Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/bwXVR10EovanUuTrtL74__UoDP4.roa
File: bwXVR10EovanUuTrtL74__UoDP4.roa (raw, json)
Hash identifier: Bt1jMkClj2ixHzwB4LmMNCBPu8TYLNFP7ictx8Lyw3E=
Subject key identifier: 6F:05:D5:47:5D:04:A2:F6:A7:52:E4:EB:B4:BE:F8:FF:F5:28:0C:FE
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 0182EB108BACFA45B777B764BF60A6D166B8
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/bwXVR10EovanUuTrtL74__UoDP4.roa
Signing time: Mon 29 Aug 2022 19:25:05 +0000
ROA not before: Mon 29 Aug 2022 19:25:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52086
IP address blocks: 77.83.93.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:eb:10:8b:ac:fa:45:b7:77:b7:64:bf:60:a6:d1:66:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Aug 29 19:25:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f05d5475d04a2f6a752e4ebb4bef8fff5280cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:54:23:f3:56:4b:6d:22:7e:c0:8b:be:20:c0:
c7:1b:e1:33:8a:f8:f6:22:41:0c:cf:d2:73:da:82:
3b:1a:7e:e4:da:47:5d:fb:d6:35:3e:70:0b:00:a5:
bc:d9:50:50:40:76:15:ec:78:b8:75:40:47:52:bc:
7b:3d:e9:b9:e0:5e:17:b8:ce:e0:e9:ba:c6:69:a7:
d5:56:aa:34:86:47:de:ef:0c:10:ff:94:57:d2:b3:
4d:ed:c6:a8:a1:cd:6a:d4:be:63:85:2c:cb:29:a6:
d6:37:5f:39:22:8b:75:4f:0c:ee:bb:f0:cf:18:9c:
57:db:6a:21:75:a9:6f:c1:3f:7b:17:59:dd:e9:f6:
4d:55:24:49:f6:c8:33:cf:1d:75:2f:08:7f:ca:c2:
5c:e5:46:94:1e:d8:8d:24:5d:28:bd:24:cf:b2:d9:
c0:bb:9d:dd:72:3e:62:8c:9d:79:58:1f:76:17:ca:
30:2b:e1:7d:2d:ce:2b:13:53:e4:80:b3:e7:54:bc:
81:ab:be:2d:ed:7f:40:4c:a8:2b:77:17:a0:84:36:
ec:fb:d2:e3:1c:9e:e6:be:a7:f1:b8:07:36:72:22:
c2:3c:b6:bc:cd:3b:55:b0:81:68:f3:17:b4:8d:e3:
c1:7e:09:e6:85:f3:b2:e6:34:c1:da:5c:b9:0b:4e:
d3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:05:D5:47:5D:04:A2:F6:A7:52:E4:EB:B4:BE:F8:FF:F5:28:0C:FE
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/bwXVR10EovanUuTrtL74__UoDP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.93.0/24
Signature Algorithm: sha256WithRSAEncryption
71:f0:52:77:78:4d:65:e8:16:a1:e8:47:ad:66:72:7c:7c:ba:
9b:ae:0f:47:22:ce:23:7a:63:af:69:ba:21:ba:1c:b1:91:38:
2f:51:eb:b5:f9:93:a0:28:09:7c:ca:c0:5c:42:69:84:34:4e:
d7:6b:55:0e:a8:3f:c5:20:f0:1c:00:19:2e:d2:b9:eb:48:01:
c6:f0:0e:9d:ef:61:8a:ce:4f:fa:03:f5:af:0c:c0:4e:d8:d7:
ce:50:67:8e:44:5f:f8:d5:da:c4:ae:60:83:47:f8:7d:2c:22:
85:94:52:64:3d:e0:b0:bd:c0:22:cf:66:c2:cc:2a:f6:53:4f:
af:38:52:f2:6d:64:f0:6f:e9:51:d0:f2:ce:1d:ad:89:bc:a1:
c9:76:b1:85:06:a8:85:5b:cf:8a:5a:37:ac:74:fc:ed:9a:78:
ba:1b:c6:ce:ca:e1:23:a5:9b:95:ec:29:ed:d4:f9:6a:fc:e6:
4d:1d:d0:dd:f4:c0:a9:92:3d:fa:5f:32:e8:fb:b0:19:c8:10:
0d:b5:f1:30:a6:bd:7d:51:f2:d3:e1:75:eb:58:02:da:71:d1:
38:9f:0a:c5:17:31:05:ff:d9:6f:d5:5b:86:ee:32:56:7e:2b:
52:c1:d8:c4:f8:04:7d:77:61:26:41:e2:fc:2d:1d:f0:2c:27:
49:67:db:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:25 2024 by rpki-client on console-ams.rpki-client.org