Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/Pb8JQ3UkSy41OuvWAl6wfayAaLU.roa
File: Pb8JQ3UkSy41OuvWAl6wfayAaLU.roa (raw, json)
Hash identifier: sC52zWm1dk13e1ab2zUi5yLG/OGGp5bl/Y+hyyTnvD0=
Subject key identifier: 3D:BF:09:43:75:24:4B:2E:35:3A:EB:D6:02:5E:B0:7D:AC:80:68:B5
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 05026C88
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/Pb8JQ3UkSy41OuvWAl6wfayAaLU.roa
Signing time: Wed 18 May 2022 21:04:23 +0000
ROA not before: Wed 18 May 2022 21:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47726
IP address blocks: 80.76.60.0/24 maxlen: 24
45.146.43.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84044936 (0x5026c88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: May 18 21:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3dbf094375244b2e353aebd6025eb07dac8068b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8b:a8:48:0d:b0:f0:ab:1a:72:aa:09:a3:80:
59:6e:41:5b:a7:0a:b3:91:49:35:c4:99:78:b1:99:
8d:58:de:4e:02:72:18:32:60:db:e5:a7:00:9e:ba:
ee:78:70:03:55:7c:30:1c:37:35:15:03:54:81:90:
f4:09:a7:88:ab:be:db:94:3b:56:69:86:34:4e:c7:
17:c8:d9:dc:99:46:43:d9:18:40:23:0e:99:db:34:
be:a4:fc:79:3a:f0:39:39:3d:cb:03:5c:b8:1a:c2:
f7:fb:ae:35:92:63:9d:cd:d1:f4:2e:2e:7b:2f:6a:
9e:cd:4b:b9:30:5f:0a:11:27:e1:b0:8b:a2:fa:65:
4a:cd:ca:e0:03:89:54:5b:b9:a9:b5:57:17:b0:b5:
5f:31:15:d3:29:33:ea:9c:2b:cf:4b:70:04:e6:cb:
33:59:65:1c:e9:57:7d:b2:3a:cf:3d:5b:16:23:50:
3c:a3:69:4a:e4:52:d9:06:b2:a0:74:5d:7e:5a:aa:
73:a6:75:0c:7b:cc:16:ef:d9:c2:ba:57:ae:21:46:
42:03:a7:de:0c:87:e6:8b:8b:ca:94:e3:7c:cb:7f:
b6:fb:69:71:45:a3:ba:57:4d:bf:ff:32:65:6c:36:
cc:1b:3e:b1:6a:ab:fd:f0:75:17:cd:88:a6:44:9b:
68:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BF:09:43:75:24:4B:2E:35:3A:EB:D6:02:5E:B0:7D:AC:80:68:B5
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/Pb8JQ3UkSy41OuvWAl6wfayAaLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.43.0/24
80.76.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:3b:f4:83:4f:19:fb:e8:63:01:90:61:33:74:42:a0:2c:d2:
de:d6:52:fe:a5:17:c5:01:9e:0d:03:3e:a1:4a:f0:8c:32:13:
fb:5e:d7:f0:59:58:c8:fa:b7:b2:a6:63:9f:2a:40:e9:58:32:
b8:a9:60:52:9f:d2:b0:44:36:d1:c1:ee:c2:c1:32:93:38:34:
85:62:5a:7d:b0:74:b0:9a:a2:cf:d6:b7:d1:a4:6c:32:98:db:
ea:8d:fa:12:85:09:85:ed:c6:18:4b:c9:fe:aa:e8:2c:50:ac:
88:78:30:cb:7b:3e:fe:63:57:4f:96:57:b8:1b:a0:05:cd:e3:
69:e9:f8:07:b2:20:c7:be:fd:c7:32:83:f5:97:ac:65:93:6e:
d3:7c:be:b3:75:37:c6:af:92:11:a3:1c:ff:0a:d9:a7:84:70:
f0:dd:c9:42:48:47:2a:37:9d:8c:8d:f9:e2:d3:41:0b:c0:73:
b4:73:d8:18:dd:19:45:eb:3d:0f:7d:76:79:28:ea:fd:9d:48:
a1:96:ae:9f:cc:e1:d3:1c:75:2a:ff:a4:17:b9:ec:ac:96:a5:
fc:04:07:8a:03:61:a1:fb:d3:cd:8d:33:39:64:0c:64:26:9a:
7d:72:56:be:71:fa:36:99:e4:55:50:57:70:47:c0:f7:ed:4e:
f3:5f:95:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:25 2024 by rpki-client on console-ams.rpki-client.org