Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/e104ab-e146-458b-b45f-d3e98e639aca/1/9nvVa3UtpeQJ-zZ14Kz4RRnPyVc.roa
File: 9nvVa3UtpeQJ-zZ14Kz4RRnPyVc.roa (raw, json)
Hash identifier: WZ0DmV9/rwVeVVUv61QwFg6TrDVXCcl+YYuV5PGukc0=
Subject key identifier: F6:7B:D5:6B:75:2D:A5:E4:09:FB:36:75:E0:AC:F8:45:19:CF:C9:57
Certificate issuer: /CN=515cbdbd16a6e868e99675bc29180268c258f0fb
Certificate serial: 02051D44
Authority key identifier: 51:5C:BD:BD:16:A6:E8:68:E9:96:75:BC:29:18:02:68:C2:58:F0:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UVy9vRam6GjplnW8KRgCaMJY8Ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/e104ab-e146-458b-b45f-d3e98e639aca/1/9nvVa3UtpeQJ-zZ14Kz4RRnPyVc.roa
Signing time: Sat 01 Jan 2022 07:03:37 +0000
ROA not before: Sat 01 Jan 2022 07:03:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211575
IP address blocks: 2001:678:f60::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33889604 (0x2051d44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=515cbdbd16a6e868e99675bc29180268c258f0fb
Validity
Not Before: Jan 1 07:03:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f67bd56b752da5e409fb3675e0acf84519cfc957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fc:34:17:ae:1e:1a:2a:0a:16:c6:a8:dc:20:
d9:04:d8:0d:7e:fb:b1:99:3d:d8:57:cb:11:63:de:
36:f4:c5:23:c3:4f:19:88:a7:ce:43:e7:22:0e:5f:
af:d1:22:44:e5:16:6f:a3:5c:67:6b:95:fa:11:9f:
fc:40:32:4f:c1:6c:37:86:c1:05:d7:17:2d:fb:10:
2c:ec:7d:0b:25:11:dc:46:0e:30:63:54:e5:aa:96:
23:5f:ec:fa:4d:67:a7:4e:3e:c4:58:ba:a7:98:f3:
ae:47:ff:0a:9e:e8:99:4b:fc:7f:81:73:eb:40:20:
f8:81:03:d0:1b:36:dc:1c:3d:47:ea:d4:c8:53:dd:
70:d9:05:b2:b8:8e:e0:96:57:65:6f:3f:e6:76:b5:
93:9c:72:c9:15:e2:d5:ca:8b:9b:65:23:b1:84:4c:
22:6f:ba:a5:68:f9:61:8b:f9:e8:4d:77:f4:2d:2c:
74:1e:5e:af:85:f2:83:ba:56:28:35:05:ee:67:e3:
52:89:9a:b2:50:8c:a2:b2:86:19:94:99:f3:a7:ef:
40:fd:7c:56:f7:97:ff:d6:9d:9d:8d:a3:35:42:06:
b7:d2:0a:6f:6c:17:8e:32:b7:22:7f:1d:71:77:23:
c4:ec:9e:e0:cc:ad:e8:2d:bd:8d:10:6d:ab:36:5b:
aa:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:7B:D5:6B:75:2D:A5:E4:09:FB:36:75:E0:AC:F8:45:19:CF:C9:57
X509v3 Authority Key Identifier:
keyid:51:5C:BD:BD:16:A6:E8:68:E9:96:75:BC:29:18:02:68:C2:58:F0:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UVy9vRam6GjplnW8KRgCaMJY8Ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e104ab-e146-458b-b45f-d3e98e639aca/1/9nvVa3UtpeQJ-zZ14Kz4RRnPyVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e104ab-e146-458b-b45f-d3e98e639aca/1/UVy9vRam6GjplnW8KRgCaMJY8Ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f60::/48
Signature Algorithm: sha256WithRSAEncryption
48:5d:68:98:fa:9f:f2:c3:17:e3:32:4c:80:a6:03:6a:d7:23:
fd:c9:49:36:20:fa:69:29:aa:8a:c4:63:d6:39:1f:c9:4b:37:
3b:ef:4a:27:6d:a3:6b:34:13:66:66:7a:d7:c3:5c:c3:c2:9f:
42:73:52:d1:f6:17:5c:ba:a7:e6:67:73:b6:e7:2f:fd:86:43:
e7:87:35:6b:88:ff:c4:c5:91:8f:ae:29:33:2f:52:d9:c0:b4:
c3:51:c5:9e:41:a1:a1:92:36:2e:33:3d:87:06:c5:97:3f:00:
33:4a:9a:a7:45:d2:63:d2:f5:0d:28:d3:1b:8d:c6:1c:bd:62:
84:83:35:f9:98:5d:2b:39:72:5e:81:0d:e6:f9:35:89:49:1c:
4f:72:89:47:5d:dd:b2:f4:47:d6:0e:77:fe:19:e7:d5:3c:48:
56:2b:46:8f:b2:94:1b:7a:9b:5f:54:46:de:17:ec:32:cd:14:
e1:53:c4:71:3e:47:b3:7c:2e:94:b4:b0:a3:68:f0:3c:57:f1:
02:e3:43:72:a2:16:45:0d:bf:8f:c7:51:a2:39:c4:23:a4:2e:
39:a1:06:d8:62:69:85:d7:cc:45:09:c1:77:7a:73:a8:b3:84:
e6:a3:2c:74:77:c6:e1:e6:4f:24:89:f4:b4:7d:8f:d5:eb:2e:
80:c6:45:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:22 2024 by rpki-client on console-ams.rpki-client.org