Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/ENqIS_koVOSQix-PH-vhv2DhpT4.roa
File: ENqIS_koVOSQix-PH-vhv2DhpT4.roa (raw, json)
Hash identifier: VhL2xoOws17yJfQMArZDTMZ5cwaPYbH/7ZCIsZOMvFc=
Subject key identifier: 10:DA:88:4B:F9:28:54:E4:90:8B:1F:8F:1F:EB:E1:BF:60:E1:A5:3E
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0188DB8F09B2664A9C319D07848DDF71CB1D
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/ENqIS_koVOSQix-PH-vhv2DhpT4.roa
Signing time: Wed 21 Jun 2023 01:26:04 +0000
ROA not before: Wed 21 Jun 2023 01:26:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 89.46.97.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:db:8f:09:b2:66:4a:9c:31:9d:07:84:8d:df:71:cb:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jun 21 01:26:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10da884bf92854e4908b1f8f1febe1bf60e1a53e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:02:25:47:81:d0:e6:27:c7:43:e5:52:da:5f:
65:1b:d1:3a:1f:d3:3c:52:c2:fb:90:12:cb:c5:bc:
c2:27:75:97:56:2d:fa:ce:78:31:2a:ce:e1:e8:5e:
e1:c2:86:cb:5c:cf:6f:1b:d8:72:f8:c4:84:ce:b7:
77:ae:d9:46:23:c5:35:f7:b1:fa:84:47:04:df:0e:
4c:2b:f9:1e:95:9a:16:d6:8f:39:03:51:23:55:6e:
0b:e7:e2:9a:6c:36:cc:67:7f:0a:9b:d5:cd:33:82:
9d:ab:ce:d1:a6:9c:e7:39:d5:1a:6e:c4:51:cf:ca:
ff:47:7e:71:a0:e9:51:39:63:d8:ef:6a:8b:42:d5:
81:82:b5:01:55:54:57:0a:c6:3e:d1:89:7c:03:25:
6b:14:2a:80:9f:73:83:8c:8e:60:4a:3c:f5:7b:62:
2a:d5:13:c1:4c:ac:48:52:6c:54:92:00:f8:db:6b:
ec:be:b4:f6:d1:95:ca:b8:4d:27:39:c6:45:89:e4:
7f:5f:fc:b0:9e:e3:18:77:f5:44:ec:d7:b7:b5:90:
fd:4e:42:52:10:53:89:8e:00:c1:dd:e7:b1:59:05:
c1:d8:b6:47:3e:b9:27:bf:78:d1:ae:1b:bd:e0:bc:
8e:b1:54:0f:6b:4e:f1:9d:89:7b:3b:5d:c4:08:7f:
41:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:DA:88:4B:F9:28:54:E4:90:8B:1F:8F:1F:EB:E1:BF:60:E1:A5:3E
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/ENqIS_koVOSQix-PH-vhv2DhpT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.97.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:51:31:57:df:ee:42:b7:f9:cf:d4:7f:d9:2a:f3:34:e7:6a:
bd:47:b2:5d:7d:84:5d:38:fe:ef:37:6f:4d:51:e2:25:34:41:
4e:46:ad:ed:e7:72:8f:5d:6e:8a:66:02:0c:4c:2e:8a:6a:75:
3b:4e:fb:c7:e7:7c:ef:fb:97:89:ca:84:25:1d:53:e5:2c:5e:
43:68:b0:48:ed:d8:c2:56:f5:80:fb:3a:f7:c1:03:b1:fb:f8:
8b:80:98:33:bb:c0:06:21:a7:79:e7:25:76:0c:0f:f5:b2:fc:
0a:12:5f:51:cd:eb:4d:3e:c8:26:cb:d1:30:67:b3:07:71:79:
3f:d6:32:3c:5a:2e:43:ee:c5:55:5b:9e:52:bd:f4:e8:62:6b:
f5:7d:52:b8:c6:81:c5:7a:ee:e5:83:f8:b6:dd:90:2f:02:43:
15:2a:e3:be:86:b0:f4:77:a6:91:ef:bb:a6:38:9a:e6:d9:bd:
d7:4c:03:9f:bc:71:9e:0f:22:14:04:a6:30:e3:17:0c:7f:0e:
bb:8e:a1:21:4d:9d:32:e8:ef:47:e0:b4:9b:ce:fc:49:f5:38:
06:ea:b7:7f:34:da:eb:c3:a5:b9:c7:95:ec:bd:9c:3f:24:c0:
9c:ac:84:f9:3a:f7:34:3c:ad:fb:55:89:72:70:86:75:70:db:
07:e9:ff:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:01 2023 by rpki-client on console-fra.rpki-client.org