Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_7tjbgcu2_FlyxGs1Ezz51-qIps.roa
File: _7tjbgcu2_FlyxGs1Ezz51-qIps.roa (raw, json)
Hash identifier: IdSKk0vgkiU/sxyPwa4LkuVG0u0dUvvml6yKY7m1nn0=
Subject key identifier: FF:BB:63:6E:07:2E:DB:F1:65:CB:11:AC:D4:4C:F3:E7:5F:AA:22:9B
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 048F4FC1
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_7tjbgcu2_FlyxGs1Ezz51-qIps.roa
Signing time: Sat 02 Apr 2022 20:16:58 +0000
ROA not before: Sat 02 Apr 2022 20:16:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50340
IP address blocks: 185.219.54.0/23 maxlen: 23
77.83.93.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76500929 (0x48f4fc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Apr 2 20:16:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffbb636e072edbf165cb11acd44cf3e75faa229b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:d0:26:9e:94:44:30:c9:65:b0:f1:62:ec:d0:
28:d4:0c:c7:fb:0b:da:27:5a:b0:ee:65:5f:6b:7d:
11:71:5f:3a:9a:07:98:6e:18:76:20:7d:45:83:e9:
c7:01:52:f1:c2:42:9f:28:4b:23:d2:9c:6e:92:ac:
34:b9:7a:b2:42:cd:67:91:ff:68:6b:90:a0:26:08:
a8:e5:26:45:f8:e2:46:1e:3d:ec:0b:92:08:cb:dc:
f8:68:8d:ac:05:f1:08:94:6f:45:cc:f6:fc:ae:35:
89:98:1b:7c:2e:7d:0b:ad:77:0f:ec:0f:74:34:df:
3d:bd:13:cf:fb:18:4c:73:58:a7:d4:83:78:cf:90:
bb:01:27:ab:e5:f7:cf:5e:3e:5f:9a:1d:3c:b5:99:
d0:1a:55:cf:75:90:a1:91:72:af:07:3b:29:a2:f7:
0b:ac:6f:d9:e9:05:b0:0d:31:af:e5:32:9f:11:e5:
14:52:09:0e:34:6a:65:e3:24:ce:3f:68:54:bd:55:
a6:93:20:69:6f:f2:5e:5a:3a:1b:d7:e4:ae:46:1f:
f0:be:12:99:ba:f0:6f:93:fd:9c:fa:0e:a5:be:3a:
9f:06:1b:c4:b3:4c:92:14:7c:68:b6:66:31:a6:48:
27:23:c4:ce:a7:cf:4e:87:8b:b9:98:70:86:d1:b7:
e6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BB:63:6E:07:2E:DB:F1:65:CB:11:AC:D4:4C:F3:E7:5F:AA:22:9B
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_7tjbgcu2_FlyxGs1Ezz51-qIps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.93.0/24
185.219.54.0/23
Signature Algorithm: sha256WithRSAEncryption
96:f8:59:6c:75:1b:31:a8:e5:0f:8a:84:a4:9a:65:17:40:e0:
4d:6f:68:e2:89:3d:b1:4c:10:c1:3d:29:ac:d6:2c:d9:a5:ab:
3d:c9:ba:c8:20:67:6e:a4:13:f6:cf:82:ef:09:71:8c:ce:9a:
91:f2:74:b2:9f:ab:71:17:e3:2c:e2:66:e4:b1:d9:a8:a2:d4:
8a:b9:63:1e:fb:8f:79:5f:f4:2b:ce:1b:4f:16:78:08:f9:3c:
5c:1a:30:f9:ba:61:91:43:8a:ff:cc:16:96:cb:26:9f:19:28:
dd:42:89:ee:fe:bc:0c:24:8e:77:75:85:35:0d:ea:70:a9:91:
08:f5:83:59:19:0f:fc:2e:4b:eb:fe:79:05:e6:7c:8d:e5:c5:
0c:30:04:92:d6:82:ca:39:6b:1c:46:8c:67:43:f2:c2:90:9a:
20:22:02:d8:e0:0d:ef:4e:f2:75:ac:b6:7a:63:49:d3:d1:24:
58:07:61:4f:08:04:52:6e:87:f7:e4:9e:db:da:ce:cb:cc:66:
ba:8c:8b:6f:91:49:ae:26:e0:ec:f7:63:ad:2c:ec:ef:ef:b3:
5b:0b:9a:c1:97:8b:ea:64:d1:b8:3f:6a:ae:92:e5:af:23:fe:
b0:d8:d4:c4:d6:0f:af:5d:ba:15:80:4a:ba:4d:cd:17:43:d8:
1e:de:57:61
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBI9PwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZGEzOTQxYzI3Y2ZlNWMyMzRjNGJmMjIxZWNiMmE1NzliMmRlYWFiMB4XDTIyMDQw
MjIwMTY1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmZiYjYzNmUwNzJl
ZGJmMTY1Y2IxMWFjZDQ0Y2YzZTc1ZmFhMjI5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPDQJp6URDDJZbDxYuzQKNQMx/sL2idasO5lX2t9EXFfOpoH
mG4YdiB9RYPpxwFS8cJCnyhLI9KcbpKsNLl6skLNZ5H/aGuQoCYIqOUmRfjiRh49
7AuSCMvc+GiNrAXxCJRvRcz2/K41iZgbfC59C613D+wPdDTfPb0Tz/sYTHNYp9SD
eM+QuwEnq+X3z14+X5odPLWZ0BpVz3WQoZFyrwc7KaL3C6xv2ekFsA0xr+UynxHl
FFIJDjRqZeMkzj9oVL1VppMgaW/yXlo6G9fkrkYf8L4Smbrwb5P9nPoOpb46nwYb
xLNMkhR8aLZmMaZIJyPEzqfPToeLuZhwhtG35gsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBT/u2NuBy7b8WXLEazUTPPnX6oimzAfBgNVHSMEGDAWgBRdo5QcJ8/lwjTE
vyIeyypXmy3qqzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hhT1VIQ2ZQNWNJMHhMOGlIc3NxVjVzdDZxcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODAvMzBlZDNlLWM0YzQtNGRlOC1iNGYxLWYxMWEzOWYyNmMzYi8x
L183dGpiZ2N1Ml9GbHl4R3MxRXp6NTEtcUlwcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAv
MzBlZDNlLWM0YzQtNGRlOC1iNGYxLWYxMWEzOWYyNmMzYi8xL1hhT1VIQ2ZQNWNJ
MHhMOGlIc3NxVjVzdDZxcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAE1TXQMEAbnbNjANBgkqhkiG9w0B
AQsFAAOCAQEAlvhZbHUbMajlD4qEpJplF0DgTW9o4ok9sUwQwT0prNYs2aWrPcm6
yCBnbqQT9s+C7wlxjM6akfJ0sp+rcRfjLOJm5LHZqKLUirljHvuPeV/0K84bTxZ4
CPk8XBow+bphkUOK/8wWlssmnxko3UKJ7v68DCSOd3WFNQ3qcKmRCPWDWRkP/C5L
6/55BeZ8jeXFDDAEktaCyjlrHEaMZ0PywpCaICIC2OAN707yday2emNJ09EkWAdh
TwgEUm6H9+Se29rOy8xmuoyLb5FJribg7PdjrSzs7++zWwuawZeL6mTRuD9qrpLl
ryP+sNjUxNYPr126FYBKuk3NF0PYHt5XYQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:25 2024 by rpki-client on console-ams.rpki-client.org