Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vlp_KlLuZd8yYbt1kolAcQFszeQ.roa
File: Vlp_KlLuZd8yYbt1kolAcQFszeQ.roa (raw, json)
Hash identifier: rfjjEmZdmwb77+9gs468VKIimRvmlvhs20gdt3Y7GlE=
Subject key identifier: 56:5A:7F:2A:52:EE:65:DF:32:61:BB:75:92:89:40:71:01:6C:CD:E4
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1EB7836A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vlp_KlLuZd8yYbt1kolAcQFszeQ.roa
Signing time: Mon 30 May 2022 12:44:14 +0000
ROA not before: Mon 30 May 2022 12:44:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 92.249.51.0/24 maxlen: 24
92.249.48.0/24 maxlen: 24
193.35.16.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 515343210 (0x1eb7836a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 30 12:44:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=565a7f2a52ee65df3261bb7592894071016ccde4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:32:c5:35:6d:fb:1c:7c:30:6e:ee:60:92:62:
38:25:49:c8:1a:74:29:9f:40:d2:40:ff:34:7f:6a:
fc:ae:39:e9:f9:fd:ed:e0:9b:00:1a:2d:77:5b:87:
0c:3c:0b:44:78:70:e3:b1:95:65:6a:95:bd:78:59:
c0:13:53:26:32:44:d2:58:aa:bb:f6:03:2c:b0:0d:
c1:0a:3f:fb:0c:88:3b:a2:57:74:c8:14:54:db:c4:
0f:c0:ce:33:01:99:89:14:95:4b:fe:44:8a:6f:17:
03:27:52:05:29:09:78:36:64:56:fc:19:d8:54:bf:
08:4d:13:f2:a0:73:16:fe:65:31:53:1b:47:df:7e:
06:a0:d8:91:19:e2:f3:b4:36:43:3b:e3:3c:dd:d5:
af:e9:c8:3d:e9:31:15:63:5c:ce:fb:1e:55:0f:fa:
c2:14:1d:fb:82:c6:eb:63:1e:b2:06:99:08:b2:23:
eb:df:a5:77:95:d5:c0:a3:aa:2d:bf:22:63:87:84:
e9:9c:a1:1d:54:77:a2:d6:4d:a6:1b:5a:b5:db:b1:
71:f8:eb:0a:59:99:97:08:f8:b1:bb:93:5b:f0:d6:
fd:83:21:5b:21:12:e6:b4:8d:0e:4a:7f:51:01:24:
95:cd:a7:3b:ab:9a:ad:91:e4:3d:86:77:0b:e5:70:
86:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5A:7F:2A:52:EE:65:DF:32:61:BB:75:92:89:40:71:01:6C:CD:E4
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vlp_KlLuZd8yYbt1kolAcQFszeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.48.0/24
92.249.51.0/24
193.35.16.0/23
Signature Algorithm: sha256WithRSAEncryption
48:bb:88:a4:cc:47:08:35:b3:c3:54:e1:24:09:3c:ce:ab:93:
4a:c7:cd:21:4c:4c:fc:5b:5b:f0:16:b4:d7:5d:ea:03:b5:03:
57:97:de:94:ef:aa:69:6d:f9:c5:d6:75:4f:17:f0:60:80:c1:
48:7d:eb:f2:0c:1c:e6:2a:7d:3c:53:86:58:54:5a:c9:64:19:
d3:e3:42:5c:5a:55:f3:e6:a2:ad:4b:f3:a3:04:c9:84:ad:e7:
e8:0a:b6:f3:4b:dd:54:7e:bf:f7:8f:90:c9:fb:97:22:21:36:
1d:be:7a:b5:98:0f:05:3b:bb:80:a1:1f:4d:59:f1:a6:c3:f4:
ab:45:06:03:1a:83:42:16:d7:6e:2a:f0:50:5e:98:84:bf:7e:
27:6c:8d:3a:ed:8f:8b:cf:02:7b:ec:23:65:8d:13:de:ba:bf:
57:cb:01:c7:58:11:6b:3d:7a:39:c8:ec:20:ab:c8:77:e8:f1:
23:9b:78:15:0e:02:44:b3:2c:d2:c4:94:78:1e:38:e5:96:4c:
dd:f5:24:45:02:45:2e:68:1f:45:2c:77:d2:8a:59:36:2c:e1:
b0:65:7d:29:9e:c0:74:88:21:87:89:41:41:5c:40:a8:bb:1a:
c9:3c:8b:ea:49:74:a4:75:f9:9c:01:57:b3:3e:0e:ba:d7:c2:
ac:20:58:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:08 2024 by rpki-client on console-fra.rpki-client.org