Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/VcL6cyelflrQ3VNYQodAByMgtAA.roa
File: VcL6cyelflrQ3VNYQodAByMgtAA.roa (raw, json)
Hash identifier: WWSU0qyapvfjTfzBAEX94wEar3WIO2Dz4mSQ0mKy/4A=
Subject key identifier: 55:C2:FA:73:27:A5:7E:5A:D0:DD:53:58:42:87:40:07:23:20:B4:00
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 03C60105
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/VcL6cyelflrQ3VNYQodAByMgtAA.roa
Signing time: Wed 30 Mar 2022 17:17:48 +0000
ROA not before: Wed 30 Mar 2022 17:17:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 185.218.22.0/23 maxlen: 23
185.126.82.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63308037 (0x3c60105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 30 17:17:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55c2fa7327a57e5ad0dd5358428740072320b400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c7:fa:95:05:0b:97:47:d4:bf:d2:82:b6:cf:
cf:4d:c8:a1:b8:d3:11:93:8f:2a:34:d8:6d:a6:0e:
45:42:08:e5:26:bc:7a:3d:b3:0c:4d:c9:76:0c:4a:
93:57:3c:b0:9b:51:e6:2b:27:09:9b:a8:56:14:23:
00:5d:ba:01:57:78:c7:9f:5f:b4:b8:fa:8a:a4:21:
87:db:ba:54:a7:a0:1c:5a:68:f6:b1:5f:cc:de:1b:
ab:ff:b3:a0:1f:07:b7:92:68:19:22:b7:1e:e3:44:
8d:24:91:07:a1:bb:b7:e3:27:d9:35:cf:0b:7b:96:
9c:54:b5:0e:1e:b7:90:56:e4:b2:58:b9:1a:a6:2a:
73:6f:45:dd:98:cc:c0:9f:c7:5b:96:08:17:40:78:
d4:f2:bf:6b:50:94:e4:bc:4b:9d:85:72:0e:17:30:
88:5b:4d:32:a5:aa:1e:08:31:22:0f:f8:a6:07:45:
c5:1f:d0:0e:94:65:ef:58:96:c1:d7:60:f2:93:a2:
bb:f3:a2:ee:30:52:68:1d:24:97:fd:12:ac:d9:2b:
b0:ce:8e:a3:ec:07:d3:42:58:47:f7:4a:1f:c1:cf:
1f:a8:56:84:48:cd:b8:fc:3d:b1:b6:f3:8a:14:f8:
7e:92:23:7d:a7:e6:e7:7d:35:79:5d:b4:e9:55:6c:
7f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C2:FA:73:27:A5:7E:5A:D0:DD:53:58:42:87:40:07:23:20:B4:00
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/VcL6cyelflrQ3VNYQodAByMgtAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.82.0/23
185.218.22.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:a8:1f:e5:46:5c:dd:e1:e5:75:a2:35:94:3a:35:9b:b8:08:
d7:be:fd:e9:65:d4:8e:26:09:ba:2d:32:82:62:8a:a0:b9:57:
90:53:80:ba:35:bf:e3:18:b4:b9:8f:20:80:e0:1d:7b:26:d0:
9f:91:a4:36:c5:7d:7a:45:83:4e:1a:81:b2:3c:76:ed:4c:eb:
f2:7a:f4:77:10:6a:1e:8c:9a:41:3d:93:33:19:0f:98:42:fe:
42:a5:16:fc:2b:38:75:6f:e4:6e:e9:c9:df:c7:15:6e:bd:08:
c3:ad:4f:f4:07:63:e8:a9:9e:9d:75:2b:2f:51:d7:12:48:7a:
f0:1b:65:b2:c4:08:be:e9:81:86:a4:95:fa:f0:b7:b2:cd:0e:
c4:0e:1c:f5:e2:30:90:48:62:79:36:3c:ea:c1:ee:cf:7d:b6:
01:84:21:86:a5:87:9e:5c:5f:ba:e3:36:4d:e0:a9:e1:66:6a:
ac:11:96:23:44:dd:62:71:0f:13:ef:b0:77:80:72:16:24:ac:
c9:ac:b4:01:90:00:0a:38:c7:b3:07:ae:0d:4c:76:a0:64:62:
73:02:5d:78:0b:f5:de:9e:a2:4c:6a:93:bc:20:96:68:a6:f0:
d8:25:f4:cb:18:e3:da:09:70:85:54:00:9a:86:c4:ea:bf:28:
6e:68:77:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org