Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gOVkgeFH9cWYE-j-nhKs_XZpgnI.roa
File: gOVkgeFH9cWYE-j-nhKs_XZpgnI.roa (raw, json)
Hash identifier: 8rFq8HzGMmPzJXH7mP2xDYDzf2QpcsTzsh7lA4eJSvQ=
Subject key identifier: 80:E5:64:81:E1:47:F5:C5:98:13:E8:FE:9E:12:AC:FD:76:69:82:72
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38DAC6AB
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gOVkgeFH9cWYE-j-nhKs_XZpgnI.roa
Signing time: Sat 01 Jan 2022 07:55:18 +0000
ROA not before: Sat 01 Jan 2022 07:55:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 145.8.180.0/24 maxlen: 24
145.79.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953861803 (0x38dac6ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80e56481e147f5c59813e8fe9e12acfd76698272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:24:49:8f:a4:a2:b2:d4:7c:1c:79:49:b5:95:
91:55:e5:f2:ce:a0:ec:69:5f:19:ef:01:af:32:1d:
df:09:53:f7:17:4b:9d:98:b7:f8:a5:67:cb:86:8e:
0e:4b:8a:64:3b:ca:c0:83:7e:02:ab:5e:11:33:9b:
f5:c4:25:f1:7b:ef:1c:28:b8:96:22:0e:47:e2:1a:
3b:eb:fb:10:2a:4a:d3:9b:c0:db:86:d9:df:d7:a2:
34:9a:ac:ed:a1:1a:bc:8e:0c:74:a7:d8:b1:a5:13:
48:2b:63:92:fe:33:7a:9e:aa:11:c5:39:da:a6:06:
cd:52:e5:6c:44:54:ae:e5:c2:d0:fd:4d:6d:52:63:
40:74:ce:0d:92:e3:c0:f7:e8:13:9c:b9:24:f8:67:
fa:f1:7f:ed:57:3a:fc:c3:b0:43:ee:e8:b4:0b:8f:
d7:7c:b0:79:e6:a7:9f:d2:11:e9:96:3b:77:98:98:
70:6a:e4:a4:ad:f0:79:70:c7:46:30:d3:0b:03:4f:
7a:d9:2b:7d:96:e8:3d:88:95:43:7c:01:5d:31:4d:
8e:a2:6f:1d:78:64:dc:57:06:87:50:a7:c5:6a:b8:
66:64:8c:ff:a5:4b:cc:a3:e3:8f:98:0e:24:f0:00:
bd:ce:ff:cf:a2:34:e1:3f:44:0f:34:12:97:e1:0e:
33:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E5:64:81:E1:47:F5:C5:98:13:E8:FE:9E:12:AC:FD:76:69:82:72
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gOVkgeFH9cWYE-j-nhKs_XZpgnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.8.180.0/24
145.79.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:d3:b2:8a:1a:62:b6:ad:53:ba:40:b3:3b:69:f0:25:eb:83:
06:40:d9:65:fa:73:85:c2:f0:49:3d:fb:fa:c8:71:a4:d9:62:
3b:9f:e8:02:22:70:80:90:c3:fc:f9:74:32:cb:fe:e6:5c:13:
eb:2c:b1:a2:33:90:41:f7:60:3c:98:42:b3:73:0a:14:5e:be:
70:35:a2:7e:bf:d9:9f:94:c3:cc:69:80:e8:6e:4e:8e:12:4d:
67:b5:a4:0b:7d:e8:ef:67:3a:eb:44:f4:5e:06:23:6e:84:7d:
b2:41:4b:75:90:11:9c:c6:87:8f:59:39:19:63:19:26:3f:a0:
e4:4c:9f:24:af:45:58:48:a7:d1:ae:8a:12:d3:ad:4d:c9:68:
31:d5:07:32:a6:95:46:ee:6a:ab:53:dd:ba:2c:f8:34:ab:c8:
e0:07:d4:44:16:b2:17:ae:3a:63:30:c9:52:77:eb:58:98:8f:
10:94:64:7d:ad:96:fe:a4:de:49:ca:e8:a9:5e:bd:c0:31:21:
f6:40:ae:1c:66:48:2d:9f:1e:55:4e:4b:ac:03:5c:3e:ee:81:
3a:54:81:92:c4:22:af:50:60:2d:e3:fc:01:28:15:6b:13:91:
0c:27:02:25:a6:0c:69:72:92:9a:5d:8a:f3:d0:6c:88:ca:1d:
cf:e3:6f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org