Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/d5e350-c9a0-4634-8c9b-b8d9e9b4074e/1/RTHcMVil-07p_uLKgplV2ZBuQaY.roa
File: RTHcMVil-07p_uLKgplV2ZBuQaY.roa (raw, json)
Hash identifier: FiukgOTbTNmHIBSRRfP8I/4QW93/XJ6F2wzGRhYq+sw=
Subject key identifier: 45:31:DC:31:58:A5:FB:4E:E9:FE:E2:CA:82:99:55:D9:90:6E:41:A6
Certificate issuer: /CN=44cadab91a6b79a321618807c6789b2b1c982378
Certificate serial: 018281FFCF24F8B7C8F39E8B024449E8600F
Authority key identifier: 44:CA:DA:B9:1A:6B:79:A3:21:61:88:07:C6:78:9B:2B:1C:98:23:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMrauRpreaMhYYgHxnibKxyYI3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/d5e350-c9a0-4634-8c9b-b8d9e9b4074e/1/RTHcMVil-07p_uLKgplV2ZBuQaY.roa
Signing time: Tue 09 Aug 2022 09:46:41 +0000
ROA not before: Tue 09 Aug 2022 09:46:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47165
IP address blocks: 62.182.192.0/21 maxlen: 21
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:ff:cf:24:f8:b7:c8:f3:9e:8b:02:44:49:e8:60:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44cadab91a6b79a321618807c6789b2b1c982378
Validity
Not Before: Aug 9 09:46:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4531dc3158a5fb4ee9fee2ca829955d9906e41a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:03:48:39:11:12:3d:2a:72:1a:50:3a:74:26:
d4:7d:03:63:d1:27:b5:00:c7:7d:7b:f0:52:d5:2b:
cf:7e:00:a8:00:20:8f:0e:62:ac:67:53:ce:42:8d:
b9:2f:01:34:ce:fe:31:f4:59:a0:8e:5d:a5:7e:d1:
31:28:64:d1:af:f4:b9:2b:0a:85:34:e6:19:b1:f8:
95:02:9a:09:a9:1c:89:c1:87:eb:f8:04:0a:99:08:
c4:ab:64:e6:20:47:df:f8:9d:d0:76:71:95:ba:14:
6c:3c:72:f5:41:23:e8:e0:27:ef:f3:5e:de:de:c7:
11:98:f0:d8:30:be:29:1e:a8:55:47:1a:bf:49:9f:
6f:aa:50:cf:ea:ff:a9:36:a2:1f:dc:39:03:e4:8f:
05:ec:d4:8e:67:a7:53:85:a9:5d:72:67:b3:29:7c:
85:96:09:16:30:77:52:4c:08:7d:01:21:9d:18:36:
b2:37:8c:54:d4:07:a4:b2:52:1b:e6:95:49:f3:de:
71:59:09:a6:76:92:d4:98:e1:6c:a0:f6:21:d0:ce:
b6:ed:bf:5c:e8:9b:4c:2f:37:09:c2:8f:30:df:10:
fb:93:4e:fb:e7:6f:e7:62:da:71:dd:39:2f:3b:12:
b4:d4:87:3f:33:be:1c:97:d2:9e:46:af:1a:29:80:
c4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:31:DC:31:58:A5:FB:4E:E9:FE:E2:CA:82:99:55:D9:90:6E:41:A6
X509v3 Authority Key Identifier:
keyid:44:CA:DA:B9:1A:6B:79:A3:21:61:88:07:C6:78:9B:2B:1C:98:23:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMrauRpreaMhYYgHxnibKxyYI3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/d5e350-c9a0-4634-8c9b-b8d9e9b4074e/1/RTHcMVil-07p_uLKgplV2ZBuQaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/d5e350-c9a0-4634-8c9b-b8d9e9b4074e/1/RMrauRpreaMhYYgHxnibKxyYI3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.192.0/21
Signature Algorithm: sha256WithRSAEncryption
56:d0:11:a5:01:dd:97:79:db:38:92:35:09:39:f2:27:8a:97:
60:a2:9e:e4:33:1b:25:a1:5f:b6:2d:9f:58:86:80:26:0b:75:
bd:18:9a:6d:23:77:86:11:2e:96:44:e5:99:c4:75:67:0d:53:
5a:ed:7d:07:17:c0:ca:85:b8:83:e2:03:fa:e1:77:22:bb:1c:
09:4a:f8:43:3a:42:85:16:74:48:62:a5:c8:82:b8:ce:c2:d4:
a8:1d:44:a8:84:73:48:8b:18:55:0f:58:5f:89:38:1b:89:e5:
10:73:36:aa:e8:03:af:f8:d9:1d:30:bd:5c:27:18:32:5a:f0:
dd:bc:28:d5:32:14:79:25:03:4a:65:cc:60:25:61:8d:00:7c:
ad:55:5c:7a:43:b4:27:12:a6:15:f1:01:f1:a2:f8:bb:61:74:
7a:14:fe:98:15:7f:c0:51:18:76:38:9d:10:92:23:6b:da:cb:
11:10:70:c4:81:7a:4c:cf:bd:3e:d0:d5:4e:3f:32:8b:32:1a:
83:4e:65:22:a2:68:0e:57:95:02:dc:5d:d0:fc:ee:c5:b7:ea:
d3:d9:f3:14:2e:18:77:20:34:ac:bd:ab:13:a7:7a:c3:ce:42:
9d:f7:62:38:d6:f6:18:d4:10:97:70:08:7d:8a:2b:eb:72:a9:
0f:26:9b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:11 2024 by rpki-client on console-fra.rpki-client.org