Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/6mxDi7tz2NzuMZSQIEmIUhPB4Cc.roa
File: 6mxDi7tz2NzuMZSQIEmIUhPB4Cc.roa (raw, json)
Hash identifier: XzCpyrSKpgxEUiKN77HKhu9zdyFOmt2C/VOuVphTBNE=
Subject key identifier: EA:6C:43:8B:BB:73:D8:DC:EE:31:94:90:20:49:88:52:13:C1:E0:27
Certificate issuer: /CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Certificate serial: 0191D790122B863907E3C6BF904F07B1DF46
Authority key identifier: B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/6mxDi7tz2NzuMZSQIEmIUhPB4Cc.roa
Signing time: Mon 09 Sep 2024 16:13:48 +0000
ROA not before: Mon 09 Sep 2024 16:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 91.184.253.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d7:90:12:2b:86:39:07:e3:c6:bf:90:4f:07:b1:df:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Validity
Not Before: Sep 9 16:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea6c438bbb73d8dcee3194902049885213c1e027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ef:9b:68:9d:58:82:3b:20:d1:a3:1d:d5:d7:
c3:66:32:b0:81:35:a9:7c:0a:d7:8b:91:90:06:9b:
ce:90:9c:a9:14:d3:c2:37:d5:5d:f2:cb:da:7f:19:
36:f7:62:49:da:45:0d:80:70:9c:d2:ed:99:e5:3a:
cc:85:39:57:60:ee:e6:01:76:2f:64:80:c5:e6:cd:
2d:74:88:d3:64:14:77:67:74:ff:70:9b:67:19:ae:
62:f0:42:c3:0f:48:ad:c3:2e:6f:9e:ba:8e:9f:97:
b4:50:18:c2:1d:89:a1:de:08:dd:cc:4e:fd:53:c3:
34:f0:2e:47:97:ba:7c:44:c8:2a:c2:80:d1:d2:e9:
38:05:78:2c:5f:32:a9:2f:78:c1:0f:c2:dc:e1:41:
58:d3:bb:b5:df:c6:32:96:a1:81:5a:d8:c7:0c:75:
34:d4:82:9e:af:1c:b2:fd:bd:ae:47:4c:6f:2d:2b:
b8:14:d1:68:97:6a:17:fb:6f:cc:5a:55:e6:61:84:
55:fe:ec:81:74:d7:f2:93:0c:73:1f:fc:83:50:64:
a3:d7:44:a5:a7:33:15:30:10:e6:48:67:03:b1:67:
e7:14:9a:eb:da:5b:8f:f8:e7:88:2e:45:08:e3:e1:
bc:3e:53:07:59:77:33:ac:46:c6:c2:cc:46:23:39:
6f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6C:43:8B:BB:73:D8:DC:EE:31:94:90:20:49:88:52:13:C1:E0:27
X509v3 Authority Key Identifier:
keyid:B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/6mxDi7tz2NzuMZSQIEmIUhPB4Cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/snJh1xU0i_1zzp27ckiGVpk7ovE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.184.253.0/24
Signature Algorithm: sha256WithRSAEncryption
35:4a:16:b6:dd:56:4a:bc:01:a8:c5:89:25:c5:0f:97:e6:94:
5b:b6:90:0f:75:0a:07:d3:27:56:a1:7a:d6:4a:33:1a:ad:cf:
2c:1b:ab:f6:7b:f2:7f:d0:c6:fc:e3:f1:38:5f:9c:a6:99:77:
e4:07:02:62:a1:3a:97:a5:27:29:f4:78:69:5a:a1:c7:53:7f:
c9:88:0d:14:78:9e:53:62:cd:fe:09:96:26:3e:7c:81:5d:02:
7d:30:a4:29:f7:b6:59:96:94:b8:83:be:14:b0:9f:ec:5f:e9:
19:95:bf:34:43:ff:68:33:57:f2:4c:ab:6d:76:60:d9:29:1d:
ce:8f:99:1b:5d:25:6d:94:f5:2f:1c:a6:53:5c:44:e3:f1:d4:
66:3c:ad:dd:cc:1a:f2:47:17:70:25:63:cd:43:31:59:fe:b8:
0b:4d:ae:30:d5:15:e9:cf:c7:d8:be:88:cd:58:1f:d7:3c:70:
9e:e0:da:5a:68:96:45:a7:30:58:ee:75:80:dc:05:2f:04:09:
59:67:e9:9d:8c:5f:6e:f7:b3:04:e7:fb:82:23:05:ff:e0:fa:
88:ca:1b:20:7b:98:54:d3:fe:6b:6b:d6:9a:7c:2e:97:f6:91:
74:0b:49:f7:ba:e3:e0:19:54:22:4f:83:b3:7d:62:5a:da:7f:
b6:fb:8d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 10:53:38 2024 by rpki-client on console-ams.rpki-client.org