Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/j3YoN9_b0XzkCl-EQzI2JTYnNuc.roa
File: j3YoN9_b0XzkCl-EQzI2JTYnNuc.roa (raw, json)
Hash identifier: +UG6d1p8CO+67WJO4eLkgGRk2JZu1HJGnWrsdo2ID9c=
Subject key identifier: 8F:76:28:37:DF:DB:D1:7C:E4:0A:5F:84:43:32:36:25:36:27:36:E7
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 0851810B
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/j3YoN9_b0XzkCl-EQzI2JTYnNuc.roa
Signing time: Thu 28 Apr 2022 13:31:32 +0000
ROA not before: Thu 28 Apr 2022 13:31:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62005
IP address blocks: 193.200.16.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139559179 (0x851810b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Apr 28 13:31:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f762837dfdbd17ce40a5f8443323625362736e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ec:a7:59:1c:61:71:eb:08:5c:dc:9b:b1:aa:
72:10:c6:1f:e0:d6:c1:a0:a2:31:5e:91:8a:6e:23:
64:30:b6:bf:5c:74:6e:1e:ae:04:88:a7:d8:aa:98:
38:7e:8d:0c:8c:85:a5:20:f7:fd:fb:30:e6:3b:00:
25:51:b5:29:d3:5e:55:f1:17:5e:35:79:f2:14:e1:
45:04:bd:d2:b8:79:4f:f3:d8:a9:47:ad:34:57:98:
74:46:24:81:b3:fb:07:19:5e:25:25:ce:9f:7f:9a:
e0:03:9f:0c:5a:db:67:06:38:51:62:e2:c9:c8:81:
fd:0c:59:60:dc:c7:17:0b:57:a1:1b:fe:4b:f7:bc:
e4:3d:6f:d7:70:4a:17:d5:ee:1d:d5:75:72:f4:6e:
9e:6d:1d:d4:cf:b2:7d:59:f2:fd:88:b5:5f:4e:e2:
3b:c0:1b:28:f6:13:3d:6b:46:3d:82:00:63:e5:67:
59:4c:5f:71:e7:53:37:f5:cd:fa:0e:e7:ce:66:23:
ca:20:47:f8:c6:dd:c0:9d:fa:c8:89:13:0e:24:ef:
31:fb:b0:df:39:5f:8c:bd:9c:90:cc:f2:78:05:9e:
c8:52:b9:60:11:a0:68:d3:ec:10:76:44:42:b7:c8:
5a:9f:28:cb:95:3c:bb:15:10:08:ba:5a:b5:86:57:
5b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:76:28:37:DF:DB:D1:7C:E4:0A:5F:84:43:32:36:25:36:27:36:E7
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/j3YoN9_b0XzkCl-EQzI2JTYnNuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.16.0/23
Signature Algorithm: sha256WithRSAEncryption
63:b0:ab:67:e5:a4:9e:9c:cd:ba:23:fc:c6:4e:ca:3b:ab:57:
ea:27:a8:12:2e:fa:4b:ce:f5:52:ad:76:2c:87:aa:25:0d:87:
d1:98:c8:e7:89:f4:e5:4f:1b:cf:17:ff:c4:50:53:1c:ad:8e:
95:23:07:00:6c:d2:b7:d7:f9:b1:33:a4:5c:28:3c:8f:f5:0d:
81:15:89:dd:79:fd:15:d3:91:1d:a7:fc:38:dc:a4:12:c1:81:
dc:83:3e:95:c1:6b:63:e0:33:96:d0:eb:12:40:3a:ec:f4:22:
b7:0a:d8:5b:3e:35:ab:98:0e:7c:f8:0e:86:99:6d:3b:8b:10:
e3:9c:2c:a8:47:91:66:ae:d3:b3:82:5b:65:bc:a3:32:7e:81:
98:8d:35:5e:48:ff:e4:92:33:bf:d4:a0:cd:1f:8c:11:41:60:
cc:54:0a:48:74:bc:eb:64:2d:6f:6e:cf:8b:c7:30:f8:e5:93:
67:af:dc:0b:9c:82:64:94:3d:15:ef:2a:af:75:75:39:32:62:
8c:ca:a0:f5:e4:0b:7f:bb:c9:6c:fd:1b:5f:57:33:78:78:42:
2d:9a:36:d4:9e:62:ab:84:de:fd:4e:b4:b6:72:ae:fd:97:8b:
52:43:3e:23:7c:cc:79:02:e3:89:78:e8:91:79:1e:74:72:6d:
0e:c7:ed:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org