Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/a82D76npNZPn1FCsavtjdg6T620.roa
File: a82D76npNZPn1FCsavtjdg6T620.roa (raw, json)
Hash identifier: yOFtzPi7Uwn0iYUmyJYSQHaKBDKP2toJre3AUCU09Ko=
Subject key identifier: 6B:CD:83:EF:A9:E9:35:93:E7:D4:50:AC:6A:FB:63:76:0E:93:EB:6D
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1F26878F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/a82D76npNZPn1FCsavtjdg6T620.roa
Signing time: Tue 21 Jun 2022 07:49:45 +0000
ROA not before: Tue 21 Jun 2022 07:49:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 91.92.115.0/24 maxlen: 24
194.180.50.0/24 maxlen: 24
185.218.139.0/24 maxlen: 24
194.169.175.0/24 maxlen: 24
37.139.131.0/24 maxlen: 24
37.139.130.0/24 maxlen: 24
94.154.172.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
109.206.239.0/24 maxlen: 24
212.87.205.0/24 maxlen: 24
178.215.226.0/24 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.225.0/24 maxlen: 24
178.215.227.0/24 maxlen: 24
178.215.239.0/24 maxlen: 24
178.215.237.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
193.47.63.0/24 maxlen: 24
193.47.62.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
185.216.68.0/24 maxlen: 24
185.216.69.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
79.110.48.0/24 maxlen: 24
87.120.84.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
79.110.63.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
83.219.98.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 522618767 (0x1f26878f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 21 07:49:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bcd83efa9e93593e7d450ac6afb63760e93eb6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0e:a0:f6:10:82:1e:a9:5b:0f:08:05:40:40:
2b:c9:61:38:52:03:b6:c1:22:1b:12:4c:19:8b:7a:
94:b0:9e:18:17:5f:1a:74:40:c2:00:78:ca:9d:47:
84:32:e6:bc:ce:3a:9d:51:36:69:bc:f4:d5:96:57:
2c:42:b3:3c:2d:cd:2b:d4:e5:50:ed:6c:6f:99:2d:
ef:ed:0c:7a:5d:81:3a:08:29:02:f3:73:99:7e:93:
2b:ba:23:32:96:17:19:40:d2:f3:d6:85:8b:4c:19:
cf:55:78:9a:c8:b2:51:11:ff:e9:68:b7:a1:5b:5a:
aa:8b:44:dd:31:81:30:ae:db:60:5b:f9:0a:06:22:
71:f3:8a:a5:53:82:7e:bc:29:f5:20:0f:82:8b:be:
55:db:f1:56:52:27:8a:0c:54:14:37:d8:f0:79:3e:
5d:02:2e:d6:0f:1f:35:ef:9d:6c:35:7b:2e:23:cf:
26:a4:91:e0:e7:8e:44:37:6c:3f:5c:31:2e:b6:85:
c0:6c:63:fd:81:d9:21:4b:c8:a5:5e:06:72:da:59:
13:23:9e:bf:bf:d7:bd:13:19:90:e5:e9:85:00:16:
7d:09:72:b0:1e:0c:5a:57:a3:c9:b9:61:ce:a0:09:
fb:60:86:69:2b:bc:1f:1a:8f:e1:6f:e2:28:f8:63:
50:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CD:83:EF:A9:E9:35:93:E7:D4:50:AC:6A:FB:63:76:0E:93:EB:6D
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/a82D76npNZPn1FCsavtjdg6T620.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.130.0/23
79.110.48.0/24
79.110.50.0/24
79.110.63.0/24
80.76.51.0/24
83.219.97.0-83.219.98.255
87.120.84.0/24
87.120.87.0/24
91.92.115.0/24
94.154.172.0/24
109.206.239.0/24
178.215.224.0/22
178.215.237.0/24
178.215.239.0/24
185.216.68.0/23
185.218.139.0/24
185.252.176.0/24
193.35.18.0/24
193.37.47.0/24
193.47.62.0/23
194.169.175.0/24
194.180.50.0/24
212.87.205.0/24
Signature Algorithm: sha256WithRSAEncryption
94:8b:32:f5:d6:f6:d4:89:d5:7a:af:95:d8:ef:26:0e:a5:dc:
cd:c3:0f:bb:68:76:5f:34:85:71:94:ad:78:53:8a:5e:57:77:
3d:91:eb:96:2e:24:93:e5:31:38:67:5a:4b:a0:df:d0:0b:cf:
c6:dc:ff:49:0f:c1:97:90:52:9c:39:f8:2d:9d:a8:1e:54:4b:
24:18:4d:e0:1b:9b:ad:24:6a:6f:36:21:d0:bd:bb:70:d0:53:
04:9b:73:87:ea:83:35:6c:5f:be:09:94:97:94:84:b6:f7:0b:
53:ed:f9:92:86:75:33:a5:91:77:a2:96:c9:0e:17:1f:90:98:
51:da:18:7f:15:83:e6:0a:25:58:90:58:13:f2:b9:ac:22:2f:
2a:28:a5:3a:d5:30:91:19:e8:cb:04:1d:9f:ad:20:d9:f4:7c:
34:7f:14:d7:5b:7d:9b:87:0a:ff:a7:7d:f1:94:e9:d4:a6:64:
53:f5:9d:4a:e2:57:20:93:c1:b1:b3:c2:f1:58:0e:73:d5:e4:
7f:47:59:16:8a:01:9c:53:a2:f2:e2:1f:09:10:1a:4b:3a:cd:
b4:3d:98:4b:ec:31:7b:73:f2:22:7f:f2:e9:7e:70:87:c7:1c:
bc:06:44:19:21:59:5d:48:f6:cf:9d:ef:0a:4c:e4:ed:34:e9:
62:ff:94:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:39 2023 by rpki-client on console-ams.rpki-client.org