Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/4DqR5-Ui3fOV2u8R8p8TZA8v0rQ.roa
File: 4DqR5-Ui3fOV2u8R8p8TZA8v0rQ.roa (raw, json)
Hash identifier: LPUgcNXS0BPF4522DU2N6iOefpK3fGYCVoEvFmz9Ld4=
Subject key identifier: E0:3A:91:E7:E5:22:DD:F3:95:DA:EF:11:F2:9F:13:64:0F:2F:D2:B4
Certificate issuer: /CN=10f1d0dbe093c722350618f4045c25ba94317f87
Certificate serial: 0FFB7C0B
Authority key identifier: 10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/4DqR5-Ui3fOV2u8R8p8TZA8v0rQ.roa
Signing time: Mon 27 Jun 2022 08:14:40 +0000
ROA not before: Mon 27 Jun 2022 08:14:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9120
IP address blocks: 212.97.128.0/22 maxlen: 22
212.97.136.0/22 maxlen: 22
212.97.144.0/20 maxlen: 20
217.145.48.0/20 maxlen: 20
92.43.88.0/21 maxlen: 21
185.238.192.0/22 maxlen: 22
185.221.246.0/23 maxlen: 23
80.70.8.0/21 maxlen: 21
2a04:3f80::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268139531 (0xffb7c0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10f1d0dbe093c722350618f4045c25ba94317f87
Validity
Not Before: Jun 27 08:14:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e03a91e7e522ddf395daef11f29f13640f2fd2b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:48:e1:a2:23:bd:c4:0a:5a:03:12:2c:b2:8e:
6c:63:6c:5a:88:ac:19:fb:8b:95:22:fc:b9:c3:c9:
98:90:08:99:fb:ef:15:57:3d:0a:b8:89:a9:ab:42:
e5:c0:2e:a1:f8:a2:3a:5d:44:ea:4e:9d:90:5a:d0:
bb:8e:45:8c:66:a2:ca:0e:7d:11:8c:a6:e7:e9:24:
a2:7e:ac:18:02:b2:f8:10:24:50:3b:ec:cd:7e:30:
77:42:71:21:1c:85:08:fa:b1:5b:47:41:3a:ac:e3:
2f:ef:23:d9:9c:85:a0:a0:39:20:7e:6e:03:01:98:
40:31:db:bd:1e:60:79:8e:c3:d6:16:82:da:92:6c:
0c:ae:8d:c9:0c:26:84:ba:d8:79:7c:f8:ca:9a:3b:
0a:26:1d:a7:47:93:f1:bf:26:66:5f:70:e7:78:d4:
a9:0e:3b:4d:85:69:eb:6b:0a:e5:0c:fc:7b:83:98:
b0:bb:ae:27:b1:cf:8f:4b:25:74:e5:22:e7:58:a7:
3a:02:5a:62:14:17:7e:3f:ed:5f:23:81:de:33:2f:
4a:c3:e3:02:e9:8c:7e:25:c2:f6:67:ed:c0:68:85:
78:56:0d:92:36:6f:95:7d:9d:83:c5:54:dc:4a:bd:
9e:18:77:5d:92:88:a8:d5:1c:00:e4:f1:79:61:d3:
9f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:3A:91:E7:E5:22:DD:F3:95:DA:EF:11:F2:9F:13:64:0F:2F:D2:B4
X509v3 Authority Key Identifier:
keyid:10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/4DqR5-Ui3fOV2u8R8p8TZA8v0rQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.70.8.0/21
92.43.88.0/21
185.221.246.0/23
185.238.192.0/22
212.97.128.0/22
212.97.136.0/22
212.97.144.0/20
217.145.48.0/20
IPv6:
2a04:3f80::/29
Signature Algorithm: sha256WithRSAEncryption
15:63:70:ae:8a:41:01:91:01:c0:55:3f:5c:b7:d7:23:0c:47:
30:64:56:6d:c2:ca:84:1a:7a:2e:ed:98:2f:72:1c:ee:cc:36:
0a:59:d1:b7:38:58:a1:54:42:d7:b1:bf:17:f1:be:bd:18:05:
02:e4:c8:47:68:ac:5e:16:10:a5:27:2d:14:a1:67:d6:25:77:
81:ae:63:9f:de:f2:c1:61:fd:b1:9a:c2:c8:cb:dc:2e:97:a9:
02:ec:0b:05:97:20:84:4b:b1:20:0b:e2:cd:37:84:6d:43:4c:
3e:ff:e4:fd:65:0c:9d:5b:91:d8:15:1a:6b:2f:8d:c3:64:a3:
ec:aa:0e:f2:29:2e:68:29:13:71:af:e1:4a:78:be:53:c4:b6:
10:3b:b5:f7:23:f9:f9:08:c1:8a:9c:a2:bc:58:91:fe:7d:b8:
34:46:99:5f:bb:4c:eb:d8:5e:b4:df:91:f5:71:5d:d5:e6:1d:
cf:a0:de:ed:46:36:4c:96:ee:29:8a:fa:e4:e8:c7:1d:3f:5e:
c0:e2:a6:09:c4:1a:25:8e:28:86:f0:b3:b6:7b:f2:59:14:06:
cf:de:5a:85:8b:6a:b6:76:51:62:1d:81:54:21:4c:f7:33:f8:
da:f1:c5:34:0a:f1:39:5d:88:44:0c:5c:8a:d0:89:d0:b9:cb:
bb:af:46:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:59 2023 by rpki-client on console-ams.rpki-client.org