Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/joY2dGR027SpWLWmoq95-DmJCAs.roa
File: joY2dGR027SpWLWmoq95-DmJCAs.roa (raw, json)
Hash identifier: Ok+MaRDnAmWPGnHp1KrZ7hB9R7RNjpLbTFAR1HUMwhU=
Subject key identifier: 8E:86:36:74:64:74:DB:B4:A9:58:B5:A6:A2:AF:79:F8:39:89:08:0B
Certificate issuer: /CN=50980fb6ade858f2652e736993126c85759f06d9
Certificate serial: 01837DA37825DBB93B2DE056818B105F91F4
Authority key identifier: 50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/joY2dGR027SpWLWmoq95-DmJCAs.roa
Signing time: Tue 27 Sep 2022 06:30:08 +0000
ROA not before: Tue 27 Sep 2022 06:30:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 193.22.148.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7d:a3:78:25:db:b9:3b:2d:e0:56:81:8b:10:5f:91:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50980fb6ade858f2652e736993126c85759f06d9
Validity
Not Before: Sep 27 06:30:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e8636746474dbb4a958b5a6a2af79f83989080b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f3:6f:c4:72:2d:43:12:fe:25:d6:7d:5e:a4:
76:03:9c:45:d2:2e:f6:97:cd:4b:af:8e:ed:73:28:
08:b5:f0:e5:fa:ac:b7:15:f2:11:85:4d:fd:bf:f5:
cc:49:18:49:b3:9c:6c:23:e4:42:cc:b4:5f:89:b8:
2e:39:10:90:17:3a:63:22:e0:73:04:3a:d0:e2:ce:
54:f0:86:1d:98:2a:68:0e:e7:5d:b7:98:cf:c8:79:
67:80:99:04:6b:75:eb:f9:2b:58:4f:70:60:5d:f0:
cb:83:c5:24:b6:80:50:7f:e4:5e:e0:93:a1:9e:58:
3b:e7:eb:5a:3e:7b:45:3a:8c:19:22:71:3f:eb:66:
52:d8:23:84:4a:7c:1b:65:57:42:29:56:16:eb:c2:
d0:c9:50:b7:35:23:1a:93:80:ce:bc:2f:d6:80:01:
f3:aa:f2:fb:01:8f:74:b0:ca:1c:8e:b1:57:55:03:
39:63:a5:73:38:bf:6f:94:66:00:61:a3:64:4a:6c:
93:24:65:a8:c6:cd:73:af:0d:46:0f:ff:d9:ab:8d:
3b:f0:c3:46:26:fd:af:79:27:87:8a:ed:d9:3e:ef:
ef:5f:4e:99:c1:0f:02:f3:4c:41:ea:15:2f:e3:61:
16:38:c8:4f:2f:da:fc:61:02:df:7a:8d:03:c1:0d:
22:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:86:36:74:64:74:DB:B4:A9:58:B5:A6:A2:AF:79:F8:39:89:08:0B
X509v3 Authority Key Identifier:
keyid:50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/joY2dGR027SpWLWmoq95-DmJCAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/UJgPtq3oWPJlLnNpkxJshXWfBtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.148.0/22
Signature Algorithm: sha256WithRSAEncryption
45:45:39:19:45:11:56:54:81:6a:e8:0a:fa:4f:0f:f9:d9:c8:
4d:5b:52:c9:05:9c:86:b3:28:07:08:9b:f2:6d:cb:e0:e4:57:
0b:58:05:10:03:fc:ae:0f:bb:e1:89:08:8c:65:0a:fa:39:1a:
e4:90:2a:99:bf:19:d2:18:4a:68:00:25:c6:81:aa:34:62:2a:
98:84:fd:f3:f8:7e:86:3c:28:f1:41:4b:bc:69:d9:50:3f:ea:
05:4a:24:c1:d4:3d:9b:ba:7f:0c:63:e6:9d:ff:87:f7:9f:8c:
0b:ad:7e:a2:5e:bc:b3:ca:86:08:2d:f5:b7:32:01:06:a8:57:
8a:1d:fa:b2:b1:04:8f:01:4b:bb:b9:ae:4d:ba:f1:b3:8e:75:
37:f9:fd:7a:f4:68:a9:a3:dd:eb:e2:4f:a6:06:c6:51:d1:98:
ae:ff:e9:0e:f0:2b:b6:3c:99:a5:b8:7a:35:3d:0f:5b:cf:8b:
f6:04:cc:9e:08:38:a9:3e:b1:4e:39:05:63:96:ad:60:78:b7:
a2:a7:da:ac:ff:1d:3e:95:f8:c1:a6:88:38:a0:fa:52:03:85:
60:86:36:0f:e6:0c:94:00:75:77:b3:49:32:a0:27:9a:a8:8a:
54:ba:24:97:f3:90:2a:0c:ef:5b:35:52:a9:a5:61:7e:53:bc:
14:9d:0c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:47 2023 by rpki-client on console-fra.rpki-client.org