Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/063fa4-17de-4595-bc86-ce4b6250bb4d/1/6LoQfLpZj6k1K17zXUsBjJBc00U.roa
File: 6LoQfLpZj6k1K17zXUsBjJBc00U.roa (raw, json)
Hash identifier: XRrJqcvV6UNV+tCR6kLM3mhhJUz91lvg5AoRAJAC25k=
Subject key identifier: E8:BA:10:7C:BA:59:8F:A9:35:2B:5E:F3:5D:4B:01:8C:90:5C:D3:45
Certificate issuer: /CN=91dd2314dd9b7c61d71d4dbeda8fa3965c424570
Certificate serial: 03698C48
Authority key identifier: 91:DD:23:14:DD:9B:7C:61:D7:1D:4D:BE:DA:8F:A3:96:5C:42:45:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd0jFN2bfGHXHU2-2o-jllxCRXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/063fa4-17de-4595-bc86-ce4b6250bb4d/1/6LoQfLpZj6k1K17zXUsBjJBc00U.roa
Signing time: Sat 01 Jan 2022 16:03:41 +0000
ROA not before: Sat 01 Jan 2022 16:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39093
IP address blocks: 185.212.184.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57248840 (0x3698c48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91dd2314dd9b7c61d71d4dbeda8fa3965c424570
Validity
Not Before: Jan 1 16:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8ba107cba598fa9352b5ef35d4b018c905cd345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2a:80:cf:ab:5e:c9:82:4f:1f:54:eb:b5:73:
68:1c:a1:16:a3:8a:82:9c:f8:d5:d5:9b:64:89:3d:
5c:df:97:44:01:83:3c:36:43:f2:d7:cd:12:03:6c:
9b:41:ec:3f:40:d4:8b:f3:9f:83:40:46:8c:88:a1:
ae:b6:c7:ae:46:11:91:6c:42:42:01:a7:7b:50:e3:
81:c1:1b:a7:1d:ca:52:e2:95:dd:67:7b:21:a3:af:
df:4e:45:a2:f5:36:8c:1c:94:2c:b3:55:00:2d:a5:
1e:95:92:f7:d1:6a:8e:37:41:ae:b6:10:de:eb:85:
39:ee:e0:37:0f:ab:43:dc:9c:f7:51:91:31:1e:d2:
6b:04:86:35:dd:13:02:34:ff:49:3b:88:2e:0d:b1:
da:55:e0:e3:ca:d4:8c:b1:93:c4:fa:9f:9f:cf:b6:
30:9f:20:f8:50:35:04:8b:97:eb:b4:67:cd:e5:80:
e7:37:3a:41:08:af:ce:b5:85:ae:71:8a:b6:b7:69:
f6:a8:06:fd:83:b5:d0:74:bb:fc:63:4b:22:d0:e9:
47:52:cd:06:84:c5:11:7b:bc:a5:5a:77:ad:ab:7f:
20:f4:de:41:b6:0e:4a:ff:08:54:b6:fc:22:e5:80:
b4:79:d6:b3:77:bd:94:2c:d1:58:61:14:65:fb:8d:
b2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:BA:10:7C:BA:59:8F:A9:35:2B:5E:F3:5D:4B:01:8C:90:5C:D3:45
X509v3 Authority Key Identifier:
keyid:91:DD:23:14:DD:9B:7C:61:D7:1D:4D:BE:DA:8F:A3:96:5C:42:45:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd0jFN2bfGHXHU2-2o-jllxCRXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/063fa4-17de-4595-bc86-ce4b6250bb4d/1/6LoQfLpZj6k1K17zXUsBjJBc00U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/063fa4-17de-4595-bc86-ce4b6250bb4d/1/kd0jFN2bfGHXHU2-2o-jllxCRXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.184.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:46:92:bc:c6:d6:56:c1:4d:91:fb:f7:56:6a:b6:be:43:40:
e2:40:d0:99:c5:47:d3:62:2f:5a:60:20:3a:38:73:d8:a7:8e:
d2:14:42:99:4a:41:af:2e:08:0c:71:e5:fe:d8:c8:91:98:68:
12:25:28:ec:ab:f9:9b:b2:72:0e:d3:e5:9e:bc:90:37:3b:d8:
95:bd:2a:c7:90:fa:21:0c:65:34:b0:4a:e3:65:9b:1c:cc:36:
d7:4a:73:9d:54:21:dd:fa:f8:a0:60:c6:d1:0a:21:c2:76:ca:
ae:5c:34:02:a4:ba:5d:50:5f:45:2a:94:bd:51:23:be:fc:1a:
d4:19:be:ae:88:22:85:0b:69:01:e3:45:d0:5a:d9:11:cf:d6:
8f:4e:f8:03:29:f2:0c:ac:1a:f9:07:52:e9:57:44:59:c9:19:
a2:01:9b:27:3d:4b:19:ed:44:b5:ec:e2:e7:5b:18:76:15:c2:
4a:a3:16:e0:09:5e:e1:b5:d0:7c:1b:ad:d1:64:db:f3:b5:be:
df:b5:de:d8:c8:62:5f:43:78:0e:05:d0:0d:ea:63:e9:6a:37:
c5:8c:d9:63:48:58:e2:8d:54:74:0b:bc:55:b0:fd:84:3d:85:
2d:bb:7a:c5:18:89:99:90:ac:bf:fa:1b:4b:69:2e:bb:3c:51:
b9:3b:25:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:08 2023 by rpki-client on console-ams.rpki-client.org