Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/zRiYHj6PMJNX1DayF-oCRe4I06I.roa
File: zRiYHj6PMJNX1DayF-oCRe4I06I.roa (raw, json)
Hash identifier: oQdl49OdW10NsYnSwXKm+QCN9GUUtCxXu3Q/s9pndDU=
Subject key identifier: CD:18:98:1E:3E:8F:30:93:57:D4:36:B2:17:EA:02:45:EE:08:D3:A2
Certificate issuer: /CN=a29d9751f3675f51332734da68ea960260045b12
Certificate serial: 01856E78CB2F1B69CC88492E192CB274D580
Authority key identifier: A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/zRiYHj6PMJNX1DayF-oCRe4I06I.roa
Signing time: Sun 01 Jan 2023 17:54:48 +0000
ROA not before: Sun 01 Jan 2023 17:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 92.118.72.0/24 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:cb:2f:1b:69:cc:88:49:2e:19:2c:b2:74:d5:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a29d9751f3675f51332734da68ea960260045b12
Validity
Not Before: Jan 1 17:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd18981e3e8f309357d436b217ea0245ee08d3a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9c:bf:f5:ee:f9:3f:e9:bb:5a:97:5e:18:fc:
51:1a:3e:cc:09:3c:38:0a:56:32:2a:7a:0d:e5:ca:
aa:fa:08:1a:f8:49:5a:b4:c8:06:fb:94:3a:07:dd:
9d:99:fa:87:6e:d5:0d:82:d7:92:e4:4c:e0:3b:17:
1f:92:b1:7f:69:0a:2d:fa:99:e5:17:4f:3f:c4:d6:
ce:b8:71:2b:6d:ca:f0:a3:9a:34:bd:95:65:da:9c:
68:60:b7:29:76:cc:cb:2e:52:ed:cd:f3:8a:1a:9a:
22:6d:6b:c9:ae:af:64:9f:db:bc:36:df:bc:ca:65:
ee:7b:13:53:26:7d:a8:0f:1f:8a:bb:7a:38:a5:54:
fd:de:76:68:07:b1:ec:ef:ba:28:a5:31:be:c2:7f:
34:0d:c5:da:f7:c9:9f:87:8d:dd:5d:fc:b3:88:6c:
44:fd:7b:0c:4d:10:f1:d4:c9:67:80:56:93:18:df:
79:63:72:39:b5:14:a9:d4:9c:25:23:24:2e:1f:d0:
7c:a1:01:d2:81:0d:b2:a8:8e:97:d8:00:14:9b:a9:
af:c8:72:a9:a3:8f:2a:d0:bc:f6:33:26:a9:bf:07:
57:36:84:7b:6f:3e:d7:6e:95:cc:06:50:ec:8b:28:
2b:16:0c:56:ce:82:fd:fa:1e:07:78:86:cf:e4:65:
a6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:18:98:1E:3E:8F:30:93:57:D4:36:B2:17:EA:02:45:EE:08:D3:A2
X509v3 Authority Key Identifier:
keyid:A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/zRiYHj6PMJNX1DayF-oCRe4I06I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/op2XUfNnX1EzJzTaaOqWAmAEWxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.72.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:8c:b3:49:9c:7c:33:7a:0f:05:92:6d:22:6c:da:7e:f6:49:
a5:3d:54:50:4d:28:65:c2:2d:0d:d2:24:b0:ca:4a:9d:c2:19:
c4:67:d4:a3:ce:65:d6:83:16:ec:18:b5:09:03:79:d6:cf:c4:
80:03:1f:47:a3:2b:e5:90:bb:ee:8d:54:c6:60:7a:9f:84:6b:
f5:fe:1c:66:5a:0f:6e:89:c1:98:0a:35:38:58:b9:23:d4:96:
76:af:f9:29:cf:ac:84:55:7b:19:86:ea:ce:93:5d:2d:d3:ca:
1d:8e:89:01:14:18:cd:57:ab:9d:8a:e7:2c:ef:65:5d:31:84:
9a:ee:20:75:56:b6:ad:b2:73:da:d2:40:9b:a9:d9:c5:40:32:
d6:72:ab:bd:d0:0f:83:18:0a:e5:ca:e8:4e:1e:72:a5:69:c3:
69:3c:33:22:fb:e3:94:64:e0:16:85:2f:4e:7e:76:7b:0c:60:
d7:04:56:49:fc:cb:8d:77:3e:16:a9:12:b2:2b:78:f8:25:26:
05:75:fa:a6:77:6b:2f:0d:aa:cc:5a:98:21:eb:32:8c:ef:a7:
4b:10:0a:9c:a4:44:14:21:0c:92:9b:a0:49:ac:c2:10:f1:2c:
d6:08:9c:f3:b3:6b:d2:c1:8c:5e:03:1c:a2:69:60:48:57:51:
39:eb:f1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:34 2024 by rpki-client on console-ams.rpki-client.org