Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/ld1TvZy93nUKZ5lrqzP-F-eWNc4.roa
File: ld1TvZy93nUKZ5lrqzP-F-eWNc4.roa (raw, json)
Hash identifier: YG+0D+wmf/aFS/eTzScrIxWZkOXC97RE5uFBNNEBMiM=
Subject key identifier: 95:DD:53:BD:9C:BD:DE:75:0A:67:99:6B:AB:33:FE:17:E7:96:35:CE
Certificate issuer: /CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Certificate serial: 0DC0B0DF
Authority key identifier: E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/ld1TvZy93nUKZ5lrqzP-F-eWNc4.roa
Signing time: Mon 27 Jun 2022 07:46:40 +0000
ROA not before: Mon 27 Jun 2022 07:46:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49334
IP address blocks: 77.92.145.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230731999 (0xdc0b0df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Validity
Not Before: Jun 27 07:46:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95dd53bd9cbdde750a67996bab33fe17e79635ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:17:c4:db:0e:d7:67:bc:a2:aa:db:d4:50:76:
ba:f2:46:51:4c:c9:3b:de:c8:5e:92:67:fc:e8:82:
bf:df:4b:12:83:f3:46:ac:28:01:3c:90:2b:df:f0:
47:c7:6c:87:ec:98:0d:46:bb:3a:d4:d5:35:62:94:
c3:1c:fe:a9:93:d3:2b:91:f0:f5:78:c1:bb:a6:cf:
7d:22:5d:c7:81:c2:b9:04:a0:cf:f8:2b:b1:bc:82:
22:4f:fd:19:b1:b4:5f:48:29:b0:c1:0f:d3:be:f8:
54:10:ff:70:af:98:e1:26:83:3b:a9:b7:eb:38:73:
02:0f:fa:a8:da:73:96:c8:e1:fe:cb:2d:70:a4:33:
fd:ea:48:6f:c4:9a:96:d9:45:58:48:3a:98:04:73:
35:83:eb:81:94:b4:42:6d:a7:8c:20:8d:ff:6e:8a:
19:f3:08:58:33:72:ec:db:2b:9d:b2:41:d1:26:61:
72:df:6c:4e:53:c9:67:d3:fa:bb:ea:47:26:c0:23:
fc:39:bd:8c:c9:c2:e3:ad:52:85:97:2d:88:50:40:
1c:b3:d3:eb:af:27:ac:56:3c:82:2d:05:74:10:e2:
d0:b4:e5:12:21:5b:b3:7c:51:22:91:de:2b:70:33:
8e:4e:e6:08:df:d6:46:b2:c0:bc:ff:be:e6:8d:a4:
4c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DD:53:BD:9C:BD:DE:75:0A:67:99:6B:AB:33:FE:17:E7:96:35:CE
X509v3 Authority Key Identifier:
keyid:E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/ld1TvZy93nUKZ5lrqzP-F-eWNc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/5KK46Q0VfqAi-OcAAkqT3DVqUU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.145.0/24
Signature Algorithm: sha256WithRSAEncryption
88:33:65:50:64:eb:45:f3:17:6d:5a:8b:d5:51:b7:c7:06:94:
af:3b:3d:94:67:e9:11:6a:b1:e5:c6:71:25:e5:8b:68:a9:c5:
06:94:ff:62:dc:45:c8:77:12:79:97:d8:b6:2b:31:91:7a:a0:
99:4e:94:52:57:af:a6:98:27:86:1f:fc:5f:97:a0:1b:c3:f4:
65:aa:d5:19:bd:97:92:53:ce:9f:45:cc:19:02:1d:03:f1:8f:
06:67:8b:5a:b3:c1:b3:b6:5e:1c:16:cb:44:78:fd:23:51:2e:
df:a5:cc:df:5f:3f:4c:06:cf:d8:a9:4c:3d:86:70:a5:75:fc:
b4:6b:2f:f4:ba:ba:09:a2:8a:3d:df:36:c0:34:94:84:97:5e:
89:41:4c:11:6d:1e:11:38:47:11:78:04:5f:33:8d:a0:1a:44:
95:75:1d:35:28:6d:a5:7a:09:2e:7b:8a:eb:ad:cd:e5:5e:e5:
4c:2c:2b:15:87:9a:20:de:58:c5:1b:c2:32:b2:0d:1d:20:b2:
46:b1:2e:d0:0b:12:90:56:eb:e3:30:5e:2f:7b:a3:82:b3:57:
b2:a8:e8:05:a9:f8:41:95:d4:87:82:27:b6:36:3f:68:25:f1:
db:dd:e4:74:e7:db:cb:bf:88:47:d6:d0:ee:83:d4:3d:ac:7a:
ee:78:3b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:01 2024 by rpki-client on console-fra.rpki-client.org