Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/9vTWUv_-aetyxdk0zmFQLA8eF_0.roa
File: 9vTWUv_-aetyxdk0zmFQLA8eF_0.roa (raw, json)
Hash identifier: QT7kvabTlS2tGkhUcRuRXLa4OV1dXVlIlyxurJRbrYM=
Subject key identifier: F6:F4:D6:52:FF:FE:69:EB:72:C5:D9:34:CE:61:50:2C:0F:1E:17:FD
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 05A59BB9
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/9vTWUv_-aetyxdk0zmFQLA8eF_0.roa
Signing time: Sat 01 Jan 2022 07:57:07 +0000
ROA not before: Sat 01 Jan 2022 07:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 193.56.66.0/24 maxlen: 24
193.56.65.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94739385 (0x5a59bb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Jan 1 07:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6f4d652fffe69eb72c5d934ce61502c0f1e17fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:be:40:43:b3:e5:82:83:7b:fb:90:31:df:03:
58:b3:b9:19:b7:f4:63:21:4e:69:58:f4:6c:9c:52:
8e:97:7a:40:4a:f3:b4:d6:7c:e0:95:a9:11:9d:a3:
f5:4e:78:de:56:bf:cf:72:e0:83:e1:a7:74:b9:9d:
4f:88:4f:32:22:fb:a7:ca:d9:ed:48:66:9c:73:01:
35:4e:ba:7f:a5:ab:1c:89:d0:7f:8b:d7:a4:48:c7:
32:18:79:d0:05:d8:dc:a3:47:33:36:0e:a3:08:4d:
0e:77:ba:76:c4:28:6a:85:53:46:d2:d6:e0:0c:52:
7f:0b:dd:6c:3b:07:64:4e:f8:4f:99:38:74:28:46:
b5:f1:c6:98:41:1c:4b:d6:c7:94:5c:5d:94:4d:cc:
9a:f6:f3:12:e4:34:d1:1d:71:b9:87:b6:f6:a2:39:
8c:85:b5:81:9c:64:7f:00:e9:71:37:23:9c:56:bf:
a3:08:17:99:b1:60:81:3f:e6:b5:12:32:79:04:7e:
3f:dc:fe:ce:96:75:a6:83:02:30:38:d1:b1:fd:b6:
83:27:1b:30:11:da:65:0f:b7:93:ee:ec:8d:ea:63:
22:72:35:77:27:2e:9d:8e:40:e9:58:49:17:69:22:
5a:d0:18:22:41:7c:10:91:4a:d9:64:e2:a3:90:1a:
5c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F4:D6:52:FF:FE:69:EB:72:C5:D9:34:CE:61:50:2C:0F:1E:17:FD
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/9vTWUv_-aetyxdk0zmFQLA8eF_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.65.0-193.56.66.255
Signature Algorithm: sha256WithRSAEncryption
2c:6a:68:c7:e3:e6:eb:f8:01:66:a5:8f:16:13:ca:8f:c8:bf:
89:06:09:dc:83:19:f8:51:10:b5:fc:9d:cf:6d:71:27:88:a7:
29:ff:22:50:46:f3:f3:a2:0a:a5:41:f6:cb:42:9b:d3:44:3a:
8c:80:d0:01:dc:e1:9b:ae:b2:32:e8:c0:b4:77:66:81:58:6f:
00:37:e6:7b:a9:20:93:0d:df:35:76:e5:c1:8d:0a:a1:df:9a:
fe:31:1c:3b:e0:d9:5b:cf:54:54:6e:bb:d7:17:37:57:6b:41:
fe:bf:d9:26:99:47:ea:86:6c:69:b9:85:2e:3f:33:be:26:10:
05:c2:a1:59:bd:da:6f:12:67:cb:3c:af:e1:63:52:a6:3d:65:
73:aa:87:31:2c:c3:cf:e9:d7:97:a5:ff:4c:39:55:0c:b3:52:
7c:17:ae:ba:24:c2:5a:ca:4f:93:59:54:bf:c5:0d:e0:c2:1a:
9e:80:96:33:db:0c:cf:a8:8c:44:cb:e3:bf:10:ce:db:8b:e8:
a1:fa:7b:50:b4:1f:7c:f8:a1:54:ae:26:be:15:33:f1:5b:62:
85:e2:da:0b:19:2a:e9:e6:51:d0:48:7e:d7:14:f5:e1:65:5d:
ed:d7:42:96:95:5b:17:0c:3e:48:e9:2e:e2:15:1b:03:48:d9:
07:ce:0c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:46 2024 by rpki-client on console-ams.rpki-client.org