Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/PBeI2kfDeMc7E0BI_Cu3Q-8k8NQ.roa
File: PBeI2kfDeMc7E0BI_Cu3Q-8k8NQ.roa (raw, json)
Hash identifier: pa+dOw3IBXAxXTPxZ2x2q6t2CoGR08RHd983FB9Qrjk=
Subject key identifier: 3C:17:88:DA:47:C3:78:C7:3B:13:40:48:FC:2B:B7:43:EF:24:F0:D4
Certificate issuer: /CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Certificate serial: 05427A46
Authority key identifier: 46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/PBeI2kfDeMc7E0BI_Cu3Q-8k8NQ.roa
Signing time: Sat 01 Jan 2022 11:58:47 +0000
ROA not before: Sat 01 Jan 2022 11:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30860
IP address blocks: 185.233.186.0/24 maxlen: 24
185.233.185.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88242758 (0x5427a46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Validity
Not Before: Jan 1 11:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c1788da47c378c73b134048fc2bb743ef24f0d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0d:06:72:f6:d9:c0:d6:c9:42:5c:94:6d:5d:
b2:34:2e:1f:fa:ec:e0:44:2c:3b:5c:01:9d:97:b3:
7a:ab:d6:d3:99:3e:9c:e4:42:2a:af:24:20:31:fa:
a9:16:3d:90:8f:7c:5a:0b:6f:4f:89:b3:00:a6:e4:
3a:aa:1f:b8:5c:7a:7a:b0:dc:d2:63:3a:d6:36:d5:
68:64:73:64:6c:5c:ae:80:d2:b7:79:d3:7d:06:c3:
c6:2c:02:15:29:62:76:3e:6a:55:e7:28:ff:56:fa:
65:89:16:82:35:b3:ff:32:ed:91:a4:33:88:ba:65:
72:ae:eb:96:fb:be:d3:07:50:c3:c2:c2:8e:2b:f6:
0d:80:66:36:bb:17:e1:dd:c7:fe:3f:21:01:7a:e4:
dd:e0:d5:6b:0a:57:0c:ae:4f:4f:72:dd:74:e1:32:
ee:9f:e0:5c:27:ba:99:62:22:67:19:33:38:c1:6d:
25:a6:38:7c:51:bc:fa:d6:7b:ef:41:ee:87:8e:67:
fe:4b:0b:33:21:1a:80:5e:7e:b2:da:63:75:3a:5e:
19:27:37:e8:6b:de:bf:b4:1c:08:55:2f:c6:88:2c:
5c:c7:aa:69:94:f4:2b:ff:3d:ea:94:c6:21:cb:81:
51:49:53:78:9d:8f:c3:8e:cf:24:f4:33:56:33:2f:
68:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:17:88:DA:47:C3:78:C7:3B:13:40:48:FC:2B:B7:43:EF:24:F0:D4
X509v3 Authority Key Identifier:
keyid:46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/PBeI2kfDeMc7E0BI_Cu3Q-8k8NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.185.0-185.233.186.255
Signature Algorithm: sha256WithRSAEncryption
48:de:c3:b8:32:26:c1:f1:cf:f2:d3:1f:cb:a8:1f:39:2e:9a:
44:97:3b:98:41:03:79:3c:38:3a:b4:c8:fd:62:ed:7c:c1:ae:
d8:63:be:5e:0f:75:6c:ae:9e:19:86:20:6d:6f:bd:e0:46:12:
6f:d9:51:18:e2:e5:1b:02:84:5e:80:a8:3b:43:e2:ee:0e:f0:
b2:f9:f2:8d:2c:04:64:08:2e:65:9d:89:51:7f:c5:ff:8e:63:
53:96:d7:53:d2:f4:e2:c9:b2:f0:ab:88:23:f3:e2:97:20:c9:
c3:32:76:5d:c8:e9:63:c7:68:a6:66:27:2c:82:71:84:25:50:
f2:bd:2d:3d:09:96:87:1e:d2:d1:37:e5:96:97:ee:e6:3c:83:
23:14:f6:ee:ea:2c:0b:98:97:d4:fc:ec:51:4f:cf:a4:07:6e:
b4:43:2c:d1:fd:c4:f6:57:6c:97:b5:fd:3e:2d:a6:7d:1f:b7:
d4:04:37:ed:cb:de:a3:4a:87:12:71:4d:ce:b9:43:0f:94:08:
ce:ec:87:59:dc:bc:0a:1d:45:19:bc:87:f1:13:db:5b:b4:3d:
f0:e5:aa:ea:fe:2c:3d:54:09:7a:fa:58:db:b2:34:00:e4:f2:
c3:ae:12:97:68:71:d8:40:fa:42:17:9e:e0:57:c8:0a:4d:a9:
37:63:35:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:10 2024 by rpki-client on console-ams.rpki-client.org