Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/hsWFu1nx3c5sq57mbmqzW-nUyqo.roa
File: hsWFu1nx3c5sq57mbmqzW-nUyqo.roa (raw, json)
Hash identifier: PV5hdv1kphZ76aCW/RD4Y/P21bdN4mBX5vKVON7MX50=
Subject key identifier: 86:C5:85:BB:59:F1:DD:CE:6C:AB:9E:E6:6E:6A:B3:5B:E9:D4:CA:AA
Certificate issuer: /CN=112ba797577ea60a561af9a4598c45060e3b7088
Certificate serial: 16A23BB5
Authority key identifier: 11:2B:A7:97:57:7E:A6:0A:56:1A:F9:A4:59:8C:45:06:0E:3B:70:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESunl1d-pgpWGvmkWYxFBg47cIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/hsWFu1nx3c5sq57mbmqzW-nUyqo.roa
Signing time: Sat 01 Jan 2022 11:53:40 +0000
ROA not before: Sat 01 Jan 2022 11:53:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212548
IP address blocks: 188.240.209.0/24 maxlen: 24
188.241.86.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379730869 (0x16a23bb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112ba797577ea60a561af9a4598c45060e3b7088
Validity
Not Before: Jan 1 11:53:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86c585bb59f1ddce6cab9ee66e6ab35be9d4caaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:44:af:92:b7:df:e8:18:c5:34:46:ce:a3:72:
3c:61:4d:5e:5e:9b:08:3d:b4:9f:75:cb:0e:00:3e:
ab:dd:69:2d:3b:01:ef:4a:21:60:72:62:37:2e:7d:
09:b0:59:fe:2d:94:b2:c4:bd:ec:cc:3c:b5:34:62:
14:25:03:c0:99:3a:e7:0b:c3:f0:1f:59:6a:e8:fc:
00:2a:17:88:e4:ef:a7:fd:d8:8f:18:0f:a3:c9:dd:
27:be:0c:76:35:4d:c8:21:31:56:bf:79:97:4b:1c:
35:32:59:50:d1:ff:7d:11:1f:74:30:2e:59:4c:99:
80:67:63:d9:e4:71:29:5e:03:8f:14:d7:96:4e:ca:
a3:f6:42:78:98:8a:a6:e9:fd:c5:57:38:80:97:25:
84:f1:eb:dd:f4:90:fe:72:27:90:4c:19:e0:2a:50:
c3:cc:ec:83:22:f0:a1:a4:77:2d:c8:cc:97:ab:54:
59:3a:66:1b:2d:fa:06:6d:64:0a:74:3c:a4:17:68:
ea:6c:ee:48:89:c9:f8:a5:c3:a8:38:92:b9:74:ce:
f1:e7:c5:e1:46:22:37:2c:3a:39:cc:82:08:05:f5:
be:89:db:27:78:b8:87:c8:dd:fa:38:49:bb:2c:a9:
4d:21:9e:60:bc:42:b9:23:08:c2:c9:48:b8:73:b3:
67:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C5:85:BB:59:F1:DD:CE:6C:AB:9E:E6:6E:6A:B3:5B:E9:D4:CA:AA
X509v3 Authority Key Identifier:
keyid:11:2B:A7:97:57:7E:A6:0A:56:1A:F9:A4:59:8C:45:06:0E:3B:70:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESunl1d-pgpWGvmkWYxFBg47cIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/hsWFu1nx3c5sq57mbmqzW-nUyqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/ESunl1d-pgpWGvmkWYxFBg47cIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.240.209.0/24
188.241.86.0/24
Signature Algorithm: sha256WithRSAEncryption
92:65:8b:26:55:51:37:f7:f2:d0:61:26:9c:85:f9:4a:91:d5:
e9:56:86:82:b4:9b:ef:0d:c7:3e:fa:c6:99:e3:2f:07:67:5f:
b0:4f:e3:8a:74:05:36:4c:4f:e9:63:88:a4:b5:6a:72:73:be:
44:b6:0c:8b:b6:a3:fb:4a:0a:48:5c:dd:1e:1d:5f:0c:6d:58:
47:f6:aa:f1:a4:2a:45:74:c4:49:db:a0:af:c2:e9:37:67:f0:
c7:38:61:09:82:b6:64:92:96:08:1c:2e:80:72:1d:d5:38:e5:
fa:8e:46:d0:20:4c:d2:79:f4:5b:32:ab:34:de:01:39:46:27:
1a:ad:79:a1:d1:2c:b6:90:83:9f:d8:7d:c2:f5:0b:44:ac:31:
25:89:52:7a:90:2c:41:c8:7b:d2:a6:1f:6a:aa:b9:59:46:c6:
5f:89:f7:cf:07:34:ba:38:df:4e:2c:00:82:bd:de:a6:b6:00:
59:b4:b7:72:25:e7:e1:0a:b4:75:5c:9d:1b:d4:33:95:56:46:
39:cf:88:65:e7:f4:a6:20:2e:19:e1:63:fe:66:36:aa:78:33:
7b:af:7d:ad:66:23:e1:86:6b:52:b0:56:b7:54:3a:80:ba:c5:
a0:5c:39:51:ae:ad:6e:8b:55:9b:73:d5:bc:a5:88:39:09:21:
f7:a4:02:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:10 2024 by rpki-client on console-ams.rpki-client.org