Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/RhVQE_wo9UsWBqRo_8mlkgq78IA.roa
File: RhVQE_wo9UsWBqRo_8mlkgq78IA.roa (raw, json)
Hash identifier: iPMwstSvdNfb7+nNBEJqIFVAECbYGLRIiHCZfGnZkts=
Subject key identifier: 46:15:50:13:FC:28:F5:4B:16:06:A4:68:FF:C9:A5:92:0A:BB:F0:80
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 09BF6757
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/RhVQE_wo9UsWBqRo_8mlkgq78IA.roa
Signing time: Wed 26 Jan 2022 05:03:57 +0000
ROA not before: Wed 26 Jan 2022 05:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28761
IP address blocks: 193.138.84.0/24 maxlen: 24
195.26.80.0/23 maxlen: 23
195.26.81.0/24 maxlen: 24
195.26.82.0/23 maxlen: 24
195.26.80.0/24 maxlen: 24
193.238.108.0/24 maxlen: 24
193.238.111.0/24 maxlen: 24
193.238.109.0/24 maxlen: 24
91.194.163.0/24 maxlen: 24
193.238.110.0/24 maxlen: 24
193.27.242.0/24 maxlen: 24
193.27.243.0/24 maxlen: 24
194.9.26.0/23 maxlen: 24
188.191.16.0/22 maxlen: 24
188.191.24.0/24 maxlen: 24
188.191.25.0/24 maxlen: 24
188.191.26.0/24 maxlen: 24
188.191.27.0/24 maxlen: 24
185.76.80.0/24 maxlen: 24
195.3.244.0/22 maxlen: 24
2a05:5840::/32 maxlen: 32
2a05:5841::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163538775 (0x9bf6757)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jan 26 05:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46155013fc28f54b1606a468ffc9a5920abbf080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:76:e2:d1:28:e2:1c:7f:c6:c7:f9:97:38:84:
f1:c3:33:11:34:0d:d7:bc:9e:08:8d:ed:82:93:49:
60:44:67:82:58:a2:1b:2e:80:c2:73:61:bf:fc:29:
28:39:32:2b:3c:b6:c9:82:df:2e:a2:56:e6:29:06:
8a:ca:2d:c1:48:97:bc:7e:cc:5c:e9:a9:86:84:17:
ca:d4:2d:fd:2c:8f:4d:11:a9:0f:20:7b:48:f2:b1:
46:a2:23:a5:89:e2:32:2c:63:48:a4:b7:43:96:5d:
26:3d:59:65:fb:55:aa:1c:b4:29:ba:98:9f:a9:93:
ce:51:28:ff:55:35:57:47:92:d2:91:96:33:63:aa:
a3:af:dd:83:87:b3:b1:7f:91:89:98:06:2d:49:cd:
0f:90:e8:22:9b:df:01:56:ba:c1:1f:f1:63:a0:50:
10:ac:58:f9:a6:e8:c2:50:6e:73:8a:1c:e6:5d:fc:
2d:33:a3:aa:98:fd:1b:57:ea:23:2b:e9:7f:8d:61:
ff:d9:34:86:63:2c:af:39:31:45:28:81:fd:7c:b0:
e6:3b:0a:2e:43:9a:f0:85:2a:54:73:47:8a:5e:f7:
92:fb:e3:1d:63:f6:c0:8d:3c:00:f2:5e:df:e4:2c:
f0:aa:b9:2f:41:98:7e:ff:16:b0:fd:cb:f2:62:25:
09:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:15:50:13:FC:28:F5:4B:16:06:A4:68:FF:C9:A5:92:0A:BB:F0:80
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/RhVQE_wo9UsWBqRo_8mlkgq78IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.163.0/24
185.76.80.0/24
188.191.16.0/22
188.191.24.0/22
193.27.242.0/23
193.138.84.0/24
193.238.108.0/22
194.9.26.0/23
195.3.244.0/22
195.26.80.0/22
IPv6:
2a05:5840::/31
Signature Algorithm: sha256WithRSAEncryption
9f:e4:55:2c:29:f5:5c:9f:c3:bb:09:14:1b:56:42:b3:6f:f7:
b7:ac:82:69:4b:e7:e3:03:36:2f:23:70:e5:3c:05:5a:b3:d1:
36:d5:4d:92:f7:fe:6f:c5:22:40:de:cd:e9:fd:f1:7b:be:a0:
00:71:3f:ab:ed:10:54:7e:73:75:f6:7c:06:48:03:50:03:0d:
24:f3:68:81:a9:c9:f2:87:c9:0c:3c:29:dc:78:a6:41:34:c5:
11:2e:32:32:3e:e6:6f:2a:03:9c:0b:c6:ff:83:2c:91:95:58:
70:cb:e2:54:27:39:2a:6b:ce:c5:2e:03:06:6c:1b:21:b3:dc:
37:80:d6:00:64:22:d9:17:13:1b:fa:cf:15:0c:7a:4c:4a:26:
f0:53:92:7b:f6:d2:af:02:0e:9d:07:a8:82:79:41:db:45:d3:
91:dd:fe:8d:20:6f:40:0f:a4:77:ef:18:89:55:64:df:4d:ad:
10:1c:af:6a:7b:7b:ef:d8:4d:53:73:19:77:72:b4:b8:6f:f4:
34:d1:05:3c:f8:f9:c5:00:94:50:71:0f:73:6f:95:5d:f1:0b:
01:5e:9d:71:4e:3c:42:05:2d:77:4c:99:e2:28:35:0f:3b:78:
35:d4:ee:0a:04:cb:cc:4c:11:e1:5b:f3:71:1f:6d:e8:40:48:
68:c5:e0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:14 2025 by rpki-client