Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/F8TXtZPqIUqnfrqdnp_ZBUG-YxM.roa
File: F8TXtZPqIUqnfrqdnp_ZBUG-YxM.roa (raw, json)
Hash identifier: PDQP7qmKlDU4CwBbdLNFIg6J/3I4EdZqnXZf5StMVn4=
Subject key identifier: 17:C4:D7:B5:93:EA:21:4A:A7:7E:BA:9D:9E:9F:D9:05:41:BE:63:13
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 018BFCECD658FD890C64144B1278A8979DCF
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/F8TXtZPqIUqnfrqdnp_ZBUG-YxM.roa
Signing time: Thu 23 Nov 2023 16:04:21 +0000
ROA not before: Thu 23 Nov 2023 16:04:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44436
IP address blocks: 194.59.214.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fc:ec:d6:58:fd:89:0c:64:14:4b:12:78:a8:97:9d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Nov 23 16:04:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17c4d7b593ea214aa77eba9d9e9fd90541be6313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:61:eb:69:e7:f1:d6:a1:15:a9:11:48:cc:cc:
8d:1a:97:c4:00:05:09:0e:79:b7:61:d4:34:5d:da:
9b:a5:57:cc:0e:d2:de:e9:1e:68:1c:82:51:5b:97:
12:00:51:10:0a:a1:c4:96:e7:c1:74:8b:a5:6a:45:
92:7d:5b:67:83:8c:1e:09:2a:d6:7e:d5:5b:6c:f7:
51:a1:d5:6b:05:62:c0:67:c2:1b:6b:81:8d:e4:4b:
11:21:c8:76:90:2d:49:80:10:fe:bf:38:08:02:a9:
51:c8:cf:eb:fb:f7:d5:9a:d6:2d:53:4c:ee:8c:80:
b9:1d:c3:12:80:e8:c1:af:ce:5a:27:19:26:e7:e6:
00:50:72:03:1f:62:72:df:07:d0:0d:8a:78:8d:3b:
2b:5a:ef:b7:02:61:ca:aa:d4:93:94:50:c4:9d:70:
19:f9:c6:84:4b:e6:c7:84:4b:4a:bb:f1:16:d1:a7:
50:f0:54:fa:28:4b:b2:61:8e:a9:a7:1f:7c:62:16:
29:c2:9f:70:dd:13:90:6c:5b:2c:87:36:3c:47:a6:
0d:c9:82:c9:15:28:12:93:c5:90:3d:3e:34:23:fe:
d8:94:72:f7:a8:04:f2:33:57:49:6f:af:b4:04:2c:
ea:d0:33:f4:95:e2:9d:db:43:a3:0a:28:c0:b2:8d:
57:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C4:D7:B5:93:EA:21:4A:A7:7E:BA:9D:9E:9F:D9:05:41:BE:63:13
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/F8TXtZPqIUqnfrqdnp_ZBUG-YxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.214.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ee:95:31:02:df:a9:e4:a7:4d:3a:ea:5a:63:cb:3d:0d:4a:
c7:59:fd:8d:14:af:31:37:02:0f:d4:9f:87:b0:7e:73:4a:b3:
17:b9:c0:89:77:ee:8f:c2:82:96:0d:20:98:fb:ff:4f:6a:21:
ce:1c:d1:4b:3b:4f:3a:67:fe:d5:e5:ee:8f:1a:a6:4b:6d:14:
50:e7:06:53:44:1b:3c:de:61:50:51:8f:11:e9:11:0e:71:f0:
d2:46:4e:08:13:40:e8:4c:3d:c3:ff:72:a4:aa:f6:54:39:cf:
ba:1c:c7:e8:e9:76:f2:c2:58:82:17:ae:83:fe:cf:97:2b:00:
d8:ea:1c:79:a6:f4:3b:7f:81:82:25:83:9c:8e:14:30:75:b3:
25:f5:53:3b:62:21:b5:01:7e:8a:fc:78:a5:7a:a0:ff:79:42:
59:de:4c:9e:1b:77:36:a7:83:74:aa:d6:36:be:98:9f:75:2c:
98:db:46:ff:f9:14:e5:ae:c9:3b:13:ba:bb:0b:e0:8e:34:2a:
9b:6f:87:81:f2:00:36:8f:fd:18:4f:4c:d0:df:26:cf:60:41:
a3:19:04:7d:2a:45:3d:88:12:19:a8:18:a4:89:15:f3:6d:ec:
01:78:cd:10:c3:b1:f0:00:d0:bc:5c:80:f4:6b:06:89:f3:dd:
f7:20:02:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:19 2024 by rpki-client on console-ams.rpki-client.org