Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/_XAEYa12Kl7eVf6c_feH0aK8LqI.roa
File: _XAEYa12Kl7eVf6c_feH0aK8LqI.roa (raw, json)
Hash identifier: oFOUJr8W9tWrR5P1PreOaDScsZlfxmbgpTY0qM0btn4=
Subject key identifier: FD:70:04:61:AD:76:2A:5E:DE:55:FE:9C:FD:F7:87:D1:A2:BC:2E:A2
Certificate issuer: /CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Certificate serial: 03CF6739
Authority key identifier: 74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/_XAEYa12Kl7eVf6c_feH0aK8LqI.roa
Signing time: Sat 01 Jan 2022 08:04:26 +0000
ROA not before: Sat 01 Jan 2022 08:04:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 155.193.64.0/18 maxlen: 18
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63924025 (0x3cf6739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Validity
Not Before: Jan 1 08:04:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd700461ad762a5ede55fe9cfdf787d1a2bc2ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:05:bd:b9:a6:6d:4c:66:c5:ee:93:f8:9c:
4a:3b:47:dd:cc:39:7a:85:ba:4a:cc:23:36:f3:7a:
6c:d6:b9:90:5b:09:2c:9b:0d:d0:7c:76:05:3a:2e:
16:88:50:31:4c:dc:b6:52:c4:0f:9d:14:4d:be:33:
8f:44:4e:ad:6f:1b:99:e2:42:5a:3e:d9:f9:e8:1e:
ef:5c:a7:1d:45:89:5d:8e:49:9e:52:d8:5b:83:2d:
71:e0:7c:ad:0c:3b:b9:75:f5:5c:56:5c:98:b5:ea:
26:77:dd:25:99:7f:ad:86:2a:f9:62:12:ed:d9:9b:
eb:08:59:e8:41:c2:7d:21:e7:ec:52:f7:e8:68:5b:
1d:fe:aa:8b:08:71:94:a5:8b:38:74:87:f5:43:49:
8c:d4:a6:d1:aa:09:f4:0e:a6:c5:87:a8:20:6a:38:
77:2e:ec:8e:cf:51:a5:01:d2:c1:9c:9b:71:1e:3d:
6f:ee:df:16:23:fc:1c:f7:3b:92:c3:85:31:e9:7b:
70:90:4c:b5:74:7b:1f:c4:23:7b:28:5b:cc:73:6a:
96:9f:17:35:2b:06:cc:e4:43:9b:e0:b6:8a:85:d4:
2d:ac:b8:c3:39:d3:d6:c1:1d:a5:89:79:79:9d:2f:
3c:de:a9:e3:c4:0c:77:c3:9d:70:5d:49:fa:7c:65:
13:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:70:04:61:AD:76:2A:5E:DE:55:FE:9C:FD:F7:87:D1:A2:BC:2E:A2
X509v3 Authority Key Identifier:
keyid:74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/_XAEYa12Kl7eVf6c_feH0aK8LqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.193.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b1:7b:f8:59:c2:f2:43:83:fe:0f:be:22:fc:78:4b:83:f3:b2:
0c:69:ef:15:99:f6:a8:52:cf:38:29:0a:b3:f1:50:b2:04:d1:
d1:cd:8d:8d:54:31:66:5c:2c:d4:e6:0a:72:d3:d5:1a:ef:d5:
29:b1:aa:fa:ea:bd:84:a4:b2:17:38:83:9c:05:8f:61:24:d5:
99:68:c4:dc:36:e1:70:9e:b7:dc:e6:1f:11:35:db:5d:50:fd:
ad:77:bd:28:d2:e1:d7:22:f2:47:ef:92:48:dc:06:90:6a:a1:
95:c1:9c:5d:d0:4e:44:d5:e5:42:1f:7e:b6:ba:7d:c5:0c:e0:
77:1e:1f:8f:32:95:d1:95:5d:40:e7:05:28:53:5f:7f:b2:83:
0c:fa:1c:86:e9:af:83:03:20:9e:b1:d1:f4:e2:90:3a:f1:18:
14:f3:94:32:c8:86:81:2c:c3:40:8e:f8:84:81:96:dd:e7:3a:
97:ed:4a:d3:ae:f5:f8:45:ff:c2:ba:84:62:b0:85:1a:60:10:
53:64:d5:cf:d6:3a:84:b9:00:32:f9:aa:ca:54:b9:20:c9:3c:
c4:c9:31:eb:c1:b7:2f:af:19:dc:01:dd:0b:57:85:cb:31:91:
be:65:8a:a1:8c:55:8f:b9:6b:be:7a:17:0d:b6:cd:56:47:a5:
6f:46:97:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:15 2024 by rpki-client on console-fra.rpki-client.org