Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/AVcfjrRgkQiO7CVI7G20FpqSzsE.roa
File: AVcfjrRgkQiO7CVI7G20FpqSzsE.roa (raw, json)
Hash identifier: NHOYFzc02Fvqdvdst28vMM9rEVwrG3JyP9diVDfnrNA=
Subject key identifier: 01:57:1F:8E:B4:60:91:08:8E:EC:25:48:EC:6D:B4:16:9A:92:CE:C1
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 0182F03BC3C5431C2DB1443354773543A8C3
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/AVcfjrRgkQiO7CVI7G20FpqSzsE.roa
Signing time: Tue 30 Aug 2022 19:30:24 +0000
ROA not before: Tue 30 Aug 2022 19:30:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205217
IP address blocks: 185.201.50.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f0:3b:c3:c5:43:1c:2d:b1:44:33:54:77:35:43:a8:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Aug 30 19:30:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01571f8eb46091088eec2548ec6db4169a92cec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ff:f1:43:d3:dc:0c:90:e7:16:d4:bc:27:d1:
b7:a4:60:3e:a8:69:e3:2f:c2:3c:69:8f:fb:d6:1a:
7d:7c:1d:f2:a3:db:f0:c5:a7:88:82:72:53:d1:b4:
e2:7d:9b:04:1d:54:a5:0a:68:c7:78:21:82:5a:eb:
c3:60:6d:3e:18:e2:d0:2e:16:9b:48:7a:f2:c5:d6:
61:05:f7:4f:9b:bc:00:32:93:78:22:f5:67:ef:4c:
fe:18:31:11:f6:3b:aa:3c:62:a8:f7:19:a2:20:29:
31:fc:c7:0e:ae:f8:bc:15:d4:ea:1b:36:c1:38:09:
99:0d:6e:3d:b3:c3:fb:bc:a0:e1:25:fe:2e:fc:16:
36:43:9d:f1:fd:29:77:a0:ad:a2:4b:e7:01:38:31:
17:89:c8:45:56:09:74:ff:e4:02:12:e6:55:aa:dd:
18:34:80:3c:a0:e8:4d:73:88:04:48:4e:85:ba:5a:
6b:33:52:db:79:36:ea:55:ad:c3:e8:59:0f:70:51:
ed:71:05:8d:18:26:d2:6e:80:27:59:cc:94:9f:cd:
0a:81:2f:17:42:ef:34:21:ed:b7:d0:cc:d6:9b:36:
03:9b:24:e9:c1:81:1d:bc:5f:8c:69:c2:ca:2b:ac:
1c:70:46:6e:82:93:39:74:12:43:62:ce:47:3e:a0:
c3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:57:1F:8E:B4:60:91:08:8E:EC:25:48:EC:6D:B4:16:9A:92:CE:C1
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/AVcfjrRgkQiO7CVI7G20FpqSzsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.50.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ce:65:8a:09:b0:04:95:5a:19:fc:1b:18:52:48:9c:b1:2f:
f4:77:e8:e6:b6:d8:b7:2a:6f:bb:4a:b7:85:8c:36:7b:59:ec:
d0:38:50:c9:a8:19:d4:1e:db:6e:ab:a8:a3:6c:b2:f7:6c:a0:
65:78:ac:54:44:0a:9b:a8:60:e7:f4:0b:31:37:e4:66:ff:3b:
81:4d:98:53:e6:4c:3f:31:7c:b9:5b:2a:9b:55:66:0a:64:93:
14:cb:e3:80:2e:7a:27:c6:03:36:b0:97:6c:d3:aa:c8:cb:49:
be:70:b4:ed:6f:8b:24:bd:f6:77:e3:7c:cf:d0:0e:38:58:cd:
37:c7:e7:ce:25:85:b7:a8:11:7b:56:b7:e8:eb:35:fd:48:9b:
34:13:82:18:90:3b:0d:69:c8:64:ef:e7:c2:22:87:37:63:e3:
e1:3f:10:e9:5b:bb:be:ff:84:b4:5d:17:fb:64:82:0d:62:dd:
47:9c:28:a2:4e:4e:a1:1d:dd:fb:6a:e5:96:a1:86:0b:56:b6:
31:f4:c6:1e:56:2c:b9:c2:8a:3a:ce:97:5d:4d:65:9a:e1:c5:
1a:8d:89:f7:31:6d:d0:55:5b:a6:24:6e:ce:18:20:8d:f7:9d:
11:bb:6c:9b:58:79:ea:6c:6d:12:13:32:54:f0:2b:2c:e6:3c:
4c:c8:15:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:19 2024 by rpki-client on console-ams.rpki-client.org