Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/b66121-7d8f-48d7-a093-c603cf2f7412/1/Yt1ceMOlEq03ZyLCJx2OCPLF5JM.roa
File: Yt1ceMOlEq03ZyLCJx2OCPLF5JM.roa (raw, json)
Hash identifier: gb4HHdBNUyU3GOJjP6a8f1ZgNmyO2o/musjat4PR3pE=
Subject key identifier: 62:DD:5C:78:C3:A5:12:AD:37:67:22:C2:27:1D:8E:08:F2:C5:E4:93
Certificate issuer: /CN=8fa71283d8973409d960800f6f7fcdc8d3a30acb
Certificate serial: 02327CBD
Authority key identifier: 8F:A7:12:83:D8:97:34:09:D9:60:80:0F:6F:7F:CD:C8:D3:A3:0A:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j6cSg9iXNAnZYIAPb3_NyNOjCss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/b66121-7d8f-48d7-a093-c603cf2f7412/1/Yt1ceMOlEq03ZyLCJx2OCPLF5JM.roa
Signing time: Sat 01 Jan 2022 08:59:22 +0000
ROA not before: Sat 01 Jan 2022 08:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202793
IP address blocks: 185.153.172.0/22 maxlen: 22
2a05:e00::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36863165 (0x2327cbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fa71283d8973409d960800f6f7fcdc8d3a30acb
Validity
Not Before: Jan 1 08:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62dd5c78c3a512ad376722c2271d8e08f2c5e493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5b:7f:d4:e0:8b:a8:c0:b9:67:67:24:2b:64:
83:c7:db:37:91:7e:28:a7:24:ba:d0:93:f9:22:44:
d8:b2:e0:ef:76:1a:93:d6:5d:10:f7:02:0c:ca:a7:
54:69:cd:f9:84:e1:d5:3c:05:8c:23:d4:4c:fb:da:
17:c2:aa:13:84:b5:9e:60:9e:66:28:94:4a:2a:e9:
ec:db:49:ae:69:7a:f8:9c:d2:a2:d4:bf:8d:1b:df:
3e:9a:60:f0:84:cc:3f:3e:15:9b:6c:15:bc:fa:9d:
00:21:86:f9:71:17:33:c6:44:50:31:f2:3e:58:a1:
3e:56:2a:75:7f:69:0a:88:82:10:7b:e3:7e:fe:f4:
bf:95:1a:54:0a:fe:aa:6f:b8:d7:15:9b:63:15:b2:
53:6e:74:63:04:49:bf:db:e1:67:e5:d5:03:43:26:
07:b9:73:d6:47:6a:08:37:c6:02:8e:14:cf:bb:6b:
93:af:24:d0:30:be:99:22:3e:d3:47:c2:3d:ca:7f:
ea:04:a8:f1:d0:93:2c:0a:14:4f:99:b4:bf:0d:ff:
75:20:78:71:27:97:9d:e9:eb:3b:39:c8:a8:d8:81:
90:c4:97:1e:7f:5e:cd:ed:e2:74:71:94:40:c3:b0:
8b:63:a8:a1:7d:d8:21:e9:96:24:8f:fe:c0:9b:93:
e2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DD:5C:78:C3:A5:12:AD:37:67:22:C2:27:1D:8E:08:F2:C5:E4:93
X509v3 Authority Key Identifier:
keyid:8F:A7:12:83:D8:97:34:09:D9:60:80:0F:6F:7F:CD:C8:D3:A3:0A:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j6cSg9iXNAnZYIAPb3_NyNOjCss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b66121-7d8f-48d7-a093-c603cf2f7412/1/Yt1ceMOlEq03ZyLCJx2OCPLF5JM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b66121-7d8f-48d7-a093-c603cf2f7412/1/j6cSg9iXNAnZYIAPb3_NyNOjCss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.172.0/22
IPv6:
2a05:e00::/29
Signature Algorithm: sha256WithRSAEncryption
b9:65:4c:ad:f1:eb:bc:cb:e9:4d:82:ea:68:16:54:a9:20:e0:
36:cc:11:2b:4f:18:9f:09:85:6d:06:5d:66:c2:2f:db:82:f6:
0e:42:f3:4f:bf:fb:5d:af:75:f1:3b:8e:40:7d:ae:5b:b2:84:
51:c6:86:a9:5a:62:6d:b7:c2:11:13:46:e8:d2:83:ee:96:58:
9b:b5:49:e6:d1:2b:62:02:e4:12:85:28:94:88:1c:ad:a4:1c:
34:8b:d8:da:2e:97:fd:2f:c1:7d:20:97:e1:9d:d7:58:81:92:
df:b4:c6:81:fb:4b:30:a5:29:66:8e:ce:c6:97:13:32:67:87:
07:66:ad:e4:14:b9:6e:51:a7:44:47:6d:16:2b:55:bc:8d:c6:
5f:45:90:3b:84:b3:0d:61:21:89:84:6f:0e:b8:cd:a6:9a:15:
fa:29:aa:ce:3e:56:cb:ea:89:27:3a:cf:e9:c6:d4:82:c8:b8:
c6:c9:be:4d:95:06:e4:ac:92:c7:11:d3:44:2f:1d:a7:9a:19:
1e:9b:2c:c3:93:f2:0d:3c:1d:d9:fb:cb:73:62:6e:70:10:3b:
df:07:46:c8:13:ed:f5:a3:fb:c2:67:0e:17:09:f4:a9:60:57:
cb:5f:d4:c9:17:8d:5e:86:a4:d4:9c:ff:cd:a3:00:51:e5:8c:
4d:2f:cb:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:40 2024 by rpki-client on console-fra.rpki-client.org