Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/56M-Q1ivwPVsarnI4bUdMvuqCZo.roa
File: 56M-Q1ivwPVsarnI4bUdMvuqCZo.roa (raw, json)
Hash identifier: i0uhrrR1qis0RQsXe9gQHZwjZpvYMDi9HWajwpMfWZE=
Subject key identifier: E7:A3:3E:43:58:AF:C0:F5:6C:6A:B9:C8:E1:B5:1D:32:FB:AA:09:9A
Certificate issuer: /CN=2dd596c1ea7ecbb1be1777fc0d38ed06ca40eabe
Certificate serial: 0188888B044D97192AC2DCB1C29F9BB22348
Authority key identifier: 2D:D5:96:C1:EA:7E:CB:B1:BE:17:77:FC:0D:38:ED:06:CA:40:EA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdWWwep-y7G-F3f8DTjtBspA6r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/56M-Q1ivwPVsarnI4bUdMvuqCZo.roa
Signing time: Sun 04 Jun 2023 22:33:11 +0000
ROA not before: Sun 04 Jun 2023 22:33:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50873
IP address blocks: 37.228.130.0/24 maxlen: 24
94.247.143.0/24 maxlen: 24
151.216.0.0/22 maxlen: 22
194.104.114.0/23 maxlen: 23
185.97.4.0/22 maxlen: 22
194.104.149.0/24 maxlen: 24
185.97.6.0/24 maxlen: 24
2a06:1c0::/30 maxlen: 30
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:88:8b:04:4d:97:19:2a:c2:dc:b1:c2:9f:9b:b2:23:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dd596c1ea7ecbb1be1777fc0d38ed06ca40eabe
Validity
Not Before: Jun 4 22:33:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7a33e4358afc0f56c6ab9c8e1b51d32fbaa099a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:59:17:72:ea:c6:12:e3:3c:f9:37:c6:81:8c:
d3:99:24:b3:a2:95:40:51:1b:42:80:bb:9d:fe:92:
70:ee:3b:af:52:3b:08:cd:34:18:9e:17:3d:79:2d:
aa:a1:ed:09:5e:63:10:a6:20:8b:b3:3f:c8:83:5d:
b3:31:31:ec:32:db:35:32:3d:34:33:e3:87:be:5e:
e6:11:d1:50:a4:09:e7:59:c8:dd:2f:b0:74:fd:20:
c8:07:84:bc:0b:f9:a7:9d:d8:63:b7:0b:3f:ad:36:
09:49:29:ac:cb:ec:87:77:91:68:3f:e4:a3:32:f8:
70:9b:6f:14:e0:f1:66:08:8f:64:40:6e:be:29:65:
78:58:65:18:16:99:52:bf:a4:71:78:5e:16:51:22:
b5:37:a7:bf:d1:66:b1:8a:cb:c5:cb:de:94:67:d0:
87:0f:dd:f2:3e:87:e1:2a:11:97:1e:c8:17:79:dd:
51:95:1a:b3:ba:15:03:d2:c7:d1:e9:e6:f8:48:1e:
2d:a9:81:ac:74:55:f1:cc:07:dd:3a:f8:9d:30:e4:
44:18:15:23:af:89:a2:da:9d:5a:29:51:f8:5f:5f:
b4:04:e0:b4:a6:e9:b7:9b:90:b1:fb:10:96:d8:6d:
4c:09:48:9e:33:e1:e1:72:1b:c0:68:a8:dc:2c:d8:
96:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A3:3E:43:58:AF:C0:F5:6C:6A:B9:C8:E1:B5:1D:32:FB:AA:09:9A
X509v3 Authority Key Identifier:
keyid:2D:D5:96:C1:EA:7E:CB:B1:BE:17:77:FC:0D:38:ED:06:CA:40:EA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdWWwep-y7G-F3f8DTjtBspA6r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/56M-Q1ivwPVsarnI4bUdMvuqCZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/LdWWwep-y7G-F3f8DTjtBspA6r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.130.0/24
94.247.143.0/24
151.216.0.0/22
185.97.4.0/22
194.104.114.0/23
194.104.149.0/24
IPv6:
2a06:1c0::/30
Signature Algorithm: sha256WithRSAEncryption
39:13:b4:f6:66:c0:8f:9e:1c:e0:5c:68:f1:81:1c:f9:1c:0c:
a8:59:28:8b:e7:97:99:57:d6:cb:c3:a4:53:fc:53:f2:51:ac:
06:1f:27:d4:e1:80:9a:85:fa:09:3b:92:f0:a9:17:64:bc:76:
bd:39:de:79:75:3a:ea:cb:cd:27:2f:0a:93:a5:52:0c:0f:e7:
b0:b7:92:b2:7f:83:5e:03:1a:97:47:8e:b0:2b:6a:02:97:4d:
cc:29:fb:bf:43:a3:db:d4:09:1d:c0:18:ed:e0:20:4d:4d:ad:
85:2b:74:bd:fd:ce:49:cb:49:3e:4e:f5:8a:83:ce:4c:b5:f4:
54:75:d8:3a:0c:02:e3:84:29:c0:a6:a8:d4:12:85:e2:03:8f:
62:6d:e1:98:4c:30:e0:bf:7a:e4:32:da:17:75:62:36:fd:9a:
c3:34:21:6f:69:39:e4:bb:ab:69:b6:9e:33:30:5b:20:ce:59:
b3:d8:47:74:97:aa:56:50:22:d2:57:76:04:42:1d:be:32:62:
87:89:ae:50:84:ed:90:f2:2f:8c:aa:59:e5:e1:96:8f:c8:f0:
6b:72:98:8f:e5:18:ca:2d:a8:c2:22:8c:39:a4:6b:df:31:d1:
2a:d6:30:a5:5e:e4:89:d6:01:6d:67:fe:47:ab:d7:c6:69:56:
ef:fc:65:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:41 2024 by rpki-client on console-ams.rpki-client.org