Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/UKM3sjf1MGAMxeueAFPDL4C7ipQ.roa
File: UKM3sjf1MGAMxeueAFPDL4C7ipQ.roa (raw, json)
Hash identifier: 6FRxEfOOCl2Mpd+3mKItsUXEWbI4w2x8CPEdnJUFdvQ=
Subject key identifier: 50:A3:37:B2:37:F5:30:60:0C:C5:EB:9E:00:53:C3:2F:80:BB:8A:94
Certificate issuer: /CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Certificate serial: 0184C72FF901F5DCB280087F53EBD8843DAA
Authority key identifier: 74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/UKM3sjf1MGAMxeueAFPDL4C7ipQ.roa
Signing time: Wed 30 Nov 2022 06:18:40 +0000
ROA not before: Wed 30 Nov 2022 06:18:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29066
IP address blocks: 155.193.0.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:2f:f9:01:f5:dc:b2:80:08:7f:53:eb:d8:84:3d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Validity
Not Before: Nov 30 06:18:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50a337b237f530600cc5eb9e0053c32f80bb8a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e6:79:2f:e7:4f:39:b1:c3:85:5b:d2:c7:c5:
ee:96:94:0e:7e:e4:0f:0b:56:83:2a:df:bf:b5:3e:
a0:f5:7c:d0:d8:6f:72:b4:13:b7:cf:f0:ee:e7:71:
2b:43:87:d1:e8:33:40:90:51:b8:a9:96:f9:75:62:
e9:dd:e9:ff:28:1a:37:9c:81:8d:92:1c:7f:a7:ac:
0b:96:35:d3:aa:c8:51:74:b0:f7:d9:4e:ea:42:14:
3c:e7:0a:81:6d:8f:b8:5c:18:9c:d6:fb:15:aa:32:
77:de:70:a7:6d:41:9a:45:3e:a4:49:33:e1:47:48:
57:bb:e5:ad:2a:01:cc:37:bd:3e:1a:07:a0:a1:09:
91:c7:5e:85:a1:00:ec:9a:20:cf:d1:37:30:35:c4:
ae:f0:c4:83:ce:44:0f:a3:6d:33:f7:e1:96:b7:d3:
6e:18:85:4b:78:44:e2:e3:3e:3e:53:b1:78:62:f1:
20:74:9f:22:ae:9f:87:f6:6f:f3:c4:b8:3f:a2:6a:
71:50:b9:9d:69:2d:21:4a:5e:13:c9:c9:25:c9:ed:
99:13:cf:3f:a0:f2:3f:b3:f5:04:d7:8e:64:ee:67:
fa:7d:82:b5:41:29:8f:03:54:82:f2:6c:16:74:f4:
7d:63:30:5f:01:86:b5:c1:f2:f2:7b:c8:56:e4:21:
e4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A3:37:B2:37:F5:30:60:0C:C5:EB:9E:00:53:C3:2F:80:BB:8A:94
X509v3 Authority Key Identifier:
keyid:74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/UKM3sjf1MGAMxeueAFPDL4C7ipQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.193.0.0/24
Signature Algorithm: sha256WithRSAEncryption
91:0c:df:e9:08:4b:03:e5:b6:ba:ef:43:0a:b5:20:e6:a7:91:
2d:30:85:34:cd:01:a1:6e:87:ff:cc:16:d6:78:97:02:ff:04:
16:b6:c0:b6:44:9f:8e:f8:71:02:ec:15:f4:ee:4b:5c:3e:41:
1d:7b:65:48:a3:7e:de:e2:3d:27:43:bd:c8:7c:0d:a2:4a:46:
31:5e:c7:cb:7c:b3:d5:b4:5b:e3:e7:91:79:e4:ac:76:d6:f2:
53:0d:f1:86:22:80:68:09:94:79:ff:cb:85:a0:dd:21:b6:b0:
24:09:68:53:e1:7c:6a:f9:97:98:13:30:48:7a:51:71:23:ae:
8c:92:cd:94:7c:18:64:e3:bd:a0:f4:71:74:2b:44:d9:32:b7:
69:b8:b3:e0:23:83:fd:fc:23:27:8f:b3:36:18:9d:07:2f:d0:
41:d8:86:bf:24:f2:fe:28:50:22:7e:46:b6:ba:67:27:20:5f:
24:09:50:2e:60:10:4a:34:11:65:af:70:6b:d3:fa:65:5a:ee:
40:77:11:5e:38:6f:5e:e2:c4:eb:05:d8:74:98:62:8d:9f:55:
55:bf:cd:10:80:d8:b9:f2:7b:ce:01:51:0d:db:8f:77:24:05:
5a:0d:73:bb:ee:b5:10:ac:ed:27:92:df:d7:ad:09:92:40:cb:
ce:19:3a:2e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTHL/kB9dyygAh/U+vYhD2qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0M2U0NDdlZGI4YTVlMGUxYjFkN2Y1Y2RjMjg3YzM2NGE1
ZmIwYjUwHhcNMjIxMTMwMDYxODQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MGEzMzdiMjM3ZjUzMDYwMGNjNWViOWUwMDUzYzMyZjgwYmI4YTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8+Z5L+dPObHDhVvSx8XulpQOfuQP
C1aDKt+/tT6g9XzQ2G9ytBO3z/Du53ErQ4fR6DNAkFG4qZb5dWLp3en/KBo3nIGN
khx/p6wLljXTqshRdLD32U7qQhQ85wqBbY+4XBic1vsVqjJ33nCnbUGaRT6kSTPh
R0hXu+WtKgHMN70+GgegoQmRx16FoQDsmiDP0TcwNcSu8MSDzkQPo20z9+GWt9Nu
GIVLeETi4z4+U7F4YvEgdJ8irp+H9m/zxLg/ompxULmdaS0hSl4Tycklye2ZE88/
oPI/s/UE145k7mf6fYK1QSmPA1SC8mwWdPR9YzBfAYa1wfLye8hW5CHknwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFCjN7I39TBgDMXrngBTwy+Au4qUMB8GA1UdIwQY
MBaAFHQ+RH7bil4OGx1/XNwofDZKX7C1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEQ1RWZ0dUtYZzRiSFg5YzNDaDhOa3Bmc0xVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9hMWFlNzAtNzk5Ni00Njg3LWEwZDct
NWUwZjRhYjgwOWJiLzEvVUtNM3NqZjFNR0FNeGV1ZUFGUERMNEM3aXBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9hMWFlNzAtNzk5Ni00Njg3LWEwZDctNWUwZjRhYjgwOWJi
LzEvZEQ1RWZ0dUtYZzRiSFg5YzNDaDhOa3Bmc0xVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAm8EAMA0G
CSqGSIb3DQEBCwUAA4IBAQCRDN/pCEsD5ba670MKtSDmp5EtMIU0zQGhbof/zBbW
eJcC/wQWtsC2RJ+O+HEC7BX07ktcPkEde2VIo37e4j0nQ73IfA2iSkYxXsfLfLPV
tFvj55F55Kx21vJTDfGGIoBoCZR5/8uFoN0htrAkCWhT4Xxq+ZeYEzBIelFxI66M
ks2UfBhk472g9HF0K0TZMrdpuLPgI4P9/CMnj7M2GJ0HL9BB2Ia/JPL+KFAifka2
umcnIF8kCVAuYBBKNBFlr3Br0/plWu5AdxFeOG9e4sTrBdh0mGKNn1VVv80QgNi5
8nvOAVEN2493JAVaDXO77rUQrO0nkt/XrQmSQMvOGTou
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:15 2024 by rpki-client on console-fra.rpki-client.org