Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/86a426-56ee-46dd-9425-7f92c34eb07c/1/Grxv8yqIWaHcMQ9fcxVn0fmY0tU.roa
File: Grxv8yqIWaHcMQ9fcxVn0fmY0tU.roa (raw, json)
Hash identifier: Kw3O4xJXRdh8WYYUkaMaUETqr3i6Q1IwD00fzBMGNJg=
Subject key identifier: 1A:BC:6F:F3:2A:88:59:A1:DC:31:0F:5F:73:15:67:D1:F9:98:D2:D5
Certificate issuer: /CN=9c2cb7f9ca0efd72be258a4a09358806374b4662
Certificate serial: 011B12
Authority key identifier: 9C:2C:B7:F9:CA:0E:FD:72:BE:25:8A:4A:09:35:88:06:37:4B:46:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nCy3-coO_XK-JYpKCTWIBjdLRmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/86a426-56ee-46dd-9425-7f92c34eb07c/1/Grxv8yqIWaHcMQ9fcxVn0fmY0tU.roa
Signing time: Thu 16 Jun 2022 12:43:44 +0000
ROA not before: Thu 16 Jun 2022 12:43:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 82.145.96.0/19 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72466 (0x11b12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c2cb7f9ca0efd72be258a4a09358806374b4662
Validity
Not Before: Jun 16 12:43:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1abc6ff32a8859a1dc310f5f731567d1f998d2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8e:ef:30:23:2b:b4:5f:56:54:89:33:6e:45:
9d:82:b6:81:7c:02:15:f5:06:29:b0:47:31:32:06:
ce:55:d4:c3:4b:d5:34:e0:d4:df:be:50:7b:9a:54:
bb:23:9a:31:98:4b:4a:eb:1f:5a:dd:c7:a5:40:1f:
71:55:38:2b:e5:b8:1d:dd:08:08:14:48:c8:8a:df:
64:ae:72:c1:1b:b5:f7:ce:87:d0:fc:d1:31:28:b5:
b6:ba:f7:95:bf:0b:75:0b:e0:ee:c7:b6:9b:4f:50:
94:e5:41:44:21:db:8b:1e:30:ed:71:ff:2e:92:65:
8c:2d:1c:41:57:33:58:26:77:3b:40:33:e5:d2:44:
26:bf:db:fa:0f:22:60:bc:f9:df:13:89:8a:f4:06:
2e:a7:be:b6:a0:54:13:84:fb:d2:db:cb:29:e0:5b:
07:d2:75:fd:08:d2:52:44:d8:79:e0:07:fc:b1:a8:
a0:14:4f:2f:8b:07:43:f3:cd:64:ac:34:ff:e6:6a:
4a:39:ab:be:98:9a:ca:e1:81:e1:d7:bb:be:c2:12:
ab:38:13:97:e6:1e:37:65:5e:5a:97:f7:ba:34:13:
74:da:38:61:64:05:99:05:fa:69:31:be:ab:8a:db:
53:44:1d:6a:45:6c:52:b1:03:b3:cc:9c:61:82:18:
41:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BC:6F:F3:2A:88:59:A1:DC:31:0F:5F:73:15:67:D1:F9:98:D2:D5
X509v3 Authority Key Identifier:
keyid:9C:2C:B7:F9:CA:0E:FD:72:BE:25:8A:4A:09:35:88:06:37:4B:46:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nCy3-coO_XK-JYpKCTWIBjdLRmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/86a426-56ee-46dd-9425-7f92c34eb07c/1/Grxv8yqIWaHcMQ9fcxVn0fmY0tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/86a426-56ee-46dd-9425-7f92c34eb07c/1/nCy3-coO_XK-JYpKCTWIBjdLRmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.145.96.0/19
Signature Algorithm: sha256WithRSAEncryption
b2:ed:e6:eb:bd:ee:dd:c0:90:bb:22:81:7a:95:34:46:1b:9e:
2f:c3:3f:1c:fe:94:a0:d6:43:2d:bc:93:23:81:21:24:fc:92:
72:9d:53:5f:8a:48:e1:ba:54:d5:62:de:74:9d:ee:8b:52:e5:
32:cd:8e:b4:9c:f6:ac:cc:15:db:ac:22:67:58:e5:20:f0:ff:
e6:fb:af:2b:89:51:40:06:e8:9b:a4:75:85:74:ed:00:5f:a9:
fd:60:1a:dc:dd:39:f4:e4:dc:50:51:4a:2a:2a:c1:74:39:17:
b2:77:f4:71:07:6a:16:1c:84:1b:b4:b0:8f:00:75:f0:09:45:
d5:d2:2f:78:3f:78:2d:30:9a:76:b3:65:26:86:ad:96:f3:f2:
97:e9:83:7b:9d:cf:a5:89:2b:6b:74:42:52:59:9f:7a:69:28:
0f:94:b4:6d:0b:73:87:20:e9:7c:05:9b:d3:04:89:a9:1b:87:
28:0e:e0:ee:a2:ab:e2:dd:0e:ff:0f:f8:a9:c1:7e:ad:08:d6:
23:11:14:36:90:96:c3:89:8c:b6:90:2d:76:85:64:a8:f8:42:
d0:c5:df:9f:9f:e1:0e:9e:13:e8:db:84:54:10:51:31:44:47:
9a:55:0e:48:ca:fb:02:1b:e7:7c:86:3b:6b:4f:3f:3d:d1:0c:
53:29:08:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:54 2024 by rpki-client on console-ams.rpki-client.org