Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/QIvuMo-KR-FYeMwuHe0pF0MV2Kk.roa
File: QIvuMo-KR-FYeMwuHe0pF0MV2Kk.roa (raw, json)
Hash identifier: dfTbpq/O+mOY5lvK5tYXYaW+HrOLQgexwSoaJ+UuCek=
Subject key identifier: 40:8B:EE:32:8F:8A:47:E1:58:78:CC:2E:1D:ED:29:17:43:15:D8:A9
Certificate issuer: /CN=bde75079618691bae1f47bcbed52314496963891
Certificate serial: 046FF9B9
Authority key identifier: BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/QIvuMo-KR-FYeMwuHe0pF0MV2Kk.roa
Signing time: Mon 27 Jun 2022 17:12:39 +0000
ROA not before: Mon 27 Jun 2022 17:12:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54903
IP address blocks: 2a0d:dbc0::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0e:5800::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74447289 (0x46ff9b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde75079618691bae1f47bcbed52314496963891
Validity
Not Before: Jun 27 17:12:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=408bee328f8a47e15878cc2e1ded29174315d8a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:86:e1:98:db:5b:1b:69:ed:3b:68:72:82:
12:c7:fd:de:94:cf:84:bd:91:ae:34:ea:9b:90:ed:
4b:71:e3:56:2a:13:4e:bc:45:35:e4:50:17:8c:b1:
d0:e0:34:ed:d3:7c:a8:08:a9:12:4e:66:72:8b:ca:
09:11:71:62:b3:e6:e8:b2:1a:e3:ba:77:09:35:25:
6c:f0:0d:40:e9:07:99:e7:cf:af:97:26:f6:d4:95:
05:21:88:a9:47:34:c8:ba:cb:47:fe:d9:e2:a3:64:
7e:bf:cd:87:6b:58:ff:75:18:98:04:74:e3:94:42:
d8:3d:ab:76:26:05:92:79:ec:cd:d5:80:20:86:6d:
f7:e3:92:57:b4:da:81:56:99:b6:94:46:5e:55:e3:
4b:c1:db:22:6c:03:7e:4a:69:ee:08:3d:f6:ad:70:
42:c2:c8:7e:3c:68:48:7d:b1:3b:38:3c:9c:9b:62:
e6:c0:8f:64:66:96:ec:d9:ee:25:8b:be:7e:ce:bc:
7d:2c:64:af:c8:fd:6b:84:f5:37:74:2b:07:7f:aa:
c9:b4:61:58:89:fd:af:a4:65:80:01:a9:ad:c8:17:
8a:8e:31:70:f1:d4:29:ed:89:13:d0:9c:92:ca:fa:
dd:e7:51:84:5b:b9:11:8c:e0:b2:99:51:87:d9:af:
be:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:8B:EE:32:8F:8A:47:E1:58:78:CC:2E:1D:ED:29:17:43:15:D8:A9
X509v3 Authority Key Identifier:
keyid:BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/QIvuMo-KR-FYeMwuHe0pF0MV2Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/vedQeWGGkbrh9HvL7VIxRJaWOJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4880::/29
2a0d:dbc0::/29
2a0e:5800::/29
Signature Algorithm: sha256WithRSAEncryption
43:b6:53:fa:c0:29:bc:29:20:7a:33:ee:5f:d3:2e:fc:d4:91:
be:ae:c8:19:e9:f4:a2:b2:0b:38:6f:3a:e3:0c:3c:92:b9:7c:
6e:08:25:1b:39:e7:d4:e2:48:2a:52:24:87:1c:7a:c8:5a:91:
66:58:de:31:93:cf:c4:9b:4e:f1:d5:c6:28:17:61:9f:4c:27:
99:7c:70:bb:3a:a2:5f:6c:e1:ed:fc:9f:25:69:b5:7e:0a:de:
c7:86:e5:6d:2f:fb:6d:0b:c0:9c:ab:3c:ef:73:6c:29:fd:96:
c8:4d:ef:07:77:5a:d8:6a:76:99:59:e1:80:ef:10:46:a5:64:
28:59:d1:67:67:db:d0:5e:d5:03:70:d4:63:6d:78:9f:3d:dd:
b6:c9:c6:7f:6a:43:08:c3:c3:17:dc:46:f8:51:10:d6:e7:1c:
9d:ab:d4:39:bf:6a:c1:f5:93:f6:e0:12:3b:e8:ee:4d:20:44:
ab:2c:1b:b2:f9:9c:41:14:cd:9a:6c:59:80:4b:49:b3:22:19:
25:7f:91:7c:bf:f2:f0:ae:91:53:cb:69:dc:ce:6c:c4:45:80:
54:37:c6:50:0d:5c:0e:ac:4d:96:96:fb:9f:b9:e4:31:0e:7a:
93:e2:f7:ee:4e:f3:35:99:09:f1:e3:e6:53:97:76:18:06:45:
4b:d5:70:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:46 2024 by rpki-client on console-ams.rpki-client.org