Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/TlsSHNt16KadmOORHUUnGTdWSko.roa
File: TlsSHNt16KadmOORHUUnGTdWSko.roa (raw, json)
Hash identifier: 703Ldv2AK6ApqcOnztJ6UYqYvI6cJk+Xt38zKkhS7PE=
Subject key identifier: 4E:5B:12:1C:DB:75:E8:A6:9D:98:E3:91:1D:45:27:19:37:56:4A:4A
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 09A561
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/TlsSHNt16KadmOORHUUnGTdWSko.roa
Signing time: Sat 02 Apr 2022 19:32:23 +0000
ROA not before: Sat 02 Apr 2022 19:32:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49770
IP address blocks: 45.82.80.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 632161 (0x9a561)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Apr 2 19:32:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e5b121cdb75e8a69d98e3911d45271937564a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a6:56:79:56:04:2a:c8:27:1a:fd:40:d8:39:
9f:55:12:4c:c4:47:10:33:00:71:fa:d6:3f:d5:df:
59:5b:17:db:8f:c3:4d:8f:32:11:26:3f:d5:2b:15:
ac:e3:35:61:24:7e:2e:b8:8e:33:70:82:12:d6:41:
8a:66:9a:71:a1:0b:c1:45:05:1d:5b:2d:79:5f:dc:
9b:61:b7:b6:44:39:6f:91:46:39:2c:a1:c1:83:05:
05:38:20:80:bc:7d:4c:d5:9c:34:c8:7f:d7:0c:5a:
e6:98:9e:5a:b3:52:40:41:84:16:da:e2:dd:13:b2:
2c:ff:04:a9:b7:b1:46:7c:41:35:cc:23:98:0a:9f:
22:ef:8f:a1:73:59:bf:18:11:15:9a:c7:b8:d7:f3:
fa:29:c3:b4:08:f0:f4:d0:89:de:ff:43:8f:d3:f0:
ad:4f:1b:ab:10:ef:ba:b6:cc:e4:b6:2b:4d:56:ae:
90:96:fb:84:89:01:c8:30:c8:e3:cc:6c:2d:84:bc:
18:92:e5:37:f8:77:1b:2f:78:39:4e:ff:60:4d:56:
ac:a8:00:4b:6c:d3:9b:5f:28:ab:2d:15:bf:75:33:
85:69:16:d2:81:f3:13:06:f9:87:cb:1f:1a:98:92:
e1:76:12:25:b4:73:68:a4:52:1f:3b:0f:c2:19:07:
85:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5B:12:1C:DB:75:E8:A6:9D:98:E3:91:1D:45:27:19:37:56:4A:4A
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/TlsSHNt16KadmOORHUUnGTdWSko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.80.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:df:f1:bc:dd:4e:76:a0:ea:ad:e3:30:ec:c2:66:bf:7d:b4:
a6:00:a4:28:9c:e2:d0:14:47:cc:dd:40:b9:dd:73:4b:01:42:
c5:3a:0d:83:b6:21:05:87:ab:e4:c8:ef:62:0a:91:56:10:cb:
e9:0b:2e:dd:1b:f5:7f:a9:82:f7:d2:ff:76:14:05:d7:0b:e7:
fb:5f:de:63:b9:d9:97:68:8b:68:a5:1a:cb:d6:a7:96:b6:2a:
5e:cd:14:18:96:69:04:92:0c:b0:1a:60:29:78:84:96:f5:89:
1d:5b:33:58:38:7b:37:82:38:8d:c5:44:28:a1:6b:a8:f9:56:
42:e5:f6:7a:73:1e:57:4b:0f:7a:a6:6f:c9:e1:20:83:82:76:
dd:04:a8:c6:58:be:35:48:64:3e:05:d2:a2:51:99:fb:56:55:
91:ce:5d:d6:6c:72:93:51:33:df:40:40:55:fe:5c:b9:a7:88:
01:f1:07:dc:71:ae:62:78:b2:59:f0:06:a4:0f:e8:9d:15:3e:
90:1f:56:a4:de:37:7e:46:ad:ad:1e:9d:f1:20:1e:18:b2:83:
42:7a:f4:ee:c1:48:d7:11:2a:47:79:96:98:a5:e8:5a:9c:e8:
9b:b5:f6:2d:c7:56:56:7e:69:09:60:68:63:d6:a1:54:4b:c9:
cc:0a:34:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:55 2024 by rpki-client on console-ams.rpki-client.org