Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/SM0F6QKpZkd0698aE1YM6Fm1NZY.roa
File: SM0F6QKpZkd0698aE1YM6Fm1NZY.roa (raw, json)
Hash identifier: mWKgiZtBnhis9b7/GQGk2ApVVWUDQKzn6gmupG5kbAI=
Subject key identifier: 48:CD:05:E9:02:A9:66:47:74:EB:DF:1A:13:56:0C:E8:59:B5:35:96
Certificate issuer: /CN=a29d9751f3675f51332734da68ea960260045b12
Certificate serial: 0D7B5E59
Authority key identifier: A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/SM0F6QKpZkd0698aE1YM6Fm1NZY.roa
Signing time: Sat 01 Jan 2022 14:02:13 +0000
ROA not before: Sat 01 Jan 2022 14:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203510
IP address blocks: 185.9.185.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226188889 (0xd7b5e59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a29d9751f3675f51332734da68ea960260045b12
Validity
Not Before: Jan 1 14:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48cd05e902a9664774ebdf1a13560ce859b53596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:11:f2:d3:3e:f9:2e:0d:9f:7a:cb:c8:37:17:
0c:7d:cd:57:9e:96:19:78:59:37:89:b0:4b:f2:3d:
84:cb:95:00:d4:6d:0d:e7:ff:96:5c:ce:a6:9a:8d:
7f:ff:13:f0:10:e6:b8:e4:1c:0e:00:50:a7:1e:43:
cd:49:0b:5b:f0:e7:1d:05:6b:19:97:c5:4a:d9:9b:
1e:99:02:8f:a6:a1:f2:19:d5:99:29:06:65:5b:9a:
1e:29:8c:9a:47:e3:22:68:d8:e8:65:7b:64:a1:bb:
bf:4f:26:a7:90:f5:81:ba:35:cf:97:db:d1:2b:8d:
88:30:45:57:ef:e9:17:66:70:8d:b3:52:30:f0:93:
a1:cb:62:71:85:fa:e4:ea:08:62:ba:3d:32:38:ba:
a2:85:b5:8a:d8:78:0b:78:70:b0:f4:17:4f:ab:78:
9a:8e:bd:14:72:a2:c4:24:e9:b1:01:80:e9:e2:fd:
aa:4d:fa:cd:50:ce:5c:6f:1a:67:c8:16:ae:6b:74:
27:04:9c:87:2c:8a:a5:ba:db:48:bb:3e:d9:5d:4d:
81:d7:b4:a7:c3:18:5a:1c:92:34:7e:5b:82:15:37:
16:f7:fc:b7:ad:a1:e0:75:b0:cd:07:68:bf:93:c2:
45:6d:98:bf:36:cb:49:de:bf:b0:71:66:70:a6:aa:
70:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CD:05:E9:02:A9:66:47:74:EB:DF:1A:13:56:0C:E8:59:B5:35:96
X509v3 Authority Key Identifier:
keyid:A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/SM0F6QKpZkd0698aE1YM6Fm1NZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/op2XUfNnX1EzJzTaaOqWAmAEWxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.9.185.0/24
Signature Algorithm: sha256WithRSAEncryption
04:0a:f6:c5:b8:b0:b6:bb:24:bf:67:e9:8a:f2:be:51:96:89:
f0:ee:70:6a:25:d4:d0:5e:f3:5e:e6:bc:e1:20:62:21:46:02:
b4:23:e8:93:16:5f:1c:05:6e:4d:dd:72:a3:19:ed:d0:63:62:
e4:b3:9e:86:88:36:d6:c9:ad:9b:d3:2b:63:4e:a1:8e:56:62:
e2:4b:1c:88:25:6f:84:94:d1:39:ea:6c:f1:db:3d:40:5f:9d:
fe:0e:9f:d0:d6:7a:c6:08:88:99:22:04:1a:31:37:35:ce:a0:
bb:a0:96:00:a4:a6:95:ea:e2:f8:a0:c9:e3:60:34:d9:86:b1:
9b:ab:a3:bc:e8:cd:26:9e:82:f4:04:27:f6:f6:15:b8:51:ab:
bf:46:9f:90:a5:2e:3c:7c:ff:56:3b:57:5c:85:02:0e:e3:14:
2f:3f:10:96:97:a9:4d:34:7b:4b:d7:6e:a7:53:ce:9a:2e:9f:
b7:48:73:ad:b6:e4:a1:3b:a1:55:9b:29:f9:35:e6:a5:22:8c:
88:fc:4d:9f:9f:29:b8:ea:5b:56:9e:c6:ee:3c:23:51:7c:f5:
0a:6b:f9:b9:e2:43:14:12:37:6f:16:59:7c:c5:30:18:35:36:
44:29:46:68:82:99:44:ca:bb:08:dc:fa:b1:df:2d:a3:51:34:
68:42:f4:d4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDXteWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MjlkOTc1MWYzNjc1ZjUxMzMyNzM0ZGE2OGVhOTYwMjYwMDQ1YjEyMB4XDTIyMDEw
MTE0MDIxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDhjZDA1ZTkwMmE5
NjY0Nzc0ZWJkZjFhMTM1NjBjZTg1OWI1MzU5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN8R8tM++S4Nn3rLyDcXDH3NV56WGXhZN4mwS/I9hMuVANRt
Def/llzOppqNf/8T8BDmuOQcDgBQpx5DzUkLW/DnHQVrGZfFStmbHpkCj6ah8hnV
mSkGZVuaHimMmkfjImjY6GV7ZKG7v08mp5D1gbo1z5fb0SuNiDBFV+/pF2ZwjbNS
MPCTocticYX65OoIYro9Mji6ooW1ith4C3hwsPQXT6t4mo69FHKixCTpsQGA6eL9
qk36zVDOXG8aZ8gWrmt0JwSchyyKpbrbSLs+2V1Ngde0p8MYWhySNH5bghU3Fvf8
t62h4HWwzQdov5PCRW2YvzbLSd6/sHFmcKaqcGECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRIzQXpAqlmR3Tr3xoTVgzoWbU1ljAfBgNVHSMEGDAWgBSinZdR82dfUTMn
NNpo6pYCYARbEjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29wMlhVZk5uWDFFekp6VGFhT3FXQW1BRVd4SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGYvZTY0Mzk4LTk2MDEtNGI3Yy1iNzgzLTA3OWJhMDU3MGY3NS8x
L1NNMEY2UUtwWmtkMDY5OGFFMVlNNkZtMU5aWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYv
ZTY0Mzk4LTk2MDEtNGI3Yy1iNzgzLTA3OWJhMDU3MGY3NS8xL29wMlhVZk5uWDFF
ekp6VGFhT3FXQW1BRVd4SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkJuTANBgkqhkiG9w0BAQsFAAOC
AQEABAr2xbiwtrskv2fpivK+UZaJ8O5waiXU0F7zXua84SBiIUYCtCPokxZfHAVu
Td1yoxnt0GNi5LOehog21smtm9MrY06hjlZi4ksciCVvhJTROeps8ds9QF+d/g6f
0NZ6xgiImSIEGjE3Nc6gu6CWAKSmleri+KDJ42A02Yaxm6ujvOjNJp6C9AQn9vYV
uFGrv0afkKUuPHz/VjtXXIUCDuMULz8QlpepTTR7S9dup1POmi6ft0hzrbbkoTuh
VZsp+TXmpSKMiPxNn58puOpbVp7G7jwjUXz1Cmv5ueJDFBI3bxZZfMUwGDU2RClG
aIKZRMq7CNz6sd8to1E0aEL01A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:05 2024 by rpki-client on console-fra.rpki-client.org