Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/6VymsXxg1ggHRuOu-Ax852QbtEQ.roa
File: 6VymsXxg1ggHRuOu-Ax852QbtEQ.roa (raw, json)
Hash identifier: ArpD83hDTSgQpvTvd0A6m4zp5zaE5MD321RUmasG9qU=
Subject key identifier: E9:5C:A6:B1:7C:60:D6:08:07:46:E3:AE:F8:0C:7C:E7:64:1B:B4:44
Certificate issuer: /CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Certificate serial: 04E68A0B
Authority key identifier: 74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/6VymsXxg1ggHRuOu-Ax852QbtEQ.roa
Signing time: Fri 29 Apr 2022 14:48:45 +0000
ROA not before: Fri 29 Apr 2022 14:48:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28920
IP address blocks: 155.193.14.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82217483 (0x4e68a0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Validity
Not Before: Apr 29 14:48:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e95ca6b17c60d6080746e3aef80c7ce7641bb444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:21:76:d4:8e:de:76:bb:0f:77:e7:34:90:4b:
d6:3f:7b:6a:31:36:ad:91:55:e5:15:85:bd:1a:9f:
3c:16:c5:c9:9b:82:48:cb:60:0d:6c:85:5b:4b:5f:
20:1f:04:f8:a3:b1:79:6e:34:0d:49:bc:2f:af:08:
3f:f1:f7:0b:de:47:7f:ee:97:64:3f:30:27:09:56:
ab:97:8c:8e:ac:62:2d:39:30:cc:f0:18:fa:8e:19:
88:e2:63:ed:9e:f1:85:f2:62:e5:49:dc:67:f6:8b:
72:a1:61:67:f8:29:6b:70:86:ae:f0:85:0c:45:e7:
2d:fc:a0:8d:db:21:cf:e4:8e:94:29:c3:32:aa:d4:
64:32:e0:21:5f:b7:65:0b:f3:62:de:65:43:ff:02:
4a:3b:4c:15:b5:04:d6:9d:0d:ad:41:31:26:7c:53:
d6:c7:ff:ec:cd:3e:40:ff:8b:9f:b5:61:aa:25:38:
bc:c5:69:ff:b8:70:4f:e1:04:3c:59:1c:2d:fb:8b:
f3:92:f4:69:5c:52:dc:93:d4:30:d6:11:1b:a8:d5:
ca:57:90:d8:6e:40:d4:6c:2c:f1:e4:ba:1a:97:65:
4c:c5:5e:45:51:71:1f:9c:0e:58:28:57:94:26:53:
39:19:58:9c:9d:a0:43:77:20:b4:49:a8:09:b8:73:
f6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5C:A6:B1:7C:60:D6:08:07:46:E3:AE:F8:0C:7C:E7:64:1B:B4:44
X509v3 Authority Key Identifier:
keyid:74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/6VymsXxg1ggHRuOu-Ax852QbtEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
75:3e:5f:71:92:4f:f5:cd:fd:54:5b:58:1b:0e:2d:6c:29:41:
2a:7e:d0:d0:18:a5:e6:e2:af:57:b1:75:47:c8:f6:5d:bc:e7:
ed:f1:4a:02:95:f4:47:09:f7:a5:2f:6c:8b:22:36:bf:10:7b:
a8:a5:07:b0:12:05:dc:09:16:67:e7:fa:8e:6c:81:7f:2d:46:
64:6c:dd:31:c8:8b:bc:20:2d:bb:df:48:9a:ca:89:85:96:f4:
75:3f:ef:c6:76:68:49:68:09:53:d7:4c:fd:6a:00:07:30:95:
62:c4:a3:1f:56:cd:61:3f:3d:40:74:90:94:76:87:b6:7d:4b:
7e:c3:54:27:dd:a2:db:f9:04:0f:02:2d:5e:11:e9:0d:22:99:
e6:c5:30:27:83:d8:c2:3d:bb:15:a4:6f:9d:77:7e:a3:51:74:
d5:89:cf:7b:b0:2d:1e:9a:7d:c7:4b:f1:ce:fc:e8:6a:57:3b:
a2:18:23:19:9f:eb:39:2d:b1:f9:7e:84:27:d2:68:89:24:ae:
8a:e8:4e:80:e9:80:90:43:4d:ae:92:75:ad:34:04:61:e4:ce:
80:c8:5a:83:d5:7d:9d:b4:7a:db:17:8a:1a:4a:4b:96:07:c6:
0a:ac:1e:42:d0:95:15:ff:08:45:e9:d1:3e:89:a6:e2:15:5b:
2a:fa:c8:55
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBOaKCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDNlNDQ3ZWRiOGE1ZTBlMWIxZDdmNWNkYzI4N2MzNjRhNWZiMGI1MB4XDTIyMDQy
OTE0NDg0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTk1Y2E2YjE3YzYw
ZDYwODA3NDZlM2FlZjgwYzdjZTc2NDFiYjQ0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOYhdtSO3na7D3fnNJBL1j97ajE2rZFV5RWFvRqfPBbFyZuC
SMtgDWyFW0tfIB8E+KOxeW40DUm8L68IP/H3C95Hf+6XZD8wJwlWq5eMjqxiLTkw
zPAY+o4ZiOJj7Z7xhfJi5UncZ/aLcqFhZ/gpa3CGrvCFDEXnLfygjdshz+SOlCnD
MqrUZDLgIV+3ZQvzYt5lQ/8CSjtMFbUE1p0NrUExJnxT1sf/7M0+QP+Ln7VhqiU4
vMVp/7hwT+EEPFkcLfuL85L0aVxS3JPUMNYRG6jVyleQ2G5A1Gws8eS6GpdlTMVe
RVFxH5wOWChXlCZTORlYnJ2gQ3cgtEmoCbhz9tcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTpXKaxfGDWCAdG4674DHznZBu0RDAfBgNVHSMEGDAWgBR0PkR+24peDhsd
f1zcKHw2Sl+wtTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RENUVmdHVLWGc0YkhYOWMzQ2g4TmtwZnNMVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvYTFhZTcwLTc5OTYtNDY4Ny1hMGQ3LTVlMGY0YWI4MDliYi8x
LzZWeW1zWHhnMWdnSFJ1T3UtQXg4NTJRYnRFUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
YTFhZTcwLTc5OTYtNDY4Ny1hMGQ3LTVlMGY0YWI4MDliYi8xL2RENUVmdHVLWGc0
YkhYOWMzQ2g4TmtwZnNMVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJvBDjANBgkqhkiG9w0BAQsFAAOC
AQEAdT5fcZJP9c39VFtYGw4tbClBKn7Q0Bil5uKvV7F1R8j2Xbzn7fFKApX0Rwn3
pS9siyI2vxB7qKUHsBIF3AkWZ+f6jmyBfy1GZGzdMciLvCAtu99ImsqJhZb0dT/v
xnZoSWgJU9dM/WoABzCVYsSjH1bNYT89QHSQlHaHtn1LfsNUJ92i2/kEDwItXhHp
DSKZ5sUwJ4PYwj27FaRvnXd+o1F01YnPe7AtHpp9x0vxzvzoalc7ohgjGZ/rOS2x
+X6EJ9JoiSSuiuhOgOmAkENNrpJ1rTQEYeTOgMhag9V9nbR62xeKGkpLlgfGCqwe
QtCVFf8IRenRPomm4hVbKvrIVQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:15 2024 by rpki-client on console-fra.rpki-client.org