Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/Bctltpdoa1MFTCE9xQ3ITC41Y0A.roa
File: Bctltpdoa1MFTCE9xQ3ITC41Y0A.roa (raw, json)
Hash identifier: MaOwifV+YZeYKm33Nvn4KrKdtWxnblb4tzEkkkri4OI=
Subject key identifier: 05:CB:65:B6:97:68:6B:53:05:4C:21:3D:C5:0D:C8:4C:2E:35:63:40
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 0822EE
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/Bctltpdoa1MFTCE9xQ3ITC41Y0A.roa
Signing time: Sat 02 Apr 2022 19:32:03 +0000
ROA not before: Sat 02 Apr 2022 19:32:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60591
IP address blocks: 45.135.234.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 533230 (0x822ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Apr 2 19:32:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05cb65b697686b53054c213dc50dc84c2e356340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:29:8c:db:a5:1c:9d:a9:41:6d:7f:81:de:
2c:e0:86:5d:2a:97:55:b6:6f:70:4c:7a:a9:f5:15:
38:89:92:10:c8:ef:e0:02:fa:b9:12:5d:f3:f7:a8:
72:76:63:eb:d9:ef:1f:22:38:df:78:39:c5:cb:0c:
28:2a:cc:59:75:49:73:4b:29:af:a2:86:4a:ea:61:
98:04:ab:22:52:9a:81:b7:df:eb:c7:27:23:66:e6:
c7:64:fa:45:76:98:81:c4:af:03:eb:57:c3:58:45:
38:d2:a6:c9:13:e5:6f:54:0b:75:fd:13:9d:bf:1d:
b3:6b:b2:0d:cd:46:4e:f8:38:e8:f9:74:2d:d5:65:
2d:f7:12:40:d6:28:70:e2:29:20:09:d4:b8:5f:9f:
b3:c4:11:88:c6:e5:ae:3f:b6:85:24:5c:8b:ea:37:
44:35:94:0c:e0:46:9d:70:f2:27:f0:24:57:ce:37:
8c:b6:49:6d:f6:7d:67:32:63:58:37:70:23:d1:98:
27:e4:a4:86:d4:c2:d1:f7:7c:ac:ba:4f:e6:f3:f6:
2e:8c:cc:7c:be:35:17:2f:04:4c:8b:e7:9e:fa:1d:
0c:03:6f:a9:66:6f:7e:e1:13:46:d3:d4:42:6a:54:
bf:bc:6f:5b:49:1f:81:d9:a5:0e:ca:43:bf:6e:64:
89:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:CB:65:B6:97:68:6B:53:05:4C:21:3D:C5:0D:C8:4C:2E:35:63:40
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/Bctltpdoa1MFTCE9xQ3ITC41Y0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.234.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:90:50:d4:7a:70:d5:66:f9:44:f6:58:dd:29:2f:ae:e8:84:
26:f3:2e:a5:43:eb:76:d3:c4:cd:5d:f1:0e:0d:08:0c:65:16:
33:18:1e:cd:d7:89:37:f7:69:df:be:d6:9f:d3:50:d5:a4:55:
21:ee:9e:6e:32:db:06:92:d2:6f:93:c6:95:d7:c6:7d:9f:06:
0b:ca:46:27:c8:c5:0d:c8:dd:7a:62:b9:20:55:4a:61:7c:a8:
e8:2f:ec:b0:75:d9:27:d2:9b:f7:22:89:b7:40:2c:42:5e:42:
dd:e2:f2:79:91:0c:83:5a:60:74:78:55:11:52:b8:d2:f6:3d:
8f:18:ba:3a:f6:c8:b2:15:42:79:bb:b4:40:70:5e:66:5b:41:
bf:0a:7f:52:02:aa:14:37:9e:1d:52:36:7f:34:21:31:55:ea:
5a:26:de:31:cf:cb:74:11:86:79:60:0c:d4:cd:2f:aa:c9:b7:
dd:b0:28:fb:89:4d:31:02:bb:04:de:b5:a0:ed:91:08:10:65:
27:11:ff:1f:08:c1:86:15:bd:3e:9c:de:67:26:a4:05:80:6b:
e0:2a:ba:a4:c5:b5:c0:f9:b3:8d:30:62:02:de:28:c7:43:b4:
6b:40:78:b1:08:bd:70:9d:54:5b:7c:b6:04:ef:72:f1:24:13:
6d:cb:dd:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:55 2024 by rpki-client on console-ams.rpki-client.org