Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/Cl8q_-Q5xfef5kDu225mBSYVecM.roa
File: Cl8q_-Q5xfef5kDu225mBSYVecM.roa (raw, json)
Hash identifier: vuti81EhNdMoWfq3r75v59iuEd8W0u+chlh4m0/pN6M=
Subject key identifier: 0A:5F:2A:FF:E4:39:C5:F7:9F:E6:40:EE:DB:6E:66:05:26:15:79:C3
Certificate issuer: /CN=a29d9751f3675f51332734da68ea960260045b12
Certificate serial: 0E4AC727
Authority key identifier: A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/Cl8q_-Q5xfef5kDu225mBSYVecM.roa
Signing time: Fri 01 Apr 2022 15:36:43 +0000
ROA not before: Fri 01 Apr 2022 15:36:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206680
IP address blocks: 80.72.22.0/23 maxlen: 32
2a00:8740:700::/40 maxlen: 64
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239781671 (0xe4ac727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a29d9751f3675f51332734da68ea960260045b12
Validity
Not Before: Apr 1 15:36:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a5f2affe439c5f79fe640eedb6e6605261579c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e8:31:0a:98:95:0e:53:64:07:e5:f5:60:ab:
7d:40:a6:84:ab:ff:7b:11:c1:ab:41:ec:f2:31:fd:
d6:29:70:f7:44:6c:b6:91:18:4d:11:88:56:74:5c:
25:0a:32:68:41:b2:10:97:60:68:5d:7b:e1:d2:98:
98:e3:9c:86:24:79:c9:c5:62:b0:f2:eb:c8:76:23:
16:07:e1:e8:f3:af:7b:05:ba:17:a3:dc:60:9d:ef:
1d:8e:dd:a9:20:6b:5b:5f:dd:f9:c4:68:eb:22:79:
62:33:51:8c:c2:ad:aa:55:eb:19:ac:5a:00:a8:5d:
12:9a:cd:3a:b0:7b:14:18:2a:47:26:44:7f:ef:c4:
ab:f3:30:aa:f8:c8:60:a9:3e:e9:1e:e7:7e:a8:0f:
33:c4:8c:97:b8:c5:23:48:d4:34:81:31:7e:c0:15:
3e:59:3a:99:dc:61:6c:a8:d2:5c:dc:2b:a0:bf:dd:
59:7b:b4:eb:25:ef:fc:61:79:c6:44:bf:f0:45:e4:
ba:75:ca:18:19:12:31:e5:43:77:9d:47:a2:f7:ee:
55:5a:a8:2a:4d:8b:a9:90:a5:6e:15:97:ba:7d:a9:
32:cf:0e:5a:88:4f:b8:08:42:b1:3a:b4:88:a2:4d:
13:a6:11:5e:e6:8d:fe:9b:e6:de:bb:74:60:56:6b:
bc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5F:2A:FF:E4:39:C5:F7:9F:E6:40:EE:DB:6E:66:05:26:15:79:C3
X509v3 Authority Key Identifier:
keyid:A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/Cl8q_-Q5xfef5kDu225mBSYVecM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/op2XUfNnX1EzJzTaaOqWAmAEWxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.22.0/23
IPv6:
2a00:8740:700::/40
Signature Algorithm: sha256WithRSAEncryption
7b:d7:ff:00:e2:da:df:9e:cb:53:b3:53:e8:91:ed:10:ae:a1:
27:e0:f9:78:b9:cf:b5:84:7c:1c:42:96:7d:bb:f1:c9:59:ec:
e0:6f:73:c8:c8:f3:29:7a:e4:da:40:f9:5f:02:6c:b1:9d:e1:
0a:67:ba:f2:f4:a7:52:14:91:8c:82:31:06:a1:aa:6c:3a:c3:
9a:ac:f7:8f:08:2a:25:78:70:e8:99:e8:57:17:c1:f0:02:12:
9f:3f:ec:2a:64:6e:d9:2b:8d:f2:82:32:33:35:aa:33:28:da:
c3:25:94:09:e5:38:b2:cc:41:5a:9e:c7:72:34:a4:ee:62:5d:
22:76:3a:96:ca:c8:8b:2a:72:98:92:d9:b3:9e:1d:bf:19:e6:
05:02:92:24:0d:2b:83:17:18:eb:45:fd:19:68:59:43:6c:f5:
03:a3:32:5c:29:9a:25:fa:a7:9e:2f:b2:10:08:1c:5d:6f:78:
4e:af:d2:73:bf:af:e4:41:c3:ca:06:3e:3f:e4:1f:a2:0b:de:
a7:b7:d3:d6:06:73:7d:f9:c2:ef:41:d4:e9:d2:d9:f5:5e:34:
51:2a:6f:17:3e:d1:4f:9b:99:06:d6:7f:0d:1f:59:b0:a1:31:
60:f8:b4:81:88:cc:0a:77:51:ef:e2:18:50:db:ab:ab:b4:37:
0f:37:56:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:05 2024 by rpki-client on console-fra.rpki-client.org