Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_KvUenGpHdbVAlNIK04W_bkv-nY.roa
File: _KvUenGpHdbVAlNIK04W_bkv-nY.roa (raw, json)
Hash identifier: G7VsBjVUA1lw3zYTErI/Z6vJ5o7JX5ttvpKOaCftn2Y=
Subject key identifier: FC:AB:D4:7A:71:A9:1D:D6:D5:02:53:48:2B:4E:16:FD:B9:2F:FA:76
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 03A43D02
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_KvUenGpHdbVAlNIK04W_bkv-nY.roa
Signing time: Sat 01 Jan 2022 14:07:08 +0000
ROA not before: Sat 01 Jan 2022 14:07:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210135
IP address blocks: 80.76.61.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61095170 (0x3a43d02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 1 14:07:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcabd47a71a91dd6d50253482b4e16fdb92ffa76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3a:15:9e:57:e1:9c:07:d0:8d:94:eb:ae:2b:
a0:ed:ce:06:61:c0:48:44:13:91:20:91:e9:88:86:
01:84:aa:9d:8c:42:c8:8d:47:4f:54:dd:b4:55:b3:
56:5a:87:20:38:18:0b:09:15:19:5a:e9:10:97:3b:
07:0d:e3:84:1d:d4:49:2d:c9:64:f5:c0:34:21:e7:
47:08:65:df:ea:dc:98:45:75:e6:4b:93:ad:e1:97:
8e:9e:1e:d0:ee:8b:a6:d3:be:6f:ff:19:ff:dc:53:
c2:40:e1:4c:ae:1c:34:16:e8:6f:52:63:fd:b7:2b:
c4:be:9c:0d:35:35:d2:3e:e8:52:3f:68:43:e5:52:
33:33:d0:9d:a9:8b:72:51:82:5c:79:35:af:33:e8:
6a:bb:df:5c:62:7a:04:69:b0:b4:cf:fd:25:9d:50:
5d:de:88:ff:3e:e6:a1:ff:cf:ae:6a:70:e4:e8:45:
78:65:36:b0:32:c7:33:41:ae:f7:03:f0:fe:93:3c:
35:96:21:3a:1e:a1:43:1e:e6:13:23:f7:6a:c1:d3:
84:2b:fd:79:84:14:85:67:c8:be:36:2e:da:75:24:
e7:2d:c9:4f:25:bd:49:d9:c8:18:48:45:76:59:f2:
a6:c2:9b:72:44:97:27:6d:55:cf:fe:98:1e:eb:61:
e6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AB:D4:7A:71:A9:1D:D6:D5:02:53:48:2B:4E:16:FD:B9:2F:FA:76
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_KvUenGpHdbVAlNIK04W_bkv-nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.61.0/24
Signature Algorithm: sha256WithRSAEncryption
58:42:10:0d:d3:a5:55:72:4f:f7:87:7b:ce:08:49:b7:e2:e4:
04:69:0f:74:53:e0:6f:a7:dc:d5:e9:b1:10:4a:9d:a6:9b:fb:
97:ec:b9:5b:42:dc:94:f0:a6:29:be:21:88:30:55:f5:8a:fb:
98:5b:01:da:f5:fb:92:07:54:da:47:3a:ac:93:f5:07:30:a2:
f2:d6:9c:6f:c0:80:e4:7d:42:10:07:c2:cb:fd:99:8d:91:a1:
37:9b:0a:a7:f0:59:00:e8:28:0f:ce:39:bc:36:cb:c5:36:8e:
14:10:4b:72:9b:7e:16:bb:ed:f5:ce:64:94:e4:4a:c1:5c:54:
c7:b2:68:88:64:c5:69:40:d3:6b:97:a8:eb:a3:97:aa:eb:7e:
f0:8e:7e:ce:6e:f2:78:ad:05:78:7d:be:94:51:a0:b1:6b:3a:
a4:db:04:f0:7e:02:2c:1e:88:53:6b:a6:03:1c:26:16:a6:36:
fa:b4:94:5a:a4:e7:5e:0e:8f:c4:38:38:4a:c0:8f:e5:e2:73:
6d:ea:2e:ea:c4:9e:0c:11:76:db:6d:58:3e:62:ef:c3:5a:f9:
98:ab:ae:94:a5:f0:99:23:d6:b1:fa:15:78:a9:96:75:d2:d8:
c0:ee:99:87:83:33:90:ed:b7:35:05:92:48:7d:c5:db:7a:5a:
d2:c8:a5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-ams.rpki-client.org