Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/jI-wuBvlUIIZKXjL0Ma2dbXVy3k.roa
File: jI-wuBvlUIIZKXjL0Ma2dbXVy3k.roa (raw, json)
Hash identifier: QHP5WK4xfCiRdC3V3u5ZpHLvUH5jI3gr5uwPSM2Xiu4=
Subject key identifier: 8C:8F:B0:B8:1B:E5:50:82:19:29:78:CB:D0:C6:B6:75:B5:D5:CB:79
Certificate issuer: /CN=e9be181aabdb195513a26c67b621e2986818d03d
Certificate serial: 0189648959AE8B7205284D93CD3A9148A803
Authority key identifier: E9:BE:18:1A:AB:DB:19:55:13:A2:6C:67:B6:21:E2:98:68:18:D0:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6b4YGqvbGVUTomxntiHimGgY0D0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/jI-wuBvlUIIZKXjL0Ma2dbXVy3k.roa
Signing time: Mon 17 Jul 2023 15:47:50 +0000
ROA not before: Mon 17 Jul 2023 15:47:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 176.53.133.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:89:59:ae:8b:72:05:28:4d:93:cd:3a:91:48:a8:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9be181aabdb195513a26c67b621e2986818d03d
Validity
Not Before: Jul 17 15:47:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c8fb0b81be55082192978cbd0c6b675b5d5cb79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:62:2f:8d:b8:e7:27:ac:0e:9e:c9:f4:f2:37:
25:f4:e3:58:44:d9:d7:6b:89:07:a9:23:ea:68:ef:
f1:87:c0:60:3d:46:0a:59:20:cb:5b:be:c0:43:ed:
74:c8:9e:f4:d7:2d:2a:b5:29:b9:78:93:0c:4c:ba:
0f:07:73:17:36:37:51:60:9c:09:25:fb:e3:3e:90:
ea:a4:ec:22:b1:b3:36:f7:33:cb:7f:e2:a7:00:1b:
9c:40:93:ec:81:7b:5f:0b:ed:66:87:db:b8:7c:2c:
5c:e4:af:35:07:3b:5f:66:2b:96:3a:66:49:ba:cb:
01:85:55:e4:62:eb:77:29:3f:08:fd:0a:d4:c5:a4:
b9:e3:f0:3e:c8:05:b5:f9:e6:70:fd:b9:08:14:a3:
6b:6b:93:59:81:b3:18:65:ee:fe:2f:46:f5:6b:e4:
cf:35:26:11:e0:4b:89:58:ad:9a:a2:8e:2c:c5:f8:
97:e2:4d:1f:ba:4d:23:6b:5e:48:79:06:39:be:10:
e6:16:b6:fb:e5:c0:9b:5c:24:35:88:52:91:6c:cc:
c6:05:65:9a:1a:06:b0:da:7a:9e:f0:f9:30:d2:2c:
bc:33:5b:00:90:53:10:44:50:5b:2c:cc:62:92:cd:
67:d7:7e:49:6d:8a:49:4b:7e:81:a6:83:48:d6:a7:
fa:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8F:B0:B8:1B:E5:50:82:19:29:78:CB:D0:C6:B6:75:B5:D5:CB:79
X509v3 Authority Key Identifier:
keyid:E9:BE:18:1A:AB:DB:19:55:13:A2:6C:67:B6:21:E2:98:68:18:D0:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b4YGqvbGVUTomxntiHimGgY0D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/jI-wuBvlUIIZKXjL0Ma2dbXVy3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/6b4YGqvbGVUTomxntiHimGgY0D0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.133.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:6e:e5:8e:12:41:d2:60:57:af:aa:0f:17:b5:0b:f7:29:5b:
12:e6:7e:4a:8a:e3:8c:f9:49:ec:be:b3:a2:2d:23:82:e3:05:
01:ba:a2:9d:e2:eb:e9:eb:e9:87:5a:f6:e5:d0:f5:46:ba:59:
71:ae:47:33:21:ff:12:b1:79:6d:8e:42:4f:aa:2f:7e:18:29:
82:f8:03:05:ad:6a:b5:67:54:73:a2:8e:2d:64:7c:df:a8:1a:
f6:ee:4a:a6:eb:a5:b0:d3:54:37:f1:aa:cc:7c:60:cc:7e:ce:
f4:d4:da:04:59:89:5d:ed:7e:41:06:d6:18:c3:43:22:98:45:
30:14:ea:ff:28:93:83:66:c7:ac:9b:26:fc:1d:b9:f4:dc:07:
4e:91:fd:69:e1:0a:39:e9:4e:60:0c:54:1e:16:40:1d:9c:ee:
80:5f:f6:20:61:a9:46:c7:44:0c:ea:c2:c3:78:8f:60:e7:d1:
e2:21:da:39:43:03:fd:79:fb:a4:9e:9e:b5:21:57:89:2b:08:
b3:4d:97:de:e9:82:30:74:14:a6:14:0b:7d:47:07:d5:35:44:
cd:bd:df:08:02:c6:cf:ae:5c:14:0d:2d:71:c4:3a:14:d1:59:
45:15:bb:08:af:aa:47:c8:3a:e4:2b:a9:f5:64:1b:2d:ab:8c:
16:6c:de:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org