Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/5l1u2Bnzxmd8tUEMxu4yzZE_Qpo.roa
File: 5l1u2Bnzxmd8tUEMxu4yzZE_Qpo.roa (raw, json)
Hash identifier: T+jG/HynYrQT2LIwyOz4KvNxPF/I3LYpMn2Xwkz5QhU=
Subject key identifier: E6:5D:6E:D8:19:F3:C6:67:7C:B5:41:0C:C6:EE:32:CD:91:3F:42:9A
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 0183D83EC8723309C57C1A32828887AE74D6
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/5l1u2Bnzxmd8tUEMxu4yzZE_Qpo.roa
Signing time: Fri 14 Oct 2022 20:45:36 +0000
ROA not before: Fri 14 Oct 2022 20:45:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201971
IP address blocks: 185.192.247.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d8:3e:c8:72:33:09:c5:7c:1a:32:82:88:87:ae:74:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Oct 14 20:45:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e65d6ed819f3c6677cb5410cc6ee32cd913f429a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5f:c3:3c:08:50:36:19:63:4f:67:d0:01:c9:
c0:09:b3:dd:78:f8:96:46:b0:c3:10:04:2a:da:0d:
80:40:fe:69:1b:a1:f6:9f:fa:fc:e0:52:d5:59:12:
a2:e0:1e:01:c9:c8:99:a1:e8:9a:1c:db:55:13:8a:
19:6e:3d:b1:20:34:4e:ad:98:35:df:69:f0:1e:3d:
5d:41:48:a3:0d:cf:e3:df:b0:a2:4e:1f:af:d2:d8:
e1:35:3f:2c:2c:e4:58:9c:d6:49:93:04:06:a4:db:
9d:63:17:7e:15:17:0f:8f:06:49:af:e2:0c:46:3f:
a0:78:a4:b6:82:10:11:b7:6e:e1:73:a0:71:3f:91:
81:39:50:44:5c:1c:8a:cc:4c:22:55:49:40:5b:03:
f8:12:34:b4:cf:08:ba:7b:28:6f:52:1c:7b:3e:f8:
d4:90:55:07:96:f5:e0:bb:02:c4:5d:c6:17:14:db:
75:70:d2:d7:6e:b5:63:dd:ba:ed:55:55:b4:0c:c2:
a1:bc:16:1d:69:bf:4f:39:e8:7c:bd:f5:01:3e:53:
cc:b7:e0:80:20:fb:a0:1d:85:78:8b:e3:fc:cb:16:
67:4c:26:6a:e6:24:d3:75:ac:66:55:4e:12:89:88:
eb:6c:04:58:5a:aa:57:a6:42:d3:04:e8:ef:26:f0:
68:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5D:6E:D8:19:F3:C6:67:7C:B5:41:0C:C6:EE:32:CD:91:3F:42:9A
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/5l1u2Bnzxmd8tUEMxu4yzZE_Qpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.247.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:66:db:9d:9d:71:36:f2:84:1f:94:3c:4b:ea:2d:a7:81:86:
91:9a:26:71:94:45:bd:a4:eb:26:61:8c:c1:97:ed:44:1b:90:
70:5d:ae:2d:c8:a9:68:2f:c1:fe:f9:50:d3:cc:6f:a4:7a:f8:
44:e0:29:f7:15:3e:08:ae:85:72:4e:67:fb:bd:f8:ca:e3:fd:
5d:60:c1:26:99:1d:57:0b:0b:b2:6e:19:98:24:0a:dd:c7:66:
59:f4:6c:8c:99:34:8a:c2:b1:92:4c:67:83:5b:19:e4:7c:7f:
d5:4a:44:cb:a4:74:c8:c5:52:2d:24:25:97:0a:b7:55:1e:c1:
b0:ec:6d:eb:e7:b9:17:d4:11:d9:40:d6:95:57:e7:07:1e:68:
28:12:3a:22:65:63:38:92:7e:6b:3c:d3:b0:3a:f6:b3:34:be:
50:4f:8a:ec:2c:f9:5e:cf:50:ae:83:48:a8:0d:55:46:7d:d9:
f6:0a:96:d3:53:c3:e6:47:e5:1c:00:fa:7f:8b:0d:f1:a0:ad:
39:51:90:3c:2b:33:d9:e7:e3:db:8a:a8:32:63:05:d6:e3:fb:
93:09:89:e4:5d:20:f4:83:d2:42:58:9c:01:e8:0d:5f:a6:47:
f6:17:ad:c2:01:80:fa:da:8c:ab:59:38:15:e3:01:b1:29:11:
c4:19:c0:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:52 2023 by rpki-client on console-ams.rpki-client.org