
Not Before: Jan 1 10:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=795feefa28cad31d8197666ba3ac34c9d49fcb2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b1:dc:1e:2a:2c:1e:6f:b2:4d:f7:c7:15:77:
38:92:3c:ee:21:7e:7d:06:5d:52:5d:18:dd:22:f0:
3a:af:ac:01:31:b6:d5:7f:61:ac:4c:3e:6b:b4:26:
5e:0f:a9:d1:a0:53:c3:76:0a:b8:56:7d:e3:f8:a5:
f2:37:78:5a:64:78:99:ec:b7:a1:d9:5d:11:c9:ea:
b3:11:1f:21:92:a6:db:74:8c:ff:11:ba:f6:9f:b3:
bf:de:72:51:5a:da:46:bd:c5:e5:c2:8a:f8:f2:19:
50:58:2e:e3:d4:be:48:ac:ce:ea:59:a1:b0:c5:68:
12:06:ae:85:27:ba:bf:76:dc:17:05:73:d8:e0:f6:
30:47:64:af:51:85:20:97:3a:b5:9e:53:90:3e:60:
0f:7e:22:27:95:80:47:1a:07:4d:91:dd:85:ea:05:
0c:39:a3:a7:fb:43:72:12:5c:71:c7:7d:7e:e7:96:
9d:0a:b0:1e:cb:45:4f:cc:7d:57:0c:99:ad:f2:70:
85:f9:31:7d:43:e4:f8:eb:ab:55:53:5f:cf:18:2e:
0a:f8:2f:63:8e:51:29:c6:c2:9f:37:00:12:8c:bd:
a4:16:fb:70:08:0f:41:4e:81:0e:bd:1f:14:21:f4:
31:31:42:f6:2a:31:29:61:4a:42:38:04:48:0a:33:
5e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5F:EE:FA:28:CA:D3:1D:81:97:66:6B:A3:AC:34:C9:D4:9F:CB:2D
X509v3 Authority Key Identifier:
keyid:A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/eV_u-ijK0x2Bl2Zro6w0ydSfyy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.35.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:88:a1:db:f3:34:ec:a2:a6:72:15:70:4c:24:ce:df:4b:6a:
1d:5e:70:8d:d6:cc:f2:94:52:fb:05:ea:cb:76:83:72:10:a7:
a6:93:e4:4d:3c:c1:59:d7:d0:ab:01:c1:da:9b:d9:76:6c:41:
56:75:f3:3e:61:26:74:98:7c:34:ec:7f:4a:9a:38:2a:54:6d:
d8:ed:48:5f:31:4d:ca:d1:40:20:8b:01:b3:09:27:f6:5a:ac:
c0:42:ea:5b:be:97:50:34:be:a0:3a:30:80:b6:c9:45:af:6e:
c8:fa:32:12:b8:c4:de:ef:29:db:6e:3f:3f:5f:83:d9:a4:6e:
9c:66:ba:14:8f:43:ad:37:fa:ee:1b:06:c7:cf:c7:7a:ac:23:
3e:17:62:ff:1b:48:fe:e7:fa:72:c9:21:14:44:34:35:23:1a:
d4:69:c7:c3:ee:e3:3b:0a:8b:48:e0:77:fa:23:a7:0e:b6:e5:
f0:02:b7:d4:42:d7:36:ae:3d:43:70:0b:85:3c:6d:9f:94:98:
2f:99:b3:93:d8:4f:de:f3:f3:d1:98:ba:06:ec:aa:67:23:dd:
ff:75:2b:b1:23:a4:b9:12:12:bd:35:00:f0:76:59:f8:85:3f:
2f:ff:af:f3:db:35:c8:32:76:92:45:fd:65:cd:00:c0:4b:b0:
1a:24:f5:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:59 2024 by rpki-client on console-ams.rpki-client.org