Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/NwJIHSR03d2aGzUYUO_Nxjo4Gso.roa
File: NwJIHSR03d2aGzUYUO_Nxjo4Gso.roa (raw, json)
Hash identifier: 7hu5GEE/rcmPUYGFEw4s990EecgxgZ8qtLTOGEs2TkY=
Subject key identifier: 37:02:48:1D:24:74:DD:DD:9A:1B:35:18:50:EF:CD:C6:3A:38:1A:CA
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 018572C38680A6DB36A5C5D3B3AF46B55ED7
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/NwJIHSR03d2aGzUYUO_Nxjo4Gso.roa
Signing time: Mon 02 Jan 2023 13:54:54 +0000
ROA not before: Mon 02 Jan 2023 13:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205217
IP address blocks: 185.201.50.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:86:80:a6:db:36:a5:c5:d3:b3:af:46:b5:5e:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Jan 2 13:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3702481d2474dddd9a1b351850efcdc63a381aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9d:26:cd:f7:c7:f7:13:2b:98:18:69:81:b7:
09:23:28:f9:fc:ca:9e:f6:38:cc:42:e3:bf:4d:05:
7b:2a:aa:57:81:e6:ec:d7:82:bf:6b:64:0d:5f:b6:
cd:9c:a9:da:7d:09:de:bf:f6:35:2d:5d:e4:f5:f2:
7e:c3:db:4c:05:74:1e:b3:ec:d9:d5:49:72:8a:d9:
c7:ca:9c:c2:e5:e0:b2:04:d8:ae:54:e8:e8:37:3e:
d8:66:ac:d8:b5:5d:3b:a2:75:9a:4c:c2:82:d3:07:
ca:ce:5f:a2:53:41:f1:0c:28:8f:c1:e6:97:d9:6a:
12:52:f3:6f:32:1e:73:b3:07:ef:f4:74:e8:06:2b:
66:56:1a:6e:86:0d:a8:3f:da:50:0b:8f:53:11:cd:
cc:58:79:81:61:41:16:16:19:87:40:4a:b9:96:c2:
0a:d4:8d:10:93:e4:02:b4:2c:38:e3:fc:f7:15:34:
3e:fb:7b:e6:8c:5c:54:84:d3:5a:f0:75:d6:ce:c8:
61:55:51:0e:07:24:8c:e8:29:7f:e8:74:f0:49:76:
a6:93:25:e6:af:87:be:b0:78:a4:ce:46:b1:46:1b:
15:05:46:2f:62:3a:12:6d:c7:24:b5:ae:c9:70:1e:
cd:47:ee:a8:33:6a:12:57:15:ac:92:29:2c:b0:92:
97:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:02:48:1D:24:74:DD:DD:9A:1B:35:18:50:EF:CD:C6:3A:38:1A:CA
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/NwJIHSR03d2aGzUYUO_Nxjo4Gso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.50.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:44:19:b5:c4:c0:3f:0c:ad:0d:5c:0b:ce:3c:a7:d7:7f:83:
32:30:4a:83:1b:a4:6e:71:a4:70:44:09:b7:63:0d:02:9c:22:
95:fd:21:55:98:78:e1:06:a5:fd:08:ea:35:f2:55:30:d9:31:
62:f2:a4:b9:34:47:38:a5:3d:74:ba:6d:dc:6c:0d:c1:d1:81:
ab:0c:6f:a9:7d:13:84:97:3b:a1:25:16:f7:60:3b:37:b9:ed:
1f:17:8c:86:47:bc:87:01:03:12:2e:29:46:be:f0:90:ec:ab:
65:92:9c:ba:a9:18:a5:ef:fd:d3:72:80:25:d5:bb:50:f7:ea:
80:fb:bb:18:d0:62:eb:fc:d0:1c:01:fa:9c:c3:eb:a0:8c:ab:
62:33:eb:64:49:8b:7f:80:9f:a3:03:e3:5a:7b:53:9f:aa:7f:
f2:66:e0:a7:73:84:80:1c:09:9f:e7:15:d3:7e:ef:a8:64:9f:
4a:1d:8e:e7:46:a9:83:34:81:05:63:ee:ec:96:f3:ef:0d:a4:
b8:b7:cf:91:9e:7f:0c:62:d0:1f:19:43:3f:ca:34:39:3e:e4:
36:d4:d6:ff:ff:ef:81:ec:d2:a3:aa:43:b4:93:86:56:a4:40:
57:57:1b:66:5e:6a:43:8d:1f:89:6f:80:84:72:ad:3b:05:c3:
26:9c:80:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:16 2024 by rpki-client on console-fra.rpki-client.org