Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rANfORm9QiA6jgZRZVZDfF8VOSA.roa
File: rANfORm9QiA6jgZRZVZDfF8VOSA.roa (raw, json)
Hash identifier: lqWzqoQ2S4/KidQprwQSOyzPUReSy8iEKI+CD8B/isM=
Subject key identifier: AC:03:5F:39:19:BD:42:20:3A:8E:06:51:65:56:43:7C:5F:15:39:20
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1DD92328
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rANfORm9QiA6jgZRZVZDfF8VOSA.roa
Signing time: Mon 11 Apr 2022 06:16:11 +0000
ROA not before: Mon 11 Apr 2022 06:16:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 194.180.50.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 500769576 (0x1dd92328)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 11 06:16:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac035f3919bd42203a8e06516556437c5f153920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bc:55:c9:27:df:ed:38:35:5d:0f:45:3a:28:
70:01:06:58:38:83:37:4c:8b:eb:d3:bc:0b:5b:13:
c1:5a:58:a1:99:c6:c3:7d:c7:a7:19:7f:3d:ed:1e:
34:3f:c2:99:f3:5a:c3:bc:58:e6:a8:35:92:aa:16:
81:f4:c2:87:4c:b7:8a:58:97:b3:e0:e0:b4:0c:ce:
5b:46:4f:fd:05:24:37:86:c5:b5:61:61:26:35:bb:
00:57:59:4a:c1:ef:92:de:cb:35:f9:9d:8b:0f:b8:
ec:e7:1a:64:f3:98:ed:cb:f1:35:51:af:04:a9:d9:
02:e5:e5:f6:5d:cb:0a:eb:32:7c:c4:e5:1c:6f:be:
0d:25:62:46:30:e4:7e:ad:f3:c6:ec:cc:e1:dc:96:
17:74:01:f8:c9:64:20:90:31:bc:47:4a:a9:a8:31:
39:6c:e8:b2:de:d4:1a:58:d6:89:a5:74:4b:29:ba:
e6:63:67:b8:63:95:79:57:cf:01:cb:03:e3:dc:71:
c1:49:9f:b9:0a:96:c1:f6:49:76:d4:fe:34:a6:87:
52:f6:63:c4:b7:5c:6f:5c:11:e6:d6:19:91:f8:2e:
ee:18:09:de:bd:1b:fe:6e:20:46:31:fe:81:7e:c7:
ee:c9:13:e1:9e:f1:95:93:aa:30:15:fd:f3:77:cc:
b7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:03:5F:39:19:BD:42:20:3A:8E:06:51:65:56:43:7C:5F:15:39:20
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rANfORm9QiA6jgZRZVZDfF8VOSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.50.0/24
Signature Algorithm: sha256WithRSAEncryption
82:61:d3:9b:fb:13:35:06:99:d6:e2:4d:39:19:a1:9f:49:17:
09:76:d7:97:c1:b1:c1:c7:b3:c3:43:53:95:14:9b:51:6f:ae:
4e:59:cd:8c:e5:84:83:62:f3:01:77:f5:35:9a:bc:20:08:93:
c4:51:80:38:6c:cc:02:14:63:2d:c6:30:a1:fb:11:31:71:ee:
92:84:71:a9:2e:3b:33:e7:c5:47:5f:09:a3:8f:99:ac:bf:a1:
68:46:77:67:46:76:c9:29:84:e5:75:4c:13:61:f8:08:59:1f:
33:e5:89:6b:de:d9:d4:b9:b7:a6:99:65:3c:4e:ac:b1:d7:1f:
4c:79:cc:df:57:f0:3c:71:09:cb:e6:16:2d:2c:53:24:88:ff:
72:65:c9:ed:c5:6a:e6:a3:a5:29:29:76:46:4f:21:d6:6c:9f:
73:cb:a4:17:23:82:ea:2b:ce:8b:85:dc:d7:62:91:aa:b8:d3:
0c:ea:2b:5d:a3:19:61:e4:ae:d6:94:c2:55:ef:51:e8:bc:a2:
88:7e:1c:c1:d9:e7:84:b3:71:4d:e4:2b:a2:d8:2f:b8:e4:16:
08:81:4c:41:45:45:5c:32:66:ca:83:ff:ac:91:fd:c9:25:d2:
61:d3:0e:5f:0f:67:3d:9c:28:ca:d2:81:f2:60:33:e3:0d:99:
19:bc:7a:41
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHdkjKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDQx
MTA2MTYxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWMwMzVmMzkxOWJk
NDIyMDNhOGUwNjUxNjU1NjQzN2M1ZjE1MzkyMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM+8Vckn3+04NV0PRToocAEGWDiDN0yL69O8C1sTwVpYoZnG
w33Hpxl/Pe0eND/CmfNaw7xY5qg1kqoWgfTCh0y3iliXs+DgtAzOW0ZP/QUkN4bF
tWFhJjW7AFdZSsHvkt7LNfmdiw+47OcaZPOY7cvxNVGvBKnZAuXl9l3LCusyfMTl
HG++DSViRjDkfq3zxuzM4dyWF3QB+MlkIJAxvEdKqagxOWzost7UGljWiaV0Sym6
5mNnuGOVeVfPAcsD49xxwUmfuQqWwfZJdtT+NKaHUvZjxLdcb1wR5tYZkfgu7hgJ
3r0b/m4gRjH+gX7H7skT4Z7xlZOqMBX983fMtzkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSsA185Gb1CIDqOBlFlVkN8XxU5IDAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L3JBTmZPUm05UWlBNmpnWlJaVlpEZkY4Vk9TQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMK0MjANBgkqhkiG9w0BAQsFAAOC
AQEAgmHTm/sTNQaZ1uJNORmhn0kXCXbXl8Gxwcezw0NTlRSbUW+uTlnNjOWEg2Lz
AXf1NZq8IAiTxFGAOGzMAhRjLcYwofsRMXHukoRxqS47M+fFR18Jo4+ZrL+haEZ3
Z0Z2ySmE5XVME2H4CFkfM+WJa97Z1Lm3ppllPE6ssdcfTHnM31fwPHEJy+YWLSxT
JIj/cmXJ7cVq5qOlKSl2Rk8h1myfc8ukFyOC6ivOi4Xc12KRqrjTDOorXaMZYeSu
1pTCVe9R6LyiiH4cwdnnhLNxTeQrotgvuOQWCIFMQUVFXDJmyoP/rJH9ySXSYdMO
Xw9nPZwoytKB8mAz4w2ZGbx6QQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:20 2024 by rpki-client on console-fra.rpki-client.org