Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/LovH-DyaaMjTyAZvDJKdoL6ihpU.roa
File: LovH-DyaaMjTyAZvDJKdoL6ihpU.roa (raw, json)
Hash identifier: SVAzoXDOFLCdA76dmugL4Bh5Z4vWf3wUtWq4SwetxfY=
Subject key identifier: 2E:8B:C7:F8:3C:9A:68:C8:D3:C8:06:6F:0C:92:9D:A0:BE:A2:86:95
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 04E3D6FF
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/LovH-DyaaMjTyAZvDJKdoL6ihpU.roa
Signing time: Fri 04 Mar 2022 15:04:39 +0000
ROA not before: Fri 04 Mar 2022 15:04:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272541
IP address blocks: 185.104.40.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82040575 (0x4e3d6ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Mar 4 15:04:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e8bc7f83c9a68c8d3c8066f0c929da0bea28695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:21:01:31:99:8a:30:04:d5:df:46:cd:d2:a3:
ab:2e:c3:fc:53:a5:90:d3:9b:7e:c5:a3:76:d4:85:
69:e5:49:6b:6d:d5:cb:74:79:2e:d6:2e:87:ad:80:
22:bc:d0:f8:05:b7:ac:2c:b0:29:48:1f:f6:b2:97:
57:22:f2:b2:0f:07:01:30:47:4b:38:27:04:4b:ce:
dd:92:3f:f4:d5:e3:67:c2:7e:78:ef:6f:81:f6:98:
a0:61:fc:d7:63:4b:2d:26:3c:e2:37:ce:2a:26:cd:
19:c1:7b:4c:5b:63:d1:1d:cb:2f:22:6d:0c:70:5a:
1c:85:72:24:98:95:43:3d:64:ac:ae:33:b6:eb:e2:
18:b4:02:2e:d7:b5:85:3b:20:58:d0:12:95:1f:63:
0a:dd:24:50:8d:10:56:36:46:17:ab:37:60:2a:4c:
0e:b8:61:e9:2d:8e:46:09:9d:b2:14:8b:de:88:f5:
d1:03:d0:8d:f9:27:e3:73:44:38:0c:fb:b6:fe:2a:
f6:c6:6f:88:55:fe:96:28:9e:82:0d:04:0d:79:a7:
f9:63:32:16:31:2d:0c:b8:fa:c6:19:98:03:9a:b6:
29:bc:55:1e:12:d3:60:63:ed:7b:53:df:1b:a9:4d:
53:d3:1e:0a:70:5e:d0:12:79:a5:18:b7:76:4f:2b:
dc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8B:C7:F8:3C:9A:68:C8:D3:C8:06:6F:0C:92:9D:A0:BE:A2:86:95
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/LovH-DyaaMjTyAZvDJKdoL6ihpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.40.0/22
Signature Algorithm: sha256WithRSAEncryption
79:48:2b:57:34:12:3c:0f:4b:95:c5:c9:da:3f:90:ae:67:b6:
a1:15:69:6f:f0:49:e1:2b:b8:c9:5c:a0:93:c2:c0:16:90:43:
56:12:9b:70:7c:68:bd:2e:3c:a2:ec:93:35:7d:de:19:e2:66:
94:2d:5b:7d:b2:ef:d2:76:09:57:31:b9:17:dc:7d:d9:21:fe:
cc:a3:79:e5:db:21:78:1d:00:39:19:fd:3b:b2:2e:a8:43:57:
ad:18:96:5c:4d:93:15:47:88:40:27:80:99:26:d5:27:94:e0:
b8:67:f3:2b:d2:c6:80:7f:bd:3e:77:5a:38:f8:bc:b2:57:fe:
cf:46:de:7b:d4:c3:01:5a:a2:ea:f9:62:6b:6d:91:9b:d9:5e:
2b:f3:92:4c:f4:57:b4:68:26:1a:7d:7e:17:04:af:f8:8b:ce:
28:6d:16:7b:64:55:65:46:36:15:93:1b:75:57:9a:51:09:ed:
f4:b9:72:e6:b9:a7:16:51:2c:c6:bd:73:13:fb:f9:64:d1:39:
da:04:dd:b8:f9:55:42:c7:dc:c9:90:08:f4:a1:9b:cf:b3:1c:
fa:af:0f:44:8e:10:61:8f:6f:ad:5f:6c:68:96:b2:db:3b:3c:
c1:02:c0:af:80:b4:d0:52:31:35:8b:22:31:8e:32:6e:6d:ec:
d0:70:76:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org