Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/FFjKccMg97K6DeGOXWKqRVoJvs8.roa
File: FFjKccMg97K6DeGOXWKqRVoJvs8.roa (raw, json)
Hash identifier: wW5M305UusbDZua3tOjHDEVJoi5pkl0voU42KGwwJCc=
Subject key identifier: 14:58:CA:71:C3:20:F7:B2:BA:0D:E1:8E:5D:62:AA:45:5A:09:BE:CF
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 0307B764
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/FFjKccMg97K6DeGOXWKqRVoJvs8.roa
Signing time: Wed 22 Jun 2022 22:52:32 +0000
ROA not before: Wed 22 Jun 2022 22:52:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42375
IP address blocks: 77.243.80.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50837348 (0x307b764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Jun 22 22:52:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1458ca71c320f7b2ba0de18e5d62aa455a09becf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:86:c8:ba:55:78:9d:97:bb:f7:66:c2:6f:7b:
c6:13:e5:a6:dc:a8:1a:91:f3:84:a3:2d:8d:47:0b:
48:2a:62:7c:64:a6:bd:39:e7:bb:96:e3:5f:87:75:
e9:69:1d:6e:2d:99:0e:e7:14:22:7e:c7:fd:2e:ec:
b6:ce:4c:8b:e7:47:0d:8c:19:8c:9c:de:ea:f8:f3:
c6:0c:bf:1d:4e:9f:51:b8:d0:7a:8f:a5:29:b2:27:
c1:33:0c:1f:8d:38:16:c1:e1:18:61:f6:9e:ac:b8:
85:9b:0b:10:63:03:b7:11:01:b7:db:9c:08:e5:7f:
71:b0:cf:1c:97:86:b2:c6:fe:fb:59:7e:cf:d6:0f:
00:48:cb:4c:73:26:fc:e1:fd:ac:22:19:e3:f7:57:
4f:32:93:93:26:ae:de:0d:ec:8c:ea:a5:cf:84:73:
88:f9:05:d3:cb:ad:e1:2e:98:65:9d:43:b0:58:3b:
f1:e6:56:90:46:7d:4c:db:e5:e8:a9:fa:ba:29:36:
c3:eb:df:59:03:27:2a:00:10:12:ed:f8:2e:09:6f:
6c:af:4d:a0:fe:25:41:dc:cc:37:51:4b:06:b6:67:
a4:db:7d:83:02:94:27:71:33:23:ed:58:78:10:aa:
dc:61:4d:cc:f0:01:5f:78:37:18:33:74:79:6d:7e:
cc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:58:CA:71:C3:20:F7:B2:BA:0D:E1:8E:5D:62:AA:45:5A:09:BE:CF
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/FFjKccMg97K6DeGOXWKqRVoJvs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.80.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:6e:55:60:3b:ee:c6:f0:83:5c:58:90:76:9f:e0:fb:39:29:
be:68:58:1f:e1:3f:0d:1d:7a:8a:94:44:03:bc:08:6a:6b:10:
9a:cc:08:4d:8a:f7:b1:b3:e4:1a:06:86:16:0c:c4:85:12:0a:
fb:a5:96:52:3a:5e:03:46:22:9a:6a:8f:d8:45:bc:18:a0:aa:
33:5e:60:09:f5:41:1c:7c:c6:4f:fc:d3:1c:49:60:4f:a0:f9:
32:9f:4e:5b:77:e0:60:97:60:7c:f1:81:bc:1a:69:9c:41:c4:
23:ed:f6:2d:3c:9f:8e:d4:96:15:55:ed:63:dc:7a:8c:be:09:
99:57:e3:8e:89:84:25:a8:95:cd:9b:5a:24:95:90:af:47:ab:
0a:57:8e:7f:4f:ec:cb:1c:9c:a3:78:67:33:c6:48:1b:67:1a:
8d:a2:11:a5:3f:a4:c6:bf:6a:a7:34:8f:43:90:ba:08:84:18:
ae:6d:7b:af:69:0f:68:89:63:8f:79:d2:4e:60:46:35:dd:7c:
4a:da:66:60:fd:01:80:d9:c3:bc:f6:86:64:81:4e:b4:92:b4:
c4:d1:fa:53:ff:a2:46:df:59:97:75:f7:d1:ff:18:a0:ba:5d:
d3:45:c7:86:a3:4f:66:54:0d:c8:30:93:5f:57:fe:ed:8b:1a:
9c:6b:61:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:56 2023 by rpki-client on console-ams.rpki-client.org