Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/q1rKdxAR1kKJyBAsxShIhZw-A_M.roa
File: q1rKdxAR1kKJyBAsxShIhZw-A_M.roa (raw, json)
Hash identifier: poOBaGg0i/JJbRMjl0IcFfrE95RtMw8jAVIOqt8PMuA=
Subject key identifier: AB:5A:CA:77:10:11:D6:42:89:C8:10:2C:C5:28:48:85:9C:3E:03:F3
Certificate issuer: /CN=42ca1a1e3d0925423310c154b502c2842888e612
Certificate serial: 13A3DDB2
Authority key identifier: 42:CA:1A:1E:3D:09:25:42:33:10:C1:54:B5:02:C2:84:28:88:E6:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsoaHj0JJUIzEMFUtQLChCiI5hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/q1rKdxAR1kKJyBAsxShIhZw-A_M.roa
Signing time: Wed 15 Jun 2022 15:38:44 +0000
ROA not before: Wed 15 Jun 2022 15:38:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 45.155.32.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329506226 (0x13a3ddb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ca1a1e3d0925423310c154b502c2842888e612
Validity
Not Before: Jun 15 15:38:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab5aca771011d64289c8102cc52848859c3e03f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:94:f9:5f:fa:a3:f2:62:38:98:7f:54:2e:
da:95:dc:c5:d9:23:44:42:d3:b6:0f:0b:58:dc:58:
a6:2c:c6:03:ab:79:ff:cb:35:40:c9:d2:ff:a4:81:
a2:0d:f7:2e:5c:a6:b6:19:a2:3b:42:50:bc:72:20:
07:ef:ab:99:66:fd:c3:56:d6:e5:d7:5d:dd:03:eb:
64:64:3f:96:50:dc:e3:e9:d2:dd:f7:8a:63:6c:e4:
f9:69:90:c4:9a:c4:8f:4c:4a:b4:66:c1:42:55:64:
54:6f:7f:00:f1:85:b1:0e:fa:44:e0:7d:b4:da:02:
ea:1c:7b:d7:34:45:ac:43:8e:da:0a:fb:a4:e9:05:
12:cc:55:c3:a5:ab:64:e3:7e:9c:2c:da:d3:79:0a:
f0:e6:a9:43:7f:66:97:1b:bd:51:8f:7a:54:e5:b3:
e6:0b:4c:d4:ee:dc:22:52:5f:f6:d0:12:ea:5d:91:
c4:9e:0d:91:10:9b:58:f4:b0:1f:f2:09:59:86:31:
8e:ff:c2:58:28:6c:9a:d7:30:ad:71:3a:3f:35:2e:
67:99:33:39:02:ce:25:4f:d6:d8:78:14:c9:d5:93:
79:f8:8a:d5:21:91:39:a5:80:d4:1b:69:dd:f6:8c:
17:35:b2:b5:e2:3a:2e:b6:59:21:53:b1:f1:40:e9:
63:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5A:CA:77:10:11:D6:42:89:C8:10:2C:C5:28:48:85:9C:3E:03:F3
X509v3 Authority Key Identifier:
keyid:42:CA:1A:1E:3D:09:25:42:33:10:C1:54:B5:02:C2:84:28:88:E6:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsoaHj0JJUIzEMFUtQLChCiI5hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/q1rKdxAR1kKJyBAsxShIhZw-A_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/QsoaHj0JJUIzEMFUtQLChCiI5hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.32.0/23
Signature Algorithm: sha256WithRSAEncryption
d3:69:9b:d1:7a:d8:0c:62:92:a4:e4:22:a8:a2:e7:92:c7:48:
97:01:c2:15:22:20:95:ef:fc:66:12:72:d0:49:d0:84:54:67:
79:12:6c:57:1d:92:ad:a7:82:73:a7:00:e1:37:db:81:7d:cd:
ee:18:f8:2b:b6:e3:0c:07:b3:48:85:ff:f7:43:b5:26:f7:d7:
e3:92:1d:ec:85:76:62:ec:92:ce:5a:5d:ae:ba:44:a6:f2:32:
d4:7c:11:bb:34:72:4d:b9:a9:01:40:87:33:3f:22:1f:67:3f:
c5:ef:dc:06:47:73:3c:9d:61:94:c4:42:f8:d9:19:45:0a:cf:
25:aa:ee:61:15:55:f9:48:af:b7:f1:d5:e4:5b:b3:31:90:c1:
19:37:be:7e:1b:d2:62:ac:5e:c6:6f:49:b4:5b:bd:b1:2e:83:
5a:e5:ee:18:26:b8:da:59:28:df:db:dc:89:c7:ad:78:ae:b0:
fe:a1:25:34:83:78:a7:97:7c:ad:46:24:a4:ca:de:a5:c8:d0:
a7:1b:c9:8e:28:8b:5c:8b:04:cb:56:ed:d3:5d:7d:14:68:52:
ec:1e:5e:74:63:6d:78:af:83:d6:87:14:56:7b:66:03:4f:63:
20:3d:ac:25:10:c6:a6:2e:6f:d3:a4:b5:38:f7:b2:dc:e5:54:
85:ae:ee:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:37 2025 by rpki-client