Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/kWuTmry867qym05ZgA7zl0YAck8.roa
File: kWuTmry867qym05ZgA7zl0YAck8.roa (raw, json)
Hash identifier: ddRyNA0B99CW5s0xRmjQhLl81Gzt5ZaNsDUVWBF6buU=
Subject key identifier: 91:6B:93:9A:BC:BC:EB:BA:B2:9B:4E:59:80:0E:F3:97:46:00:72:4F
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 05B3DE74
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/kWuTmry867qym05ZgA7zl0YAck8.roa
Signing time: Sat 01 Jan 2022 07:57:16 +0000
ROA not before: Sat 01 Jan 2022 07:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62394
IP address blocks: 194.169.87.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95673972 (0x5b3de74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Jan 1 07:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=916b939abcbcebbab29b4e59800ef3974600724f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e0:d4:bd:db:80:df:bc:ab:ac:f1:b1:46:e2:
b1:6a:84:05:53:64:a8:62:7b:96:4f:ce:41:5d:18:
de:36:c9:83:ac:01:28:c9:c0:e2:cd:56:58:b7:77:
df:09:5c:18:d7:17:f0:75:8b:dd:4f:13:59:d1:52:
6d:1e:e3:12:dd:e4:04:87:38:af:20:80:62:80:e6:
d7:8c:27:09:d6:8d:45:68:88:61:49:27:fb:5f:b7:
9e:cb:b4:1a:a2:88:26:27:15:9d:6e:d5:6b:d4:c3:
34:df:93:ed:a1:17:57:2d:91:8d:8b:f9:d0:86:09:
05:f5:98:b5:d5:3f:d1:3b:37:e7:76:d4:bf:2f:58:
61:62:6a:b3:58:04:d0:7f:6e:ac:16:26:d3:bd:cc:
cf:db:ea:d4:59:c7:9a:8d:22:ce:9a:8f:23:07:e6:
d2:e3:9f:00:b1:18:eb:bd:f1:74:7b:89:ef:78:da:
06:9e:da:c1:be:68:86:af:03:b1:48:ea:8f:9b:ec:
a7:d5:d8:37:3a:a7:cb:de:b7:b7:e5:db:eb:46:fa:
9c:05:57:65:52:63:cf:2b:d1:ed:a3:39:1c:49:19:
6f:54:85:e3:5e:7e:88:0b:99:8f:74:4a:c0:36:59:
83:3c:d3:34:50:00:44:63:0f:0c:39:11:44:88:2a:
51:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6B:93:9A:BC:BC:EB:BA:B2:9B:4E:59:80:0E:F3:97:46:00:72:4F
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/kWuTmry867qym05ZgA7zl0YAck8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.87.0/24
Signature Algorithm: sha256WithRSAEncryption
79:90:ca:38:94:76:4d:dd:bb:d0:ed:44:e0:35:8a:c9:33:8d:
ad:94:31:f4:81:f7:22:65:08:6e:3d:a3:82:95:3d:88:81:d3:
68:38:0a:fd:4f:55:ea:dd:f6:97:73:57:79:06:7e:47:b8:8f:
54:f7:2a:22:f5:71:11:5a:32:38:d4:ee:7c:57:f0:9b:8b:8a:
af:dc:7b:44:49:c3:ce:f0:00:3c:7e:1d:71:b2:3f:e3:cf:a4:
94:ac:db:04:7e:74:7d:1f:7d:37:84:5e:6a:10:75:7c:a6:15:
eb:c5:d8:10:bd:98:9b:b0:4d:c4:e7:53:b8:bd:bf:c4:6e:79:
72:ac:77:5b:85:03:ba:ff:c5:6b:1f:cd:6c:e5:8b:f3:56:71:
c6:f1:6d:24:43:c4:b3:2c:d1:97:9a:00:03:c9:86:ce:4d:2f:
73:9c:50:18:b2:e5:02:9b:c6:ab:30:c9:1f:a0:d6:07:df:00:
34:97:bf:ae:5a:a0:e9:7c:21:2e:8f:8a:49:ec:69:d0:1f:17:
33:d6:76:c6:4c:13:cd:4f:b1:1d:7a:b2:b4:76:e8:36:65:b4:
4e:58:f8:4e:04:a2:67:bf:3f:44:a8:5f:51:1c:75:dc:49:3b:
3c:9a:c4:4b:32:f5:0a:65:f4:0e:eb:6c:5d:68:b8:3a:12:a2:
98:f4:8c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:46 2024 by rpki-client on console-ams.rpki-client.org