Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/e81755-4592-4f20-af70-caf951e1531d/1/vt8RVcQV00gW_mKmbd_N8lnCAWg.roa
File: vt8RVcQV00gW_mKmbd_N8lnCAWg.roa (raw, json)
Hash identifier: nIvoqQZ2i7Ty/6qmP1HHvLBjA6gWJwzcaZy1Yq6mnMQ=
Subject key identifier: BE:DF:11:55:C4:15:D3:48:16:FE:62:A6:6D:DF:CD:F2:59:C2:01:68
Certificate issuer: /CN=730e19bf2f2fdb730232da2c4551a312ba3e2ee2
Certificate serial: 335D0E80
Authority key identifier: 73:0E:19:BF:2F:2F:DB:73:02:32:DA:2C:45:51:A3:12:BA:3E:2E:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cw4Zvy8v23MCMtosRVGjEro-LuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/e81755-4592-4f20-af70-caf951e1531d/1/vt8RVcQV00gW_mKmbd_N8lnCAWg.roa
Signing time: Sat 01 Jan 2022 12:58:06 +0000
ROA not before: Sat 01 Jan 2022 12:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201863
IP address blocks: 185.187.186.0/24 maxlen: 24
185.187.185.0/24 maxlen: 24
185.187.184.0/24 maxlen: 24
185.187.187.0/24 maxlen: 24
185.32.13.0/24 maxlen: 24
185.32.12.0/24 maxlen: 24
185.32.14.0/24 maxlen: 24
185.32.15.0/24 maxlen: 24
93.190.216.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 861736576 (0x335d0e80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=730e19bf2f2fdb730232da2c4551a312ba3e2ee2
Validity
Not Before: Jan 1 12:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bedf1155c415d34816fe62a66ddfcdf259c20168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:61:09:86:d8:c6:e8:64:2b:79:69:84:07:97:
19:68:c9:81:78:7e:78:d5:0d:2a:1a:64:38:b4:0e:
de:6c:6f:9b:71:54:4d:04:ca:7c:23:7d:b4:df:0f:
9b:00:6b:e0:1b:63:4d:a5:1f:98:44:4d:30:c4:dd:
9b:fc:91:e3:95:6c:b1:49:da:2a:3d:38:9c:43:45:
f2:58:cc:f0:5e:35:9e:64:83:e6:e7:89:40:e3:54:
6b:4d:50:09:de:3e:37:fd:40:54:b4:a4:ae:ec:e1:
ce:ff:29:0a:4f:2d:32:f2:51:7c:df:dd:08:e7:19:
e2:7a:7d:5a:dd:82:15:0e:7a:77:87:6c:37:5d:69:
24:a4:68:ab:fd:14:0a:cd:fd:d9:5c:02:05:fa:43:
53:31:39:6c:bb:86:63:ac:5e:5d:b4:2c:15:83:db:
7f:55:d5:59:26:17:52:4e:2f:23:cb:ef:d1:0f:3e:
67:d5:f6:a3:59:59:2a:b3:d4:7c:d0:fe:b9:cf:10:
0e:ce:7d:9a:1d:1c:94:e8:0e:f5:cb:86:37:19:95:
cc:19:59:69:83:fe:af:e6:89:0b:55:56:da:69:6a:
3b:63:6f:e5:a4:e2:02:19:a2:9a:70:6e:42:20:6b:
11:f2:84:a9:ae:1e:cc:ae:ae:b3:93:ef:33:9c:b6:
66:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DF:11:55:C4:15:D3:48:16:FE:62:A6:6D:DF:CD:F2:59:C2:01:68
X509v3 Authority Key Identifier:
keyid:73:0E:19:BF:2F:2F:DB:73:02:32:DA:2C:45:51:A3:12:BA:3E:2E:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cw4Zvy8v23MCMtosRVGjEro-LuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e81755-4592-4f20-af70-caf951e1531d/1/vt8RVcQV00gW_mKmbd_N8lnCAWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e81755-4592-4f20-af70-caf951e1531d/1/cw4Zvy8v23MCMtosRVGjEro-LuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.216.0/24
185.32.12.0/22
185.187.184.0/22
Signature Algorithm: sha256WithRSAEncryption
33:4f:30:ab:a9:b1:fa:8c:c1:9a:21:4a:72:39:e1:fc:7b:04:
d5:f5:f3:76:91:42:7a:0c:56:3b:51:97:53:6c:c1:78:5a:36:
45:6d:b2:bb:32:6a:47:d3:1e:a6:94:dc:87:9b:a1:2d:8d:bf:
34:c6:8b:cf:80:b5:3a:92:fa:64:cd:69:c6:71:23:b9:1d:75:
4d:93:05:87:22:0d:d5:9a:a1:a1:25:ba:10:b2:fa:72:a0:b3:
d5:37:b4:58:3c:d7:e6:21:0a:86:11:61:68:7d:15:02:52:69:
e2:71:18:b5:6b:0d:02:89:1d:da:0b:94:07:e0:e4:cc:09:b8:
3f:4e:c0:d3:9d:13:7a:5c:0d:f9:86:2d:7d:c5:05:19:ae:6e:
9c:d2:16:11:66:fe:0f:df:4f:0e:c4:e7:a7:9b:ec:13:24:63:
4b:64:52:ed:24:a3:a2:46:eb:f8:8d:6d:0d:9e:77:91:5d:02:
bd:d3:72:cf:c2:fc:4c:d6:58:1e:90:c5:2b:af:55:1b:c4:3a:
7d:ba:24:0b:65:da:76:c6:43:c2:a4:95:b0:6f:d6:76:64:86:
36:47:e7:17:b5:1c:15:c4:be:dc:33:f1:66:98:df:44:26:6d:
ea:2a:7c:6c:20:59:8a:ce:09:e7:a4:bb:7a:bf:16:3e:eb:6e:
6f:c8:1d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:05 2023 by rpki-client on console-ams.rpki-client.org