Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/asDwttdpjKnVdrZ6pEHwG-m694I.roa
File: asDwttdpjKnVdrZ6pEHwG-m694I.roa (raw, json)
Hash identifier: gzTB0wzaPWx4g0YAc6iHdHQ3uoAo3cEVK8JikEwBXlQ=
Subject key identifier: 6A:C0:F0:B6:D7:69:8C:A9:D5:76:B6:7A:A4:41:F0:1B:E9:BA:F7:82
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 06656347
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/asDwttdpjKnVdrZ6pEHwG-m694I.roa
Signing time: Fri 25 Mar 2022 12:50:09 +0000
ROA not before: Fri 25 Mar 2022 12:50:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 2a0a:1f47::/32 maxlen: 32
2a0a:1f46::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107307847 (0x6656347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Mar 25 12:50:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ac0f0b6d7698ca9d576b67aa441f01be9baf782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:99:93:d9:d2:4e:80:59:e6:6c:48:95:41:a1:
d4:c6:a0:27:5c:42:20:3f:ef:c0:c3:c0:63:49:26:
12:39:f5:4b:9c:89:00:73:26:4c:3e:32:68:2e:70:
dd:76:0f:ca:ff:68:7c:fd:1f:4d:4c:0b:cd:45:36:
d8:1b:9a:65:b2:d2:8f:80:89:1a:7e:e7:63:87:a9:
96:a5:e5:47:60:bf:58:d7:f2:11:22:28:cf:64:38:
10:ca:61:4d:53:9d:1c:dd:0e:ad:5d:b6:87:65:64:
1b:f1:e4:6d:1d:90:2d:c8:20:98:37:1e:fd:90:f7:
df:67:e7:a3:56:00:45:a9:89:93:23:d6:b3:64:50:
ed:3a:98:5f:54:39:f0:d7:db:1d:20:90:3d:45:fc:
83:a3:99:16:56:04:94:a8:57:e8:97:fb:26:97:f9:
a8:e7:8d:7c:a3:84:bf:06:7e:fd:ac:48:30:6b:5a:
ac:24:5a:19:eb:1f:5b:93:7d:b1:21:2e:7f:74:20:
3c:eb:07:80:8d:52:8e:69:c9:42:40:22:e6:d5:04:
ba:a3:a5:4a:cd:88:49:bc:a2:4b:d7:47:33:59:98:
ec:6e:bb:73:f0:03:2d:af:ef:ce:fe:db:b7:cd:96:
d3:5c:97:67:07:e1:3a:d7:8f:af:57:65:3d:25:68:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C0:F0:B6:D7:69:8C:A9:D5:76:B6:7A:A4:41:F0:1B:E9:BA:F7:82
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/asDwttdpjKnVdrZ6pEHwG-m694I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:1f46::/31
Signature Algorithm: sha256WithRSAEncryption
6a:a4:77:5a:d9:f7:1e:bf:e6:7d:aa:3e:81:0c:d1:8d:21:96:
bc:80:6f:1a:86:f5:b1:b6:38:c2:87:00:b6:ec:2e:00:f2:ca:
ba:ee:4f:77:55:aa:d1:72:c6:f8:7d:99:2b:bf:9b:a8:e8:21:
b0:30:ba:77:2d:11:86:25:83:96:25:84:06:25:70:bc:bf:9f:
6e:ac:d4:7f:de:ad:33:4c:1c:06:d9:5d:7d:c4:28:78:63:ff:
91:04:fe:ce:da:67:40:77:6c:e3:8c:dd:e0:b0:81:fd:cd:bb:
c2:53:46:43:3e:fb:c3:64:04:b8:8b:39:5b:b6:24:85:52:c2:
48:45:72:3d:4c:81:8f:68:3c:a9:89:ce:fd:04:15:bc:89:24:
f7:f3:56:0a:7b:ea:d5:e5:23:40:84:0b:6e:1b:63:bd:65:44:
6c:06:12:d7:75:d6:e1:23:ce:5e:11:7c:85:0a:c9:8f:43:6f:
e5:4d:ca:fa:7b:e3:9d:f3:c2:36:b0:d9:61:17:15:43:7c:35:
36:32:a4:77:5f:bd:12:23:3b:a4:fb:be:bd:f2:dd:ce:07:24:
d7:4a:e3:30:6b:a6:44:77:2d:e6:17:7e:d2:d4:17:91:13:fe:
71:31:f0:98:73:38:4c:7c:03:e4:ce:32:b7:cc:63:e9:f2:1c:
eb:ba:c1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:02 2024 by rpki-client on console-ams.rpki-client.org