Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5v4SeVz1zhUA4jdusOJ7s0G2foQ.roa
File: 5v4SeVz1zhUA4jdusOJ7s0G2foQ.roa (raw, json)
Hash identifier: g3XgYkVTlbB7BSOseBg12B4iotwPBkhowGRptg4F0AU=
Subject key identifier: E6:FE:12:79:5C:F5:CE:15:00:E2:37:6E:B0:E2:7B:B3:41:B6:7E:84
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C00BB23
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5v4SeVz1zhUA4jdusOJ7s0G2foQ.roa
Signing time: Mon 31 Jan 2022 09:43:18 +0000
ROA not before: Mon 31 Jan 2022 09:43:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21700
IP address blocks: 151.106.80.0/20 maxlen: 24
194.233.240.0/20 maxlen: 24
195.180.168.0/22 maxlen: 22
195.180.172.0/22 maxlen: 22
194.163.224.0/20 maxlen: 24
194.195.232.0/22 maxlen: 22
194.195.16.0/20 maxlen: 24
194.195.236.0/22 maxlen: 22
62.138.68.0/22 maxlen: 22
62.138.76.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201374499 (0xc00bb23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 31 09:43:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6fe12795cf5ce1500e2376eb0e27bb341b67e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:31:da:6b:1d:d4:6c:2c:62:f0:80:48:f5:0e:
d6:36:54:0f:de:68:54:10:db:db:14:1a:9d:2e:0f:
0c:f0:cf:06:a7:ad:ae:47:9d:53:7d:c5:68:8c:bf:
d5:15:bf:db:0e:3d:1b:45:ba:26:cf:e4:14:d9:c2:
bd:23:61:76:10:d5:99:bf:23:6d:51:8d:ab:48:32:
67:50:93:77:27:99:4c:20:16:b3:bc:6d:75:a9:61:
96:44:76:77:ea:f8:92:49:d0:86:8c:a1:8e:0f:74:
f7:c3:3b:81:d1:29:d7:29:f6:3c:24:93:67:ee:74:
1a:6f:36:e9:37:19:78:63:39:74:6c:b9:fb:06:96:
2e:3f:9a:2d:bc:b5:61:37:ea:80:1d:21:80:b6:f6:
1b:55:55:17:85:33:e2:60:e9:e3:3f:36:13:38:7b:
ad:fe:5f:16:aa:6c:8e:ed:21:5b:f7:77:18:4b:9a:
8b:6d:38:ca:9c:0e:63:94:3f:85:31:d2:78:ae:31:
71:98:b9:8c:38:b7:9f:fc:4b:94:1f:64:a4:86:81:
3c:65:e4:7a:32:a4:e4:3c:66:07:ff:61:65:76:a0:
34:9a:4f:8a:3f:c7:52:34:d2:01:64:a4:7b:80:16:
5a:dc:bc:6d:8f:d9:f4:70:ee:51:74:2e:20:ae:07:
bf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FE:12:79:5C:F5:CE:15:00:E2:37:6E:B0:E2:7B:B3:41:B6:7E:84
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5v4SeVz1zhUA4jdusOJ7s0G2foQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.138.68.0/22
62.138.76.0/22
151.106.80.0/20
194.163.224.0/20
194.195.16.0/20
194.195.232.0/21
194.233.240.0/20
195.180.168.0/21
Signature Algorithm: sha256WithRSAEncryption
5d:d4:19:0e:41:9a:97:04:db:c4:84:b2:d4:d5:d0:f6:cb:4c:
a0:8d:72:a4:57:ae:a1:83:cc:21:1d:33:76:d8:b7:a8:4f:3f:
ea:f2:89:39:e4:b1:49:d6:48:85:5d:11:31:a9:c7:74:89:2e:
ad:58:ca:72:c2:7d:f3:6f:3a:e9:1e:34:15:b3:91:53:d0:57:
a8:d5:95:53:7e:c6:6b:46:0d:ef:83:0a:a0:86:31:b9:fc:7e:
53:b4:66:09:9f:24:54:89:0f:53:43:c8:06:29:6b:e7:85:c6:
ad:e5:af:61:29:12:fb:ca:1e:6e:be:29:46:10:43:2f:89:36:
b6:6f:71:3c:51:0d:d8:16:38:43:49:4d:c8:24:df:f4:1e:e3:
06:16:01:b1:ce:82:67:8a:da:a3:a4:b5:7e:c1:68:3d:04:ab:
2a:b8:5f:82:52:2a:c7:1d:de:b2:dc:0c:ae:13:3b:1e:2c:94:
34:eb:ea:bd:a3:12:54:dc:97:2b:a3:d3:b6:93:d1:92:f5:9f:
f7:7a:aa:6a:0e:dc:40:41:f2:5c:fb:00:ae:47:bc:9d:15:ef:
1c:44:be:50:8a:ae:c7:f5:b8:a7:81:ac:e0:a0:ff:aa:98:87:
2f:f5:7e:53:7e:26:c8:35:93:16:1e:62:1e:4f:e9:b0:65:bf:
1a:f1:39:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org