Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/VGH0o7OfhQm5SLW6tm61e0pzo4E.roa
File: VGH0o7OfhQm5SLW6tm61e0pzo4E.roa (raw, json)
Hash identifier: ec0TbYCik+KSa9AEmXGT8+UDG2Iqr5zAFUcaKSamVrM=
Subject key identifier: 54:61:F4:A3:B3:9F:85:09:B9:48:B5:BA:B6:6E:B5:7B:4A:73:A3:81
Certificate issuer: /CN=6c03a2caf298019fbd668621516c8c6e1d10e83c
Certificate serial: 07276A45
Authority key identifier: 6C:03:A2:CA:F2:98:01:9F:BD:66:86:21:51:6C:8C:6E:1D:10:E8:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/VGH0o7OfhQm5SLW6tm61e0pzo4E.roa
Signing time: Thu 20 Jan 2022 18:40:04 +0000
ROA not before: Thu 20 Jan 2022 18:40:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 45.150.252.0/22 maxlen: 22
45.134.76.0/22 maxlen: 22
170.245.40.0/22 maxlen: 22
185.46.116.0/22 maxlen: 22
194.48.164.0/22 maxlen: 22
168.205.72.0/22 maxlen: 22
193.201.248.0/22 maxlen: 22
95.181.216.0/22 maxlen: 22
193.19.205.0/24 maxlen: 32
193.19.206.0/24 maxlen: 32
193.19.207.0/24 maxlen: 32
45.136.8.0/22 maxlen: 22
63.141.34.0/23 maxlen: 23
63.141.36.0/23 maxlen: 23
31.223.188.0/23 maxlen: 23
185.202.28.0/22 maxlen: 22
150.107.200.0/22 maxlen: 22
185.75.208.0/22 maxlen: 22
185.28.180.0/22 maxlen: 22
103.225.200.0/22 maxlen: 22
45.139.232.0/22 maxlen: 22
45.143.68.0/22 maxlen: 22
185.253.68.0/22 maxlen: 22
194.76.108.0/23 maxlen: 23
194.76.120.0/23 maxlen: 23
45.66.48.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120023621 (0x7276a45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c03a2caf298019fbd668621516c8c6e1d10e83c
Validity
Not Before: Jan 20 18:40:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5461f4a3b39f8509b948b5bab66eb57b4a73a381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cc:6e:6c:43:8a:58:d3:1d:70:73:a0:66:b8:
86:41:3e:2d:0b:86:92:2b:10:5d:22:b7:fc:ee:c1:
c9:ec:ed:7f:99:b8:82:8d:7b:fa:2e:6e:fb:72:c1:
13:cc:55:ce:3b:bb:2a:57:63:0a:e2:cc:43:33:e5:
93:62:17:e0:5f:9d:01:e0:3b:90:50:6e:a0:8b:6c:
bc:7c:d1:01:b8:7d:e8:61:15:d5:8d:f1:f1:b4:2c:
23:71:d0:b9:84:1f:bd:c9:a6:46:c3:d9:a1:e5:b0:
74:1b:10:e6:c0:b7:2e:f4:18:d9:e5:85:9e:4a:df:
64:64:c2:84:13:a0:6e:80:21:b7:9a:6e:a3:ac:59:
47:97:d2:26:81:f7:51:81:ee:15:f1:ef:6f:97:34:
da:7e:c0:1c:0e:eb:b3:e9:68:f8:6e:30:bb:7d:6e:
4f:f1:cb:56:56:cd:7f:23:cd:a6:71:b8:3d:f8:87:
9a:f1:63:0d:cb:07:fa:ec:60:50:7f:fd:50:4e:38:
29:bc:e2:e2:31:c1:04:6e:45:a1:a6:53:ce:d9:b8:
6a:5c:49:15:b5:e5:cf:6f:93:52:e0:be:56:bb:e5:
aa:52:de:9a:89:5e:61:1f:26:c1:c8:15:52:8c:20:
06:45:e2:4e:fc:a7:ce:80:e5:5e:8e:ce:d8:e0:75:
e0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:61:F4:A3:B3:9F:85:09:B9:48:B5:BA:B6:6E:B5:7B:4A:73:A3:81
X509v3 Authority Key Identifier:
keyid:6C:03:A2:CA:F2:98:01:9F:BD:66:86:21:51:6C:8C:6E:1D:10:E8:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/VGH0o7OfhQm5SLW6tm61e0pzo4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.188.0/23
45.66.48.0/22
45.134.76.0/22
45.136.8.0/22
45.139.232.0/22
45.143.68.0/22
45.150.252.0/22
63.141.34.0-63.141.37.255
95.181.216.0/22
103.225.200.0/22
150.107.200.0/22
168.205.72.0/22
170.245.40.0/22
185.28.180.0/22
185.46.116.0/22
185.75.208.0/22
185.202.28.0/22
185.253.68.0/22
193.19.205.0-193.19.207.255
193.201.248.0/22
194.48.164.0/22
194.76.108.0/23
194.76.120.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:b9:a0:3d:cf:cd:17:27:b4:aa:4b:d3:bb:72:53:cf:4b:de:
27:9f:c0:db:f9:11:b9:ec:f5:fc:7f:d1:93:1a:15:21:31:92:
0f:f3:e2:0f:b5:11:0e:8f:be:6d:68:4e:66:92:cf:55:39:87:
da:f6:61:04:f3:4e:ab:fa:e6:95:cc:86:82:13:37:d7:3a:cd:
59:d4:81:e7:75:f8:fa:91:91:ba:4d:bb:cc:d5:22:20:c9:d4:
01:79:66:0f:62:9d:88:ae:7c:e1:22:8a:d6:0e:46:73:a8:84:
29:3a:78:70:b8:de:93:81:eb:8c:22:18:1b:0d:2a:63:f5:ad:
4e:4b:70:a6:b9:e6:08:ec:5f:b1:f5:59:d3:7c:38:7f:b8:42:
05:a1:97:1c:2c:db:40:dd:55:5a:dc:61:87:e6:01:2b:4c:57:
07:b7:76:0f:41:79:98:66:53:3e:7f:7c:85:35:ec:27:ec:03:
f7:da:88:6e:b8:89:6f:2a:8a:6f:7a:c7:9b:14:94:cf:e5:0b:
93:df:fa:b8:7c:99:84:eb:83:fa:aa:de:8b:f7:dc:00:08:18:
a6:0c:cc:37:ff:fe:fc:4f:db:75:2b:b5:05:2c:76:94:5b:60:
c1:fe:91:78:99:62:31:c3:93:d6:02:7c:c2:10:ee:57:73:5d:
90:2e:c7:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:58 2024 by rpki-client on console-fra.rpki-client.org