Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/eUXOru1NlJLtoQm3WIGVbwP9MJM.roa
File: eUXOru1NlJLtoQm3WIGVbwP9MJM.roa (raw, json)
Hash identifier: +2dDIi2cThP21i9SnV5eYLH1PAGS8xDrsviMrhlXhvY=
Subject key identifier: 79:45:CE:AE:ED:4D:94:92:ED:A1:09:B7:58:81:95:6F:03:FD:30:93
Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9
Certificate serial: 0185701EE7F7A8C845F1D4E41CE9B17739FE
Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/eUXOru1NlJLtoQm3WIGVbwP9MJM.roa
Signing time: Mon 02 Jan 2023 01:35:51 +0000
ROA not before: Mon 02 Jan 2023 01:35:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202195
IP address blocks: 185.108.8.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e7:f7:a8:c8:45:f1:d4:e4:1c:e9:b1:77:39:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b195d13050ff3c468a149778710b53582251d9
Validity
Not Before: Jan 2 01:35:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7945ceaeed4d9492eda109b75881956f03fd3093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6a:85:70:04:d1:98:2f:87:eb:00:fe:04:51:
1e:a4:a5:74:66:e8:b8:8e:73:81:f5:8b:39:ff:fa:
87:b3:d2:7f:88:da:11:48:37:d9:8f:39:66:d4:38:
df:55:28:6d:68:a6:bb:0f:34:d7:52:90:56:6b:8b:
93:22:7c:a4:a7:48:02:ee:a7:be:27:9e:7b:75:ad:
8d:9d:4a:e4:7e:6b:5f:61:41:3c:5b:d0:b1:f8:a9:
09:bc:03:e1:e7:4c:30:6f:89:00:a5:cc:c8:c4:26:
da:0a:af:68:4d:d5:4c:76:0e:5b:4f:c1:33:ae:f7:
3a:3a:91:ea:d1:4b:0a:40:56:88:36:7d:5b:25:0f:
f7:0b:f2:6b:72:80:f1:67:3d:39:10:01:85:20:07:
b3:74:eb:51:14:25:4d:e3:a0:44:ca:4e:a0:1b:7c:
11:85:fe:64:c5:52:8b:06:4f:31:f6:0b:ef:71:c2:
ce:d3:9d:a6:b1:26:6f:b0:4b:b7:a8:9b:5e:83:08:
be:14:e2:ee:52:78:19:ce:c0:5a:c0:51:32:fd:e6:
e1:74:85:4c:cd:fc:61:63:51:35:34:13:b9:14:c6:
a3:60:90:1c:6d:52:bf:5a:14:be:cd:2e:2e:4d:fd:
03:0e:15:3b:91:5d:29:17:10:7c:56:2e:48:8a:12:
fa:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:45:CE:AE:ED:4D:94:92:ED:A1:09:B7:58:81:95:6F:03:FD:30:93
X509v3 Authority Key Identifier:
keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/eUXOru1NlJLtoQm3WIGVbwP9MJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.8.0/22
Signature Algorithm: sha256WithRSAEncryption
07:53:16:e8:4f:dc:16:35:76:43:99:2c:ef:0f:7b:45:75:f6:
b0:10:11:09:b7:fc:80:88:05:b3:eb:63:d3:e4:a7:75:b2:96:
51:95:6f:9b:f2:ea:8d:4e:3e:36:f5:00:bc:3f:75:4e:ba:90:
0d:9d:af:2a:bd:cf:9f:74:b1:41:be:c8:cc:d2:5b:cf:0a:fe:
f6:e5:bd:76:89:b5:a9:4c:bc:54:95:08:da:61:62:fc:a7:8b:
f8:34:b3:7f:d8:bb:c9:24:ca:d9:fa:de:34:51:b2:e4:68:59:
b7:6f:37:23:90:45:24:b8:8b:73:64:ac:c3:eb:b8:24:31:16:
7a:a4:9b:9f:35:38:31:5f:71:88:80:43:da:d6:37:b6:7b:19:
3c:23:9e:b6:de:e9:04:7f:9c:e1:18:9b:26:05:71:83:5c:f9:
4d:96:9d:94:f6:88:39:ab:bc:8d:84:d1:70:e8:d5:c5:aa:c3:
b0:fd:b4:26:ca:ee:1d:7d:a6:6c:2a:c7:50:f6:10:25:f9:61:
65:e6:0c:ed:f7:3b:e0:93:89:3f:55:3d:ce:64:2d:ed:d4:a5:
0f:13:d4:84:27:4f:89:1c:ae:13:60:ad:11:6e:f8:7e:c3:40:
bc:ee:7c:d7:ba:8d:fd:22:3b:c1:f0:4c:84:87:98:ae:56:eb:
8c:e8:38:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:22 2024 by rpki-client on console-fra.rpki-client.org