Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/lDAdmFsWpGLUH8oj7ynciBlu6Tc.roa
File: lDAdmFsWpGLUH8oj7ynciBlu6Tc.roa (raw, json)
Hash identifier: /gu5XDbnUvXazWP2C6WvaJasW/dz7psD8LCoIXVz1pw=
Subject key identifier: 94:30:1D:98:5B:16:A4:62:D4:1F:CA:23:EF:29:DC:88:19:6E:E9:37
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 011AAA8B
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/lDAdmFsWpGLUH8oj7ynciBlu6Tc.roa
Signing time: Sat 01 Jan 2022 06:03:50 +0000
ROA not before: Sat 01 Jan 2022 06:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 45.146.192.0/22 maxlen: 22
45.146.60.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18524811 (0x11aaa8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 1 06:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94301d985b16a462d41fca23ef29dc88196ee937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0b:51:21:dc:17:d5:40:94:76:83:99:dc:6e:
2b:1a:4a:8c:ed:23:c6:6d:1f:a4:1d:8e:aa:7d:b4:
c4:36:51:ba:9d:7f:b9:4f:57:8a:8b:ac:6c:4f:aa:
bc:51:92:1d:6f:b5:97:fd:ee:03:35:e4:b6:cc:01:
5b:f1:8c:c6:24:c6:26:b5:a4:6f:06:6a:1f:bb:91:
d1:41:1c:7e:11:f2:b5:1f:37:de:c3:0c:ff:92:41:
a1:e1:12:af:34:eb:c4:7e:84:f7:c7:d5:4a:05:21:
96:b2:dc:95:05:d6:de:1d:4c:10:82:be:c9:dc:76:
90:46:07:3e:d8:4a:e1:92:7c:cb:02:89:c5:5b:ec:
76:98:af:3a:a8:13:ad:35:cf:1f:4c:bf:c3:3c:07:
07:61:c9:83:9b:69:45:03:fe:25:a5:aa:9f:08:10:
49:9f:bb:ae:64:86:c1:45:ac:68:f2:e6:99:69:6d:
0c:1a:03:d0:a0:6a:70:a2:70:33:3d:50:7f:0f:e7:
c6:de:22:60:2d:f7:1f:d7:8e:c8:f8:7c:fd:f2:d8:
7f:12:2a:54:6d:24:c0:b8:83:ea:3d:2c:27:0d:6b:
e0:78:50:58:7f:43:20:1e:ed:46:52:be:e0:e7:27:
5f:5e:87:3a:f7:7f:a7:8e:4d:b1:82:a0:03:da:32:
75:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:30:1D:98:5B:16:A4:62:D4:1F:CA:23:EF:29:DC:88:19:6E:E9:37
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/lDAdmFsWpGLUH8oj7ynciBlu6Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.60.0/22
45.146.192.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:97:72:9a:f3:44:bf:c9:95:58:9b:96:c2:d4:39:8a:b7:49:
76:54:b4:bd:66:07:72:b0:36:28:2c:79:7f:11:35:1f:4f:1e:
00:62:35:e1:f1:a3:ca:74:01:d9:1f:8c:17:cb:a3:0e:80:02:
9b:7a:fc:a4:b3:49:d6:1d:18:e4:72:66:0c:8d:50:df:28:32:
05:39:bd:68:51:4e:0a:5d:0d:67:ec:3e:f6:7c:91:02:34:6e:
d3:3a:01:9d:53:83:3a:eb:ec:09:2b:14:7b:14:d3:6e:f1:92:
01:af:2b:57:f1:cf:19:43:8f:a0:2f:58:d6:d8:8e:98:c1:47:
01:bb:92:be:b0:9c:2c:3a:78:f9:cf:e9:9c:0d:12:8b:31:39:
20:e1:f5:52:86:7c:8a:5e:2e:83:11:05:83:c3:ea:e2:e0:e9:
7e:62:4d:35:6b:cc:36:af:2c:61:98:92:a7:ba:63:83:8d:a9:
b6:b6:29:26:81:68:1e:ce:98:1e:07:51:0d:13:2e:6f:73:28:
fa:b1:40:de:db:03:e4:fe:18:ff:be:c8:e0:d3:f3:46:a4:fc:
5d:9c:94:29:de:a5:21:61:36:ff:94:b1:7d:53:3e:2f:f8:f4:
6b:bd:7b:25:53:45:e6:bb:72:21:f7:92:63:d2:2e:2a:a6:c7:
3f:70:87:31
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEARqqizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTFjMTE2NThkMjA0MWVhZjI1MDJmZTU0MDhlZDQ5M2JiZDRmMzE4MB4XDTIyMDEw
MTA2MDM1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTQzMDFkOTg1YjE2
YTQ2MmQ0MWZjYTIzZWYyOWRjODgxOTZlZTkzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN4LUSHcF9VAlHaDmdxuKxpKjO0jxm0fpB2Oqn20xDZRup1/
uU9XiousbE+qvFGSHW+1l/3uAzXktswBW/GMxiTGJrWkbwZqH7uR0UEcfhHytR83
3sMM/5JBoeESrzTrxH6E98fVSgUhlrLclQXW3h1MEIK+ydx2kEYHPthK4ZJ8ywKJ
xVvsdpivOqgTrTXPH0y/wzwHB2HJg5tpRQP+JaWqnwgQSZ+7rmSGwUWsaPLmmWlt
DBoD0KBqcKJwMz1Qfw/nxt4iYC33H9eOyPh8/fLYfxIqVG0kwLiD6j0sJw1r4HhQ
WH9DIB7tRlK+4OcnX16HOvd/p45NsYKgA9oydeMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSUMB2YWxakYtQfyiPvKdyIGW7pNzAfBgNVHSMEGDAWgBSOHBFljSBB6vJQ
L+VAjtSTu9TzGDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pod1JaWTBnUWVyeVVDX2xRSTdVazd2VTh4Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvNzBiZjhiLWQ4YzQtNDBjMy05MDIyLTYzMzQ4Y2RiZjAyNC8x
L2xEQWRtRnNXcEdMVUg4b2o3eW5jaUJsdTZUYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
NzBiZjhiLWQ4YzQtNDBjMy05MDIyLTYzMzQ4Y2RiZjAyNC8xL2pod1JaWTBnUWVy
eVVDX2xRSTdVazd2VTh4Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAi2SPAMEAi2SwDANBgkqhkiG9w0B
AQsFAAOCAQEAT5dymvNEv8mVWJuWwtQ5irdJdlS0vWYHcrA2KCx5fxE1H08eAGI1
4fGjynQB2R+MF8ujDoACm3r8pLNJ1h0Y5HJmDI1Q3ygyBTm9aFFOCl0NZ+w+9nyR
AjRu0zoBnVODOuvsCSsUexTTbvGSAa8rV/HPGUOPoC9Y1tiOmMFHAbuSvrCcLDp4
+c/pnA0SizE5IOH1UoZ8il4ugxEFg8Pq4uDpfmJNNWvMNq8sYZiSp7pjg42ptrYp
JoFoHs6YHgdRDRMub3Mo+rFA3tsD5P4Y/77I4NPzRqT8XZyUKd6lIWE2/5SxfVM+
L/j0a717JVNF5rtyIfeSY9IuKqbHP3CHMQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org