Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/wpbb9Zbr-8V8hEQIRZg1XD0ZXQI.roa
File: wpbb9Zbr-8V8hEQIRZg1XD0ZXQI.roa (raw, json)
Hash identifier: WwtPHZWcLUQrNSutk2vJX01lhmnR0SFlsK8jt6TC0as=
Subject key identifier: C2:96:DB:F5:96:EB:FB:C5:7C:84:44:08:45:98:35:5C:3D:19:5D:02
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 04B0A938
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/wpbb9Zbr-8V8hEQIRZg1XD0ZXQI.roa
Signing time: Tue 28 Jun 2022 10:26:02 +0000
ROA not before: Tue 28 Jun 2022 10:26:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 185.36.205.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78686520 (0x4b0a938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 28 10:26:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c296dbf596ebfbc57c8444084598355c3d195d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1a:b0:29:94:82:8e:02:25:88:79:1a:59:2d:
79:3b:f7:a7:a5:8a:ad:af:b6:2f:b9:b8:27:ed:26:
3d:97:2f:57:95:88:13:8a:e9:ff:14:b0:76:21:83:
24:01:23:60:a1:91:fb:c8:4c:3c:97:f0:89:70:de:
35:08:bf:47:36:d2:0c:32:21:ef:14:e5:32:91:9f:
2c:75:cb:19:ba:23:cf:24:bd:12:a4:7e:26:90:20:
9a:a3:03:25:a1:3d:48:38:5d:ce:68:41:af:4e:3d:
e1:4c:b1:0d:82:44:f7:1e:65:0f:8a:35:9d:f6:49:
2a:17:e3:27:51:1b:f4:d6:48:fc:c3:29:61:f6:b3:
ce:4e:9f:78:7f:a0:6b:7b:4f:5c:77:be:96:60:bb:
20:d4:88:8e:ee:a8:19:41:df:6f:9a:47:35:35:e9:
08:b8:18:03:33:f8:04:19:5d:d3:05:15:6c:54:16:
7d:1a:69:90:68:fe:94:e3:33:22:ac:ed:61:46:18:
57:03:45:94:f9:37:c8:ef:e4:9b:25:11:d2:f7:e1:
96:f8:66:bf:99:87:0b:b4:50:7b:7b:d8:d6:f8:77:
9f:4f:2e:d9:e1:ae:8f:9d:9a:7e:f0:de:0e:17:93:
b4:18:36:4e:0e:02:a1:ab:83:0c:71:bc:ef:8e:60:
ea:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:96:DB:F5:96:EB:FB:C5:7C:84:44:08:45:98:35:5C:3D:19:5D:02
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/wpbb9Zbr-8V8hEQIRZg1XD0ZXQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.205.0/24
Signature Algorithm: sha256WithRSAEncryption
45:23:a9:ca:65:83:3d:cf:fe:12:29:d8:14:16:50:ad:c1:aa:
95:00:b0:7b:3b:9a:54:6f:cf:b1:5a:bc:87:db:f7:28:14:df:
93:d5:86:d2:87:cc:7e:bb:ef:a0:05:11:5d:44:c6:ab:07:c5:
f5:9c:d8:8c:1c:58:36:52:30:37:17:cd:9b:f1:f7:b3:4b:7d:
65:1d:d6:04:40:4e:0d:19:e7:02:b7:35:4b:a1:32:53:e2:6e:
3c:da:60:f1:65:05:2c:d4:7c:19:ec:64:57:d9:b0:11:4f:be:
9e:b1:5d:00:d3:06:bc:cf:6d:a4:9e:07:02:43:2e:28:de:80:
22:6a:25:8b:75:6d:42:3c:c9:02:f4:0d:06:b7:57:2a:65:44:
6a:db:0c:49:04:42:49:c4:9f:05:ff:d1:23:62:5c:74:0d:56:
75:88:e2:dd:f4:d0:38:8c:04:c3:a7:4a:12:d8:2e:c0:0c:dd:
15:cd:43:28:ba:b2:28:68:70:f3:83:32:1c:24:bd:d0:3f:dd:
0f:ec:00:09:d3:8d:2a:04:77:5e:2c:62:13:0f:93:b5:76:d0:
ba:c3:28:bd:71:c7:d7:d9:af:a3:0e:1b:95:5e:18:a3:b8:b8:
50:0e:bf:73:74:26:77:e7:8d:d9:0d:3f:15:9c:19:14:44:90:
73:a3:c4:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org