Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/eMGSJ486hZ7SZFHXgT2AfRYvTX0.roa
File: eMGSJ486hZ7SZFHXgT2AfRYvTX0.roa (raw, json)
Hash identifier: bmfbeFoN5fgdTyYpcDj9RLckcVu2/DoTk07fd4o2zdk=
Subject key identifier: 78:C1:92:27:8F:3A:85:9E:D2:64:51:D7:81:3D:80:7D:16:2F:4D:7D
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 018BA5B3F52E36828E7811C7F3F952C02F55
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/eMGSJ486hZ7SZFHXgT2AfRYvTX0.roa
Signing time: Mon 06 Nov 2023 17:35:16 +0000
ROA not before: Mon 06 Nov 2023 17:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201194
IP address blocks: 185.201.50.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:b3:f5:2e:36:82:8e:78:11:c7:f3:f9:52:c0:2f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Nov 6 17:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78c192278f3a859ed26451d7813d807d162f4d7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:23:c9:64:10:c3:45:02:88:ec:3a:7f:f7:
68:93:4c:3f:3c:bc:7c:81:30:97:0d:75:3d:fc:81:
60:d7:72:1c:c8:cf:ed:48:35:f5:5c:c0:10:39:50:
27:dd:bc:b9:c7:68:7e:52:76:b7:09:51:38:9f:93:
4e:cf:51:62:c6:1c:70:eb:88:2a:99:c2:bd:f8:8a:
ac:06:5b:4e:22:74:80:47:9a:85:f5:08:1b:de:64:
71:89:d3:27:27:32:be:c9:bf:60:39:98:a6:72:27:
39:60:91:29:d1:2b:f0:f4:84:9a:f9:d6:ea:e9:29:
5d:65:48:17:fc:06:28:6b:81:60:58:e1:63:a1:da:
a2:ed:67:c3:e9:ab:b9:da:da:57:97:1a:56:91:15:
12:9f:ce:bb:f0:5f:f7:bc:89:c1:58:de:86:50:3d:
f9:7c:15:d3:fe:38:fa:7d:01:f4:43:ee:aa:f5:06:
49:f0:e4:ac:b1:75:8a:b2:88:30:57:7f:00:2f:18:
12:a9:64:f4:9d:77:b2:a3:83:90:6f:73:0d:1e:f2:
bd:65:93:87:68:47:71:49:2c:09:f2:02:9b:d9:42:
14:39:cb:31:41:d7:5e:43:9f:92:80:ae:ec:e0:92:
82:9d:31:22:2a:96:80:bd:c0:70:6d:a1:af:e2:5c:
3b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C1:92:27:8F:3A:85:9E:D2:64:51:D7:81:3D:80:7D:16:2F:4D:7D
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/eMGSJ486hZ7SZFHXgT2AfRYvTX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.50.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:5f:64:00:9f:85:64:b8:41:ba:ef:a9:05:1e:17:bf:84:ae:
06:55:fa:6d:e5:c4:c3:0a:0d:3e:93:6a:09:dd:ad:21:49:ff:
83:ff:72:c4:27:ae:06:74:6d:b7:f8:f5:b5:32:a1:3b:2f:ad:
2a:f6:5e:5f:9b:c1:1b:52:70:1d:a3:52:0a:4d:29:58:bc:f9:
3b:54:c1:55:c6:03:5a:d1:35:cc:d8:39:18:5c:ca:e1:00:7b:
0e:c8:9b:a2:8e:fb:e8:85:06:04:9f:40:47:ab:28:53:8b:79:
1a:48:4c:1d:88:b5:90:ca:0a:87:4f:49:1a:ae:2c:d4:48:04:
b8:d0:bf:ff:b8:f0:08:ec:a6:b6:6a:32:b9:47:8a:ba:50:55:
5b:aa:d1:4f:cc:8c:da:f3:67:c6:c1:a1:2e:7e:0b:8f:2b:9a:
8e:94:67:ae:4f:49:d0:2d:dd:e4:7d:19:46:d1:c9:ec:7b:5d:
01:b8:4c:47:63:fd:cf:9f:f8:ce:27:47:25:d9:e7:76:15:88:
22:96:be:2a:b8:8b:dd:5f:1d:c5:3a:8e:4e:10:12:a8:32:eb:
d5:47:d2:1d:f7:a7:ae:e8:60:65:e5:ae:d9:80:2e:f3:31:49:
51:71:02:1e:cd:c0:a3:c3:07:60:d7:68:9e:f0:61:e3:b4:6a:
7a:f8:94:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:16 2024 by rpki-client on console-fra.rpki-client.org