Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/yIOtMSRU7MIOv5_Xs0JJ6S7Rq-s.roa
File: yIOtMSRU7MIOv5_Xs0JJ6S7Rq-s.roa (raw, json)
Hash identifier: Ix/xuHFW7Nm13uqZ1LTsswKoJdbbqUqhRxu8oruW8fs=
Subject key identifier: C8:83:AD:31:24:54:EC:C2:0E:BF:9F:D7:B3:42:49:E9:2E:D1:AB:EB
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 018CC5DC318A1B8E69619DE05541D08C8442
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/yIOtMSRU7MIOv5_Xs0JJ6S7Rq-s.roa
Signing time: Mon 01 Jan 2024 16:29:51 +0000
ROA not before: Mon 01 Jan 2024 16:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62005
IP address blocks: 193.200.16.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:31:8a:1b:8e:69:61:9d:e0:55:41:d0:8c:84:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Jan 1 16:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c883ad312454ecc20ebf9fd7b34249e92ed1abeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:34:4b:7f:e0:f7:62:22:94:86:07:17:e1:55:
df:d8:ca:9b:d8:27:78:fd:13:5a:9c:1b:56:46:25:
db:f7:2a:26:5d:6e:c4:27:af:34:0a:a3:3e:3b:b6:
76:dc:b8:80:a4:77:57:2e:86:10:d5:c7:e5:ce:f1:
0b:6b:47:fc:43:e3:62:90:a7:25:fd:7e:01:5f:05:
f6:6f:15:8d:bc:44:6b:1e:ef:79:e2:60:15:91:bb:
4f:9f:b4:2f:09:bc:bd:76:7c:71:9a:6f:50:28:03:
46:cf:5c:60:a7:93:71:70:80:00:e3:51:0d:3a:60:
c6:b1:95:20:ff:57:9d:5b:98:23:12:85:76:10:6d:
c2:60:0b:9a:eb:e3:59:40:31:fb:be:d1:b9:80:0c:
44:fa:8a:06:49:7b:f6:eb:de:48:11:83:6a:63:13:
18:a4:80:71:fd:60:7a:45:3e:d4:10:7e:9c:4b:e2:
8a:0b:e8:8b:e4:27:68:af:27:f6:a7:98:9f:bc:8b:
90:11:a8:06:aa:df:9a:eb:64:88:cc:69:5a:e8:c2:
04:2d:b4:84:b4:47:a2:18:de:a2:1b:ae:75:a7:bf:
3e:79:37:f9:19:6a:17:9c:0e:18:68:df:88:12:2c:
eb:f9:e4:55:6b:d1:54:3b:32:ad:8d:9e:4f:ab:37:
80:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:83:AD:31:24:54:EC:C2:0E:BF:9F:D7:B3:42:49:E9:2E:D1:AB:EB
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/yIOtMSRU7MIOv5_Xs0JJ6S7Rq-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.16.0/23
Signature Algorithm: sha256WithRSAEncryption
77:6f:3d:08:db:58:99:60:be:8b:53:5e:11:00:91:39:2e:cb:
9f:06:b1:75:0a:d0:6a:93:54:3a:da:d8:64:82:1b:ee:91:52:
d8:70:d9:78:29:c5:cd:59:92:10:07:0b:e0:1e:c2:2b:a4:a1:
5a:c9:96:77:0c:03:29:15:96:46:bf:78:0d:e6:30:e6:cf:59:
8e:cc:cc:98:82:b9:59:28:13:82:76:3d:3f:86:a7:55:07:8d:
c2:e7:cd:42:02:9a:90:3f:9f:b8:19:a0:ed:63:73:2d:ae:d7:
06:5a:8e:f2:59:78:44:52:a6:e2:fb:82:4f:7f:a2:01:04:ef:
d0:d7:7c:78:a5:0b:8d:99:4c:6e:77:eb:58:06:73:d9:92:3f:
78:b9:15:ed:21:6a:5d:16:de:16:e2:e1:5d:c2:ff:05:94:62:
47:f5:95:14:cd:b8:12:49:dd:24:56:bc:c7:91:1f:e1:80:12:
c2:7c:9b:41:de:88:3d:35:88:43:1a:11:73:7f:17:5a:9b:93:
1e:81:c0:f0:fa:86:9f:16:31:8a:88:6e:5b:3f:54:5c:55:61:
f0:49:5f:da:6c:bf:9a:3d:10:d5:3b:19:4e:72:43:ab:5f:01:
ab:2c:99:13:47:71:aa:26:8b:04:4b:44:3a:0d:51:84:a1:84:
0b:14:c8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:41 2024 by rpki-client on console-ams.rpki-client.org