Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/9p0lye8ZLhKKjxqppiODMz0Em1M.roa
File: 9p0lye8ZLhKKjxqppiODMz0Em1M.roa (raw, json)
Hash identifier: BZ4cXML/x3VSqTsQWCA4q+FXJ6Bb9f9nS4nQaj8GSho=
Subject key identifier: F6:9D:25:C9:EF:19:2E:12:8A:8F:1A:A9:A6:23:83:33:3D:04:9B:53
Certificate issuer: /CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Certificate serial: 01830E2C689C2FCCC076A194B075ACB00DF4
Authority key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/9p0lye8ZLhKKjxqppiODMz0Em1M.roa
Signing time: Mon 05 Sep 2022 15:02:14 +0000
ROA not before: Mon 05 Sep 2022 15:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212182
IP address blocks: 94.154.184.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0e:2c:68:9c:2f:cc:c0:76:a1:94:b0:75:ac:b0:0d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Validity
Not Before: Sep 5 15:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f69d25c9ef192e128a8f1aa9a62383333d049b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:5c:03:1a:0b:f5:68:9f:64:ca:43:f1:68:ca:
06:14:51:ae:e7:d9:00:92:a5:de:64:26:f0:eb:96:
9c:c4:4a:4f:e8:66:53:e2:15:11:93:2e:1a:58:40:
84:0c:2b:2e:b2:8b:dc:e9:53:f8:be:a6:91:79:7a:
38:2f:25:a3:60:10:33:e3:b2:81:c9:96:4c:68:f9:
3a:77:cd:39:3e:d4:d6:a5:de:a7:e5:b6:d9:ba:ef:
83:41:e4:02:a7:16:b0:44:a2:bf:f4:ad:ad:9d:f7:
a9:e0:a2:e3:a1:1a:92:f7:ca:7c:a7:34:93:34:4c:
a5:d3:a5:44:ea:d9:8e:0f:e9:0d:f5:a1:cd:ca:fb:
bb:09:51:1e:d7:58:ea:b2:d6:bc:0b:09:ae:55:7e:
b7:d7:e0:0c:c4:72:c7:da:f4:d5:15:9f:ae:7f:f7:
c9:00:05:67:97:f4:3c:e1:a9:2d:12:b9:08:1d:ed:
55:a0:a3:3a:38:17:61:5b:4a:33:35:fe:c4:f7:2e:
80:6c:eb:f7:d4:d8:24:3f:64:8a:3f:7f:61:55:ec:
3f:e7:4b:08:e7:25:5c:43:8f:ea:07:9b:7a:8c:8b:
c4:9a:45:04:8d:de:8c:43:f4:52:c0:01:f5:1f:e8:
51:42:22:75:ff:6b:83:aa:4f:bf:db:83:58:d7:ab:
08:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9D:25:C9:EF:19:2E:12:8A:8F:1A:A9:A6:23:83:33:3D:04:9B:53
X509v3 Authority Key Identifier:
keyid:7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/9p0lye8ZLhKKjxqppiODMz0Em1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.184.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:20:48:e2:3d:db:0a:e0:46:3c:c3:05:f9:a8:36:44:92:60:
8d:2f:8d:07:8c:58:1d:44:4a:7b:eb:46:57:a8:7b:9e:a9:09:
e2:66:85:d2:a4:c6:82:9a:f6:8b:86:0b:e6:c9:a7:6c:b8:5e:
1c:56:b6:9d:d1:5d:60:de:29:ae:d0:f7:04:8c:8f:ec:45:df:
9b:07:99:9a:87:8a:97:2f:52:a9:54:cf:1e:97:aa:15:7a:ff:
e5:f2:52:53:d8:99:88:cd:17:3a:09:a6:88:fc:27:b6:11:e4:
1b:a5:80:75:af:45:cd:4e:56:19:d6:7e:09:cf:82:67:d3:94:
45:39:2e:8f:00:f4:7f:e1:26:f0:92:74:1b:7c:2b:42:47:ce:
f6:cb:f1:fd:f9:ea:6c:9f:41:7a:98:6a:60:b0:96:5d:b7:a8:
a8:38:35:2a:2e:50:61:5b:23:0a:85:dc:87:96:5d:29:7c:61:
89:dc:5a:34:b2:46:57:da:2e:65:e5:25:03:dc:1f:39:44:c2:
64:26:89:80:3c:46:15:19:8b:f9:f0:33:bd:7a:b2:7f:06:9a:
9f:56:bb:0b:46:12:82:4f:b5:ef:aa:4e:93:2c:60:db:bd:b0:
70:3b:bf:a5:33:a4:f7:8a:ac:e1:c3:75:cb:ef:c8:6a:60:67:
58:11:0d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:03 2024 by rpki-client on console-ams.rpki-client.org