Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/_0ZzG9wLn4Kx8rTOV1SDWwWUvvE.roa
File: _0ZzG9wLn4Kx8rTOV1SDWwWUvvE.roa (raw, json)
Hash identifier: vVXZTPiK29oktb4aP0yEEullHXKfilf3n4fIQyDR6CA=
Subject key identifier: FF:46:73:1B:DC:0B:9F:82:B1:F2:B4:CE:57:54:83:5B:05:94:BE:F1
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 383D06EA
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/_0ZzG9wLn4Kx8rTOV1SDWwWUvvE.roa
Signing time: Wed 12 Jan 2022 10:59:26 +0000
ROA not before: Wed 12 Jan 2022 10:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48205
IP address blocks: 178.175.191.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943523562 (0x383d06ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 12 10:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff46731bdc0b9f82b1f2b4ce5754835b0594bef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:23:23:49:2d:1e:f7:a3:90:39:a8:4e:5f:ec:
15:92:ba:02:86:5c:3a:e4:3c:ed:b2:3b:2b:a7:8b:
34:d5:dd:cc:9a:f1:56:1f:a4:ca:5a:8c:dd:4c:93:
c2:45:c5:b8:9f:67:b0:04:59:60:76:56:56:eb:c8:
cd:5c:9a:f9:cf:51:82:06:e4:44:d2:d6:e4:1c:d3:
fe:f8:c3:de:35:92:85:18:5a:c7:b7:f5:d5:e1:1e:
2b:8d:e2:16:b1:2a:f6:8f:b3:c6:ba:b1:e7:74:6d:
cf:92:ab:b6:c4:92:4f:b4:69:89:f1:d5:ef:08:eb:
e3:9b:a7:11:86:cd:45:fa:54:e5:08:cd:04:6b:1e:
f8:c1:8e:74:d9:48:f4:55:3e:d4:34:c0:e0:cf:76:
d5:35:a6:3e:cd:48:44:75:63:eb:e8:49:d7:f7:19:
91:2b:1a:54:61:ba:51:59:ac:55:ff:0c:54:47:ff:
ba:62:f9:25:e6:e4:54:7d:c2:56:26:23:db:cc:72:
a1:83:d1:c6:b0:8e:7a:aa:e1:de:33:c3:ef:d4:ea:
82:a4:19:97:cb:86:0b:17:10:a4:98:a0:30:33:a9:
51:b7:5a:69:77:6b:ec:16:22:cc:d6:0b:51:7b:20:
ab:5c:5f:34:91:ac:90:e1:80:b6:97:82:cc:d9:fd:
72:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:46:73:1B:DC:0B:9F:82:B1:F2:B4:CE:57:54:83:5B:05:94:BE:F1
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/_0ZzG9wLn4Kx8rTOV1SDWwWUvvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.191.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e8:e8:9e:d2:a8:94:33:c2:7e:19:e9:b5:33:9a:04:f1:ee:
b6:0f:a6:2c:35:0d:df:4d:5c:d4:f1:0e:74:c4:f6:52:39:8d:
b5:41:d4:11:54:e4:12:68:52:1c:ac:dd:60:78:78:2e:73:eb:
74:fd:2e:e2:48:5c:9e:ec:b1:9f:12:51:7a:b4:31:fe:e0:80:
b5:dd:0c:bc:68:fb:b9:3c:54:0b:7c:57:84:64:7c:41:78:7f:
3b:88:47:bd:0f:7a:fb:dd:2b:68:60:a2:7d:7e:d2:65:f9:95:
cd:9d:6e:a2:8d:18:82:6d:55:8c:25:4a:52:11:32:da:16:1a:
9b:91:ca:f2:2f:1a:6c:36:8c:43:8a:99:06:4b:46:db:a9:25:
68:74:56:87:3f:97:c5:9e:a9:e2:46:c4:09:a9:28:42:0b:b3:
79:64:dc:11:db:45:cc:12:f0:97:4b:9c:99:db:50:90:e7:29:
4e:2a:af:4e:06:07:a8:18:de:98:9e:85:93:84:2b:a3:c1:22:
ed:54:f2:19:e4:ae:13:9c:09:e0:64:15:a0:d4:49:8b:f0:9b:
02:0c:65:98:e1:61:63:df:e1:ef:f5:f3:94:82:cb:b9:51:96:
d0:ce:3f:f5:cb:51:d6:3d:a4:c5:f4:b7:9a:64:18:a8:77:45:
aa:ed:42:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:29 2023 by rpki-client on console-fra.rpki-client.org