Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/DLoayF65h44CmfdWLD_AIraR81k.roa
File: DLoayF65h44CmfdWLD_AIraR81k.roa (raw, json)
Hash identifier: b48gCPfb6SxqV89lAfsviYL9JlwRbbEFAWcJkHl1TUw=
Subject key identifier: 0C:BA:1A:C8:5E:B9:87:8E:02:99:F7:56:2C:3F:C0:22:B6:91:F3:59
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 01856F1DCC5D201E19EDCE481C93987579A6
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/DLoayF65h44CmfdWLD_AIraR81k.roa
Signing time: Sun 01 Jan 2023 20:55:01 +0000
ROA not before: Sun 01 Jan 2023 20:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200644
IP address blocks: 193.160.210.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:cc:5d:20:1e:19:ed:ce:48:1c:93:98:75:79:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 1 20:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cba1ac85eb9878e0299f7562c3fc022b691f359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ea:df:b5:e4:9e:d6:8a:83:ac:c8:67:6f:ac:
a2:a6:0b:55:46:44:e4:40:eb:eb:22:3f:10:8e:0e:
58:c8:18:3d:a2:6f:ce:bf:ca:b0:69:fa:62:52:53:
cb:bb:21:af:81:d0:fa:86:f8:83:6f:7f:1e:66:08:
0e:54:19:dd:24:a5:c8:e3:e0:33:fc:56:17:01:c9:
5e:1b:56:5c:72:55:d0:18:74:84:98:70:85:17:b7:
2f:2c:7b:bb:62:07:46:68:1f:bb:65:70:e7:63:3a:
e0:61:fb:37:49:34:a1:fa:a9:05:c4:c4:97:7d:a8:
13:e6:40:98:df:87:91:8c:e9:73:b8:53:bd:cd:c2:
cb:9c:03:dc:f2:60:2e:39:75:0c:56:8b:10:6f:bb:
b8:c6:64:21:b5:70:b5:81:75:f7:f0:0b:f7:2c:b5:
7a:ee:dc:ed:26:30:03:01:6d:b9:a8:ec:44:52:a0:
72:02:98:37:a0:4c:e8:0a:fe:14:a2:8d:00:10:6e:
49:b9:d5:b5:71:86:22:e0:89:3b:7a:51:81:f4:d8:
9c:bc:84:9b:89:d1:e7:40:1f:1c:fa:05:59:4c:8c:
00:62:c9:c9:f4:23:a7:59:8b:b1:69:02:ca:96:86:
3a:3a:e2:47:41:fb:12:28:dc:4c:74:46:7e:f4:59:
88:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:BA:1A:C8:5E:B9:87:8E:02:99:F7:56:2C:3F:C0:22:B6:91:F3:59
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/DLoayF65h44CmfdWLD_AIraR81k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.210.0/24
Signature Algorithm: sha256WithRSAEncryption
62:39:7e:11:d7:7a:26:e2:e4:64:fe:ce:37:dd:41:24:af:c7:
f0:76:fd:c3:3d:cc:27:f7:53:fb:a5:e1:c7:7f:00:e1:a9:0e:
91:d6:43:54:2d:25:b4:e0:d6:2c:03:d5:05:da:63:15:3b:b2:
d3:94:8b:10:d5:66:f9:78:29:7e:b3:4d:16:37:27:72:fe:e0:
0d:61:5b:d7:f9:14:a5:2b:fd:dc:a7:4d:2e:8e:d2:20:69:ee:
65:79:6c:b2:96:b5:05:65:14:b6:a6:79:6b:98:59:ff:5d:5a:
f8:2e:51:62:66:8a:ec:4c:a8:fd:8e:93:4f:b4:63:43:fd:a7:
45:f2:d9:1c:7b:5c:1d:44:ae:67:a9:ca:d2:32:5b:10:f3:01:
c6:49:e6:da:9f:5d:fc:a0:3b:17:5d:3c:b5:b4:7d:61:1a:8b:
72:58:a3:fb:fa:2b:92:80:ec:4e:a1:b3:cf:dc:22:30:7a:2a:
74:09:0b:e7:62:05:77:d4:ff:58:5b:89:df:cb:66:8b:06:de:
d2:37:a7:bd:32:55:0b:c6:dd:37:50:2f:b7:2e:66:af:59:8a:
95:3c:76:b6:cc:ad:3c:ae:96:1d:5d:1e:8e:d3:b0:85:86:c8:
c7:b1:64:42:49:22:20:42:da:31:fc:f2:98:2f:cf:5f:6d:4e:
cb:59:17:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvHcxdIB4Z7c5IHJOYdXmmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYTM5NDFjMjdjZmU1YzIzNGM0YmYyMjFlY2IyYTU3OWIy
ZGVhYWIwHhcNMjMwMTAxMjA1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2JhMWFjODVlYjk4NzhlMDI5OWY3NTYyYzNmYzAyMmI2OTFmMzU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlurfteSe1oqDrMhnb6yipgtVRkTk
QOvrIj8Qjg5YyBg9om/Ov8qwafpiUlPLuyGvgdD6hviDb38eZggOVBndJKXI4+Az
/FYXAcleG1ZcclXQGHSEmHCFF7cvLHu7YgdGaB+7ZXDnYzrgYfs3STSh+qkFxMSX
fagT5kCY34eRjOlzuFO9zcLLnAPc8mAuOXUMVosQb7u4xmQhtXC1gXX38Av3LLV6
7tztJjADAW25qOxEUqByApg3oEzoCv4Uoo0AEG5JudW1cYYi4Ik7elGB9NicvISb
idHnQB8c+gVZTIwAYsnJ9COnWYuxaQLKloY6OuJHQfsSKNxMdEZ+9FmI8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAy6GsheuYeOApn3Viw/wCK2kfNZMB8GA1UdIwQY
MBaAFF2jlBwnz+XCNMS/Ih7LKlebLeqrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGFPVUhDZlA1Y0kweEw4aUhzc3FWNXN0NnFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8zMGVkM2UtYzRjNC00ZGU4LWI0ZjEt
ZjExYTM5ZjI2YzNiLzEvRExvYXlGNjVoNDRDbWZkV0xEX0FJcmFSODFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8zMGVkM2UtYzRjNC00ZGU4LWI0ZjEtZjExYTM5ZjI2YzNi
LzEvWGFPVUhDZlA1Y0kweEw4aUhzc3FWNXN0NnFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaDSMA0G
CSqGSIb3DQEBCwUAA4IBAQBiOX4R13om4uRk/s433UEkr8fwdv3DPcwn91P7peHH
fwDhqQ6R1kNULSW04NYsA9UF2mMVO7LTlIsQ1Wb5eCl+s00WNydy/uANYVvX+RSl
K/3cp00ujtIgae5leWyylrUFZRS2pnlrmFn/XVr4LlFiZorsTKj9jpNPtGND/adF
8tkce1wdRK5nqcrSMlsQ8wHGSeban138oDsXXTy1tH1hGotyWKP7+iuSgOxOobPP
3CIweip0CQvnYgV31P9YW4nfy2aLBt7SN6e9MlULxt03UC+3LmavWYqVPHa2zK08
rpYdXR6O07CFhsjHsWRCSSIgQtox/PKYL89fbU7LWRc9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:25 2024 by rpki-client on console-ams.rpki-client.org