Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jlpsWUCVBSpZZ84hU1itG4NQjw4.roa
File: jlpsWUCVBSpZZ84hU1itG4NQjw4.roa (raw, json)
Hash identifier: qYMAwJozM3OvB9BIDW7kVy/AN+Syp30G8lx8VALIA/s=
Subject key identifier: 8E:5A:6C:59:40:95:05:2A:59:67:CE:21:53:58:AD:1B:83:50:8F:0E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018336A9A4082FB64079BE486D54897D7C67
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jlpsWUCVBSpZZ84hU1itG4NQjw4.roa
Signing time: Tue 13 Sep 2022 11:43:50 +0000
ROA not before: Tue 13 Sep 2022 11:43:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 194.180.50.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:a9:a4:08:2f:b6:40:79:be:48:6d:54:89:7d:7c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 13 11:43:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e5a6c594095052a5967ce215358ad1b83508f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:99:cf:7e:06:0c:5a:ec:24:ab:32:05:71:6e:
a6:1d:f1:7b:c0:51:48:40:8d:26:60:8b:3e:06:3e:
1b:4f:39:e2:bb:02:c1:a5:4a:98:99:11:36:d6:be:
4c:e5:1b:0f:63:9d:97:f3:d2:c6:5d:b4:cf:cb:a7:
21:22:89:a6:2b:1d:aa:09:50:af:27:36:75:7c:ac:
34:3e:27:74:e1:89:45:54:82:17:27:f5:9d:22:72:
5e:59:75:0b:4a:92:31:75:79:52:81:ab:46:b7:cd:
c3:dd:1d:cb:2b:56:12:71:ec:34:cb:06:6c:c1:34:
81:24:71:f8:20:17:ce:f7:ed:c3:e7:99:7e:cf:6a:
04:2f:27:9e:aa:86:9e:49:17:de:cc:34:57:13:a8:
3c:c7:fa:ce:3f:01:cc:fe:58:49:9a:5f:49:38:a8:
e4:ba:30:01:55:dd:75:c7:89:11:e4:a5:46:e2:2e:
66:31:2c:19:c3:3d:aa:8f:81:59:ee:7d:f2:5a:16:
12:52:94:ca:a4:70:25:e3:af:25:02:f4:54:52:e3:
b2:e9:63:d8:a6:06:49:47:b7:54:de:f7:77:9b:e3:
b5:98:a2:f7:67:94:46:e2:26:c9:20:dd:04:e0:45:
d1:f7:8a:62:6d:2c:84:10:ad:cd:8c:53:6e:02:6e:
0a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:5A:6C:59:40:95:05:2A:59:67:CE:21:53:58:AD:1B:83:50:8F:0E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jlpsWUCVBSpZZ84hU1itG4NQjw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.50.0/24
Signature Algorithm: sha256WithRSAEncryption
38:76:83:df:6e:76:55:76:49:96:ce:e6:dc:13:70:ab:80:f8:
1e:0f:47:58:b6:e3:70:02:cf:ba:a9:3c:50:a5:a3:1a:2d:61:
df:81:e3:e5:13:3a:c7:8c:7d:5f:93:b3:fd:7e:95:72:8a:9a:
81:4b:86:33:9a:e9:81:c6:7b:b4:f7:31:12:c5:36:db:c0:f3:
10:da:d0:92:b7:c2:d7:e3:ba:bb:37:0d:9d:26:58:c9:77:0c:
38:41:b0:71:6e:fc:ea:1c:17:3e:58:db:c9:46:1a:2b:c5:fa:
ec:d7:d6:43:c9:12:4f:e5:fc:25:89:07:33:aa:1f:2b:5f:40:
e6:e3:0d:6d:31:88:a5:33:58:28:08:79:01:97:a9:85:f1:b6:
37:4a:7e:33:7e:70:dc:86:57:77:ab:b0:44:0f:e9:6a:a2:6b:
07:5b:64:4d:e3:03:df:f3:11:93:35:30:8c:af:c7:4a:5a:eb:
43:72:72:ff:1a:1f:11:72:cd:9e:fd:f1:a7:f7:3f:24:11:20:
3b:b9:f4:b8:fb:c3:83:29:59:ac:6d:b7:bc:18:a9:80:40:e9:
f2:32:54:9f:72:36:bc:b4:62:fc:b3:d5:c3:eb:02:e3:31:5f:
5b:bb:2b:2c:6b:53:a8:f9:2d:83:78:cc:9a:45:9a:87:1a:fa:
7e:fb:69:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:17 2024 by rpki-client on console-fra.rpki-client.org