Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1be999-5a59-4c10-92ff-da1b58618841/1/FU6QdKQY77WwLOThBllorOQJW7s.roa
File: FU6QdKQY77WwLOThBllorOQJW7s.roa (raw, json)
Hash identifier: k9tTHF/ltXNvWCWoERishmkQY1ZlZckJoKKMgmcjHXE=
Subject key identifier: 15:4E:90:74:A4:18:EF:B5:B0:2C:E4:E1:06:59:68:AC:E4:09:5B:BB
Certificate issuer: /CN=eefbe8369a7bbc03a86fbe639b7efaa02b717287
Certificate serial: 0183C16EB33736149A18427414A43445C6E7
Authority key identifier: EE:FB:E8:36:9A:7B:BC:03:A8:6F:BE:63:9B:7E:FA:A0:2B:71:72:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7vvoNpp7vAOob75jm376oCtxcoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1be999-5a59-4c10-92ff-da1b58618841/1/FU6QdKQY77WwLOThBllorOQJW7s.roa
Signing time: Mon 10 Oct 2022 10:26:41 +0000
ROA not before: Mon 10 Oct 2022 10:26:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204363
IP address blocks: 2a0f:6287::/44 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c1:6e:b3:37:36:14:9a:18:42:74:14:a4:34:45:c6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eefbe8369a7bbc03a86fbe639b7efaa02b717287
Validity
Not Before: Oct 10 10:26:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=154e9074a418efb5b02ce4e1065968ace4095bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:44:dc:6d:99:e5:28:83:fd:61:24:9b:cd:2e:
1d:dc:0f:28:2c:06:6e:19:23:e5:5d:84:90:ec:e2:
86:f7:9b:9a:3b:fd:38:df:f9:cd:9c:24:0b:b2:5b:
3d:22:20:1a:07:cc:72:53:83:06:f2:eb:08:69:73:
27:b6:41:28:1b:20:c0:79:79:98:bb:05:8a:ce:91:
18:98:0b:82:b1:88:67:86:a5:58:f2:e2:c4:79:67:
1f:85:00:bb:15:2a:48:a7:b0:df:cd:2d:7c:64:fa:
9b:fe:e7:36:c6:ba:85:73:b3:4b:c2:f5:6c:f4:a8:
6d:d2:49:64:72:0b:54:f7:03:12:c1:79:55:c1:ac:
de:aa:48:a3:b0:33:7d:c1:3e:a9:7e:29:fe:f0:64:
44:3e:ef:28:23:4a:49:a2:cb:6e:b2:c5:96:dc:e4:
8c:4c:38:48:12:68:6c:16:2a:e2:32:49:dd:38:01:
3b:ed:cf:c4:4d:d0:b7:bd:b7:3d:cc:d9:61:2e:ad:
ae:e7:e8:4e:16:07:55:78:4a:47:9c:5c:e4:98:7d:
7d:31:1d:d1:b8:16:9b:cd:e7:c9:d6:aa:3d:b7:80:
8f:34:d6:4a:09:83:f4:8e:a9:ef:c8:4f:a5:f2:e2:
4e:a5:67:87:38:a6:80:9f:6a:8d:db:fa:5d:c3:c1:
8b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:4E:90:74:A4:18:EF:B5:B0:2C:E4:E1:06:59:68:AC:E4:09:5B:BB
X509v3 Authority Key Identifier:
keyid:EE:FB:E8:36:9A:7B:BC:03:A8:6F:BE:63:9B:7E:FA:A0:2B:71:72:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7vvoNpp7vAOob75jm376oCtxcoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1be999-5a59-4c10-92ff-da1b58618841/1/FU6QdKQY77WwLOThBllorOQJW7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1be999-5a59-4c10-92ff-da1b58618841/1/7vvoNpp7vAOob75jm376oCtxcoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6287::/44
Signature Algorithm: sha256WithRSAEncryption
a9:82:12:a3:c2:66:90:a3:51:21:fc:b7:28:d4:88:4a:bb:a4:
bd:8a:42:74:a0:09:38:91:eb:28:3a:0c:5b:6e:85:17:57:15:
c8:83:0e:a9:c6:4a:91:a8:19:fd:2f:bf:0b:0d:16:df:82:08:
ab:41:17:b8:7c:50:16:fe:9b:9c:b0:6b:c2:10:d3:48:8a:77:
5f:a9:3e:f5:6a:83:d4:bc:3a:1a:ca:a0:45:28:bb:07:78:71:
2f:b9:dd:ff:4d:fb:83:88:2e:81:a6:d1:e2:7f:04:b3:20:fa:
f0:87:25:3f:8b:e7:44:f2:13:4a:80:ac:3e:dc:96:00:aa:62:
ee:19:0f:b8:11:09:23:fe:52:1f:b8:56:b4:59:80:5c:62:f6:
a1:71:43:c8:30:0a:2e:5d:e8:53:4d:4a:16:ba:ab:24:dd:c3:
fe:3c:54:d6:80:c7:60:14:4f:a1:49:72:6d:59:20:c2:bf:fc:
3d:60:c6:23:79:ea:2f:86:8f:e0:36:a2:52:8a:ae:20:1f:70:
b0:36:87:d8:9a:a7:7d:50:43:d2:a6:aa:fb:fa:e6:d2:d9:60:
21:c3:db:02:0e:e5:ff:cf:d6:80:01:f9:44:34:ac:08:ef:29:
4d:f3:6d:0f:33:ac:13:22:96:0e:30:17:dc:06:25:18:73:6c:
e3:fa:6f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:18 2024 by rpki-client on console-fra.rpki-client.org