Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/g2QBEEItq6K7HAyL2hXcJT6oiko.roa
File: g2QBEEItq6K7HAyL2hXcJT6oiko.roa (raw, json)
Hash identifier: +BQrS6m3c08byzvtIWDKoZCxscjavzIXELPh9AAupNY=
Subject key identifier: 83:64:01:10:42:2D:AB:A2:BB:1C:0C:8B:DA:15:DC:25:3E:A8:8A:4A
Certificate issuer: /CN=4d88eb730ab1a501ea36ea3482d764544e141111
Certificate serial: 09C232E7
Authority key identifier: 4D:88:EB:73:0A:B1:A5:01:EA:36:EA:34:82:D7:64:54:4E:14:11:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TYjrcwqxpQHqNuo0gtdkVE4UERE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/g2QBEEItq6K7HAyL2hXcJT6oiko.roa
Signing time: Sat 01 Jan 2022 14:57:54 +0000
ROA not before: Sat 01 Jan 2022 14:57:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200450
IP address blocks: 77.104.187.0/24 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163721959 (0x9c232e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d88eb730ab1a501ea36ea3482d764544e141111
Validity
Not Before: Jan 1 14:57:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83640110422daba2bb1c0c8bda15dc253ea88a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ea:f0:70:2d:fc:64:30:88:e4:bc:a2:f0:0b:
02:81:2e:ba:2a:d6:a6:fc:6a:e2:54:b6:b1:80:37:
a5:4c:2a:e1:9e:1b:6d:cd:e5:b9:dc:a1:45:8f:3a:
7a:e1:e9:e6:15:d6:d8:6d:2b:4a:11:b2:5c:6a:52:
fc:1b:5a:27:13:46:fd:9f:9a:2d:a4:ff:7b:48:43:
47:83:92:a0:23:35:1a:22:f3:93:90:c1:e0:1c:43:
57:3f:c8:d8:67:fb:fd:ac:fe:54:73:d2:22:f1:da:
0f:9c:b5:e6:fb:92:f3:e2:88:53:38:fe:c5:10:3f:
58:5a:62:40:be:97:c3:50:e0:4c:66:79:14:8f:41:
eb:ba:c6:6f:18:1a:32:77:df:1c:f5:1f:e1:1a:46:
e7:b6:d1:79:b2:70:57:69:89:77:68:6f:8f:b2:c4:
11:18:27:f6:d2:94:f8:c8:bd:43:67:3b:71:d6:7b:
44:75:92:63:81:52:4d:46:69:58:53:64:e1:0b:6b:
36:fc:62:20:6e:cb:75:35:00:dc:ec:ff:cd:90:87:
6a:d5:27:02:da:28:eb:2d:6c:8c:69:b1:7a:e4:e0:
0f:45:01:a5:d4:8d:35:74:f9:f3:4e:f3:ac:5c:7c:
2b:92:f4:08:84:10:a4:ea:4c:bb:5f:6c:00:57:ad:
3c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:64:01:10:42:2D:AB:A2:BB:1C:0C:8B:DA:15:DC:25:3E:A8:8A:4A
X509v3 Authority Key Identifier:
keyid:4D:88:EB:73:0A:B1:A5:01:EA:36:EA:34:82:D7:64:54:4E:14:11:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TYjrcwqxpQHqNuo0gtdkVE4UERE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/g2QBEEItq6K7HAyL2hXcJT6oiko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/TYjrcwqxpQHqNuo0gtdkVE4UERE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.104.187.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d6:a1:e7:fa:5f:42:03:d2:42:9e:1d:a8:39:20:00:16:dd:
d6:76:11:fa:8b:8f:66:32:80:56:36:65:e9:5f:91:c0:ee:3c:
f7:22:77:79:b4:8c:2e:1f:32:bc:f1:f1:c3:03:80:90:0a:f6:
d4:fb:70:d1:eb:1a:7b:3f:32:20:52:3e:e8:4b:0a:37:1c:a1:
3c:eb:e0:c5:e0:dd:5c:ec:e8:d4:ac:49:b3:c8:9c:99:4d:05:
c7:29:18:c1:d1:b3:29:9b:0f:35:a8:ca:6f:60:8e:ac:a8:ae:
01:80:6d:ce:63:4d:a2:6f:a0:0f:aa:6c:27:8d:43:28:59:5c:
cf:b9:51:6f:f1:c3:80:d9:e1:b5:b1:4b:8c:20:7c:b5:0d:42:
f2:44:4d:8d:c0:5c:95:7f:a6:9d:aa:aa:e7:6e:2e:3f:38:06:
89:0c:52:53:2d:28:65:f2:0f:2a:cd:7f:8b:a2:d9:87:8e:04:
f2:53:34:df:27:2e:a7:93:09:f4:4f:32:1d:87:07:6d:1a:08:
7c:54:c3:c0:21:fe:30:58:7e:c9:65:9e:22:ac:13:ff:ea:ba:
28:6d:fa:54:fc:04:41:02:fb:50:bd:6d:13:f8:45:12:38:8b:
f0:85:d2:b5:3e:b9:91:66:3e:d3:9e:bb:68:b9:b6:43:4c:d3:
82:70:a1:0d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECcIy5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZDg4ZWI3MzBhYjFhNTAxZWEzNmVhMzQ4MmQ3NjQ1NDRlMTQxMTExMB4XDTIyMDEw
MTE0NTc1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODM2NDAxMTA0MjJk
YWJhMmJiMWMwYzhiZGExNWRjMjUzZWE4OGE0YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ3q8HAt/GQwiOS8ovALAoEuuirWpvxq4lS2sYA3pUwq4Z4b
bc3ludyhRY86euHp5hXW2G0rShGyXGpS/BtaJxNG/Z+aLaT/e0hDR4OSoCM1GiLz
k5DB4BxDVz/I2Gf7/az+VHPSIvHaD5y15vuS8+KIUzj+xRA/WFpiQL6Xw1DgTGZ5
FI9B67rGbxgaMnffHPUf4RpG57bRebJwV2mJd2hvj7LEERgn9tKU+Mi9Q2c7cdZ7
RHWSY4FSTUZpWFNk4QtrNvxiIG7LdTUA3Oz/zZCHatUnAtoo6y1sjGmxeuTgD0UB
pdSNNXT5807zrFx8K5L0CIQQpOpMu19sAFetPKMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSDZAEQQi2rorscDIvaFdwlPqiKSjAfBgNVHSMEGDAWgBRNiOtzCrGlAeo2
6jSC12RUThQRETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RZanJjd3F4cFFIcU51bzBndGRrVkU0VUVSRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmEvYzQ5M2VlLWY2NmUtNDIwOC1hMzFkLTcyNmY4M2QyMzg5Mi8x
L2cyUUJFRUl0cTZLN0hBeUwyaFhjSlQ2b2lrby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEv
YzQ5M2VlLWY2NmUtNDIwOC1hMzFkLTcyNmY4M2QyMzg5Mi8xL1RZanJjd3F4cFFI
cU51bzBndGRrVkU0VUVSRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1ouzANBgkqhkiG9w0BAQsFAAOC
AQEAPNah5/pfQgPSQp4dqDkgABbd1nYR+ouPZjKAVjZl6V+RwO489yJ3ebSMLh8y
vPHxwwOAkAr21Ptw0esaez8yIFI+6EsKNxyhPOvgxeDdXOzo1KxJs8icmU0FxykY
wdGzKZsPNajKb2COrKiuAYBtzmNNom+gD6psJ41DKFlcz7lRb/HDgNnhtbFLjCB8
tQ1C8kRNjcBclX+mnaqq524uPzgGiQxSUy0oZfIPKs1/i6LZh44E8lM03ycup5MJ
9E8yHYcHbRoIfFTDwCH+MFh+yWWeIqwT/+q6KG36VPwEQQL7UL1tE/hFEjiL8IXS
tT65kWY+0567aLm2Q0zTgnChDQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:48 2024 by rpki-client on console-fra.rpki-client.org