Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/DAwUWM4G6yUD3SIjcvnq6mOqL3U.roa
File: DAwUWM4G6yUD3SIjcvnq6mOqL3U.roa (raw, json)
Hash identifier: SHvOq7JOpECuBpKSULf1rFL+8SBdfohs/iHVtZKK3BQ=
Subject key identifier: 0C:0C:14:58:CE:06:EB:25:03:DD:22:23:72:F9:EA:EA:63:AA:2F:75
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 01856F1DCF201C84065D82352F4B71E15473
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/DAwUWM4G6yUD3SIjcvnq6mOqL3U.roa
Signing time: Sun 01 Jan 2023 20:55:02 +0000
ROA not before: Sun 01 Jan 2023 20:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210135
IP address blocks: 80.76.61.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:cf:20:1c:84:06:5d:82:35:2f:4b:71:e1:54:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 1 20:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c0c1458ce06eb2503dd222372f9eaea63aa2f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3a:21:7c:a9:54:19:f0:91:5f:ec:a8:b9:91:
15:99:9d:b7:c4:78:f5:06:04:f3:ca:bf:90:f6:af:
16:f7:b2:81:75:5c:b5:d1:88:8c:19:4b:8b:56:11:
99:0a:ba:f2:dd:3a:c9:6c:fc:55:c9:fb:a3:44:10:
83:2a:06:ef:10:4e:b8:2e:ed:99:78:8d:52:2f:c4:
93:96:b9:1a:c2:d8:fd:b8:05:49:c3:19:eb:36:e4:
9e:ab:85:c1:57:cd:bf:11:2f:51:ea:c8:46:51:82:
25:10:bd:83:8f:2b:d8:96:fd:bf:45:c4:60:63:f3:
74:18:9a:62:2f:9c:b5:87:27:b9:b4:76:9c:e7:6f:
f3:97:9c:2d:83:46:11:a9:90:19:2a:0c:37:b1:d4:
d3:b9:0a:72:1c:b9:00:4c:00:96:0f:15:17:44:c2:
37:63:54:a9:b1:ef:4b:48:bd:50:79:26:e9:0a:d7:
48:c2:ed:a1:0d:e8:46:de:22:83:49:af:eb:8b:c7:
60:4e:64:b3:1a:f7:be:2b:6f:34:75:09:6d:19:0e:
e5:95:8f:a7:c4:f0:f1:78:85:53:ac:c1:d6:c1:2e:
40:68:0d:47:e7:78:3f:9d:6a:00:40:dd:43:a2:04:
65:b0:ca:20:3a:bd:ab:68:4c:8d:f3:c4:7b:a0:82:
4d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0C:14:58:CE:06:EB:25:03:DD:22:23:72:F9:EA:EA:63:AA:2F:75
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/DAwUWM4G6yUD3SIjcvnq6mOqL3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.61.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f7:e6:0d:bd:fa:7d:77:60:86:1d:22:d5:c0:ad:d4:92:81:
fb:99:92:70:9c:19:de:1d:b6:da:5c:3f:e7:94:24:10:e6:e0:
76:3b:1b:be:ad:de:da:c9:5f:ce:64:8f:3d:e3:e7:9b:55:f2:
4b:00:6a:28:ae:c0:26:39:96:18:6e:70:9c:b3:4e:ed:c6:2d:
d1:1e:48:e0:3c:a8:22:44:ff:be:81:23:0d:84:77:e0:0a:16:
de:fe:a0:fb:f9:29:c5:d3:b9:cc:81:81:43:20:b4:7a:36:54:
4c:54:57:1d:2a:9a:ad:49:65:b7:fc:d4:74:9a:69:c2:c6:8a:
db:57:c3:fa:38:c2:7b:92:a9:cf:67:b4:15:02:4a:97:9a:29:
52:13:33:96:5e:89:62:8b:14:aa:53:96:da:91:ea:bd:47:be:
df:e9:5b:cc:0b:e4:7f:63:41:4d:cc:23:b3:60:44:3c:98:bb:
99:f7:75:4a:42:1c:ed:18:5e:64:fc:56:4a:3b:71:01:e9:7d:
01:b6:0b:86:81:b9:67:85:16:fd:98:8e:1b:ef:7b:36:cf:d2:
5e:2c:fb:8b:2e:14:43:86:42:63:8a:d3:07:d3:4f:00:64:90:
43:72:db:3f:a3:67:0e:cc:0e:f7:89:28:cb:ff:14:b2:6a:95:
ca:33:5b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:34 2023 by rpki-client on console-fra.rpki-client.org