Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/iU-6IoiZ23LTQwJidCS9LfN52b0.roa
File: iU-6IoiZ23LTQwJidCS9LfN52b0.roa (raw, json)
Hash identifier: 66y0vP88zONHqKjCw6qXi9ftuA83UivX5fqNqMudKSM=
Subject key identifier: 89:4F:BA:22:88:99:DB:72:D3:43:02:62:74:24:BD:2D:F3:79:D9:BD
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 04721CA6
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/iU-6IoiZ23LTQwJidCS9LfN52b0.roa
Signing time: Fri 25 Mar 2022 18:32:15 +0000
ROA not before: Fri 25 Mar 2022 18:32:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35830
IP address blocks: 94.231.219.0/24 maxlen: 24
109.94.223.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74587302 (0x4721ca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Mar 25 18:32:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=894fba228899db72d34302627424bd2df379d9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:25:90:1b:22:bf:6b:4a:46:e0:94:30:98:e9:
45:87:05:e9:5e:af:20:b2:81:c4:99:c8:e1:4e:2b:
af:3f:a8:9a:ec:94:47:7f:60:f6:7c:e8:b4:01:08:
c8:a0:49:36:b2:29:a7:e1:7a:c9:63:19:73:59:4d:
21:39:1f:fe:19:ca:bd:68:fe:bf:85:9b:76:1a:ab:
2c:66:7a:d9:13:5e:2d:15:04:ba:01:ea:39:79:64:
a2:78:cc:66:4a:e4:47:c2:4b:a8:84:3b:0d:7e:a0:
72:25:cf:8a:62:67:87:92:b4:d3:7a:a4:6b:e4:8b:
14:e6:c4:51:5a:5d:27:f0:1b:f3:97:3a:37:49:79:
0b:8d:52:0d:6f:3b:80:0d:1d:d2:04:e7:eb:29:53:
4c:78:f8:42:f6:4b:43:2e:3a:cd:9d:99:a2:fc:fa:
21:fc:9c:b0:fa:ab:54:b9:50:31:18:8a:0a:27:3e:
65:97:4f:c7:7d:6a:49:70:e0:11:7c:6f:81:2e:f8:
ed:76:4c:dd:ab:94:3e:00:2c:4b:86:ac:c2:06:81:
48:5c:f3:5d:0f:45:a4:4c:ad:15:88:98:bb:5b:de:
cb:8e:9f:f8:98:ee:36:dd:56:09:6e:20:51:9b:de:
a9:c7:bf:a9:66:8c:ad:f8:80:ec:0d:3b:47:ec:ed:
00:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4F:BA:22:88:99:DB:72:D3:43:02:62:74:24:BD:2D:F3:79:D9:BD
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/iU-6IoiZ23LTQwJidCS9LfN52b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.219.0/24
109.94.223.0/24
Signature Algorithm: sha256WithRSAEncryption
01:f3:22:0b:49:a1:75:65:3d:3a:fe:26:43:2e:7b:64:5f:69:
09:5f:44:e3:a5:80:f4:55:ca:6f:64:0a:cf:08:ec:73:0c:a8:
20:a3:be:3b:35:1d:1b:9d:8f:50:fd:73:58:b7:c8:0d:b5:62:
93:44:fe:6b:cc:05:94:81:55:59:78:e1:fe:ad:eb:a7:9f:0b:
5e:d9:ca:9a:aa:83:34:43:95:b0:f1:2c:88:f4:52:0d:9f:97:
bc:72:59:ca:ec:83:22:71:53:cd:3d:1e:66:61:7a:6d:17:dc:
b4:c1:c7:80:87:51:b9:f6:20:01:16:ea:ae:d5:5a:cc:6d:f3:
1b:54:83:1c:9b:09:a0:8b:b0:d5:1f:de:92:c2:d1:08:70:7c:
67:14:72:b1:2c:ad:c2:76:46:f7:83:32:c8:4a:2e:cb:21:6a:
e3:b3:4f:c5:86:db:e2:a7:8c:2c:3a:f5:90:2b:7d:d4:08:44:
a0:57:89:38:3f:d0:a9:fd:74:36:b8:d4:98:42:33:c2:54:31:
55:e3:f5:c8:81:d5:b8:d6:5c:21:76:73:a7:96:95:c3:73:05:
56:1d:13:58:f4:6b:fd:62:46:1d:3f:59:2c:8c:01:c9:2a:8f:
e4:da:92:7c:29:d1:ce:0e:07:9c:1d:77:dc:71:19:f2:8a:06:
e9:f3:5b:a5
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBHIcpjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZGEzOTQxYzI3Y2ZlNWMyMzRjNGJmMjIxZWNiMmE1NzliMmRlYWFiMB4XDTIyMDMy
NTE4MzIxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODk0ZmJhMjI4ODk5
ZGI3MmQzNDMwMjYyNzQyNGJkMmRmMzc5ZDliZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIklkBsiv2tKRuCUMJjpRYcF6V6vILKBxJnI4U4rrz+omuyU
R39g9nzotAEIyKBJNrIpp+F6yWMZc1lNITkf/hnKvWj+v4WbdhqrLGZ62RNeLRUE
ugHqOXlkonjMZkrkR8JLqIQ7DX6gciXPimJnh5K003qka+SLFObEUVpdJ/Ab85c6
N0l5C41SDW87gA0d0gTn6ylTTHj4QvZLQy46zZ2Zovz6IfycsPqrVLlQMRiKCic+
ZZdPx31qSXDgEXxvgS747XZM3auUPgAsS4aswgaBSFzzXQ9FpEytFYiYu1vey46f
+JjuNt1WCW4gUZveqce/qWaMrfiA7A07R+ztAGECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSJT7oiiJnbctNDAmJ0JL0t83nZvTAfBgNVHSMEGDAWgBRdo5QcJ8/lwjTE
vyIeyypXmy3qqzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hhT1VIQ2ZQNWNJMHhMOGlIc3NxVjVzdDZxcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODAvMzBlZDNlLWM0YzQtNGRlOC1iNGYxLWYxMWEzOWYyNmMzYi8x
L2lVLTZJb2laMjNMVFF3SmlkQ1M5TGZONTJiMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAv
MzBlZDNlLWM0YzQtNGRlOC1iNGYxLWYxMWEzOWYyNmMzYi8xL1hhT1VIQ2ZQNWNJ
MHhMOGlIc3NxVjVzdDZxcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAF7n2wMEAG1e3zANBgkqhkiG9w0B
AQsFAAOCAQEAAfMiC0mhdWU9Ov4mQy57ZF9pCV9E46WA9FXKb2QKzwjscwyoIKO+
OzUdG52PUP1zWLfIDbVik0T+a8wFlIFVWXjh/q3rp58LXtnKmqqDNEOVsPEsiPRS
DZ+XvHJZyuyDInFTzT0eZmF6bRfctMHHgIdRufYgARbqrtVazG3zG1SDHJsJoIuw
1R/eksLRCHB8ZxRysSytwnZG94MyyEouyyFq47NPxYbb4qeMLDr1kCt91AhEoFeJ
OD/Qqf10NrjUmEIzwlQxVeP1yIHVuNZcIXZzp5aVw3MFVh0TWPRr/WJGHT9ZLIwB
ySqP5NqSfCnRzg4HnB133HEZ8ooG6fNbpQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org