Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/BpVhXCKm_cBLrJ6wmdsJCooSJbI.roa
File: BpVhXCKm_cBLrJ6wmdsJCooSJbI.roa (raw, json)
Hash identifier: Ckc1TsH5RBEXqYwS4iAPE7Y2nX9kXRByjzDw7KGj1R4=
Subject key identifier: 06:95:61:5C:22:A6:FD:C0:4B:AC:9E:B0:99:DB:09:0A:8A:12:25:B2
Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701
Certificate serial: 338E09CF
Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/BpVhXCKm_cBLrJ6wmdsJCooSJbI.roa
Signing time: Sat 01 Jan 2022 04:52:47 +0000
ROA not before: Sat 01 Jan 2022 04:52:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 94.172.0.0/17 maxlen: 17
94.172.0.0/16 maxlen: 16
78.103.0.0/16 maxlen: 16
80.111.128.0/17 maxlen: 17
195.34.134.0/23 maxlen: 23
92.235.0.0/18 maxlen: 18
92.235.0.0/19 maxlen: 19
94.171.0.0/16 maxlen: 16
62.179.128.0/17 maxlen: 17
92.235.32.0/19 maxlen: 19
84.116.0.0/16 maxlen: 16
80.111.0.0/17 maxlen: 17
213.47.222.0/23 maxlen: 23
213.47.220.0/22 maxlen: 22
213.47.220.0/23 maxlen: 23
80.111.0.0/16 maxlen: 16
94.172.128.0/17 maxlen: 17
94.170.0.0/16 maxlen: 16
94.170.0.0/15 maxlen: 15
195.34.130.0/24 maxlen: 24
195.34.132.0/22 maxlen: 22
195.34.132.0/23 maxlen: 23
62.179.0.0/17 maxlen: 17
2001:730::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 864946639 (0x338e09cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f25e6a6893f466d2695e90670c047443643701
Validity
Not Before: Jan 1 04:52:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0695615c22a6fdc04bac9eb099db090a8a1225b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8f:5b:73:a0:93:b7:8e:0b:24:cc:c7:bb:ff:
71:26:ca:31:f9:e0:f2:20:c8:ae:04:6d:82:d9:00:
b0:91:42:f1:ad:18:bf:8a:c8:da:8d:ee:00:83:0f:
b8:45:0c:23:e3:44:ac:c8:12:b4:04:5a:03:1b:26:
cf:e4:85:47:02:d7:91:86:8c:a7:39:77:13:ae:eb:
fa:cc:91:1c:c0:6f:f7:15:69:5d:56:36:8d:f2:15:
c3:37:b3:26:ac:9c:cc:3c:d9:40:12:3a:6c:a3:77:
6f:d5:a9:22:45:7a:3a:48:a7:07:93:7d:56:13:7e:
3c:89:93:f3:9d:2f:3b:37:47:b0:d3:90:c8:12:6e:
1e:e4:8f:05:f1:14:e5:6d:72:ea:b2:36:b1:78:39:
c2:9e:c4:4c:fa:5e:ad:77:7c:ec:fc:f0:34:cb:63:
78:27:67:1d:fb:cf:bb:b5:89:9a:95:69:61:7d:82:
a6:c3:25:bc:37:e1:d8:f2:2e:10:dd:c5:f6:dd:5e:
2c:61:ab:67:d7:26:00:82:62:34:c6:ac:ee:24:7f:
b6:be:10:59:bd:53:66:c3:af:f6:a6:72:ea:c3:58:
eb:55:20:54:3f:65:d1:3d:40:5b:0a:c3:b6:4f:0a:
6a:fd:78:72:9d:54:1e:d7:42:e7:03:de:70:dd:86:
e7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:95:61:5C:22:A6:FD:C0:4B:AC:9E:B0:99:DB:09:0A:8A:12:25:B2
X509v3 Authority Key Identifier:
keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/BpVhXCKm_cBLrJ6wmdsJCooSJbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.179.0.0/16
78.103.0.0/16
80.111.0.0/16
84.116.0.0/16
92.235.0.0/18
94.170.0.0-94.172.255.255
195.34.130.0/24
195.34.132.0/22
213.47.220.0/22
IPv6:
2001:730::/29
Signature Algorithm: sha256WithRSAEncryption
32:5b:cc:23:2f:f7:d5:88:5c:0e:d6:ae:45:87:9c:d2:77:59:
5c:6f:ce:6c:30:5b:34:94:db:ae:1d:ed:99:37:d9:ab:6b:3d:
50:4b:e5:da:0f:8b:29:65:0d:ff:d8:33:61:47:60:df:d3:fa:
45:2b:36:45:e8:c5:33:5a:ad:b5:3a:1b:ac:01:22:38:e9:44:
de:7f:ec:ec:1a:ee:65:d8:43:ac:24:75:1c:2a:17:e2:05:01:
60:23:1b:f8:ea:a8:c0:f4:b7:fc:e2:78:37:3c:42:38:e5:81:
d3:e5:00:cb:6e:77:cd:af:9f:f3:21:85:81:4d:af:9f:54:a4:
d4:94:ac:85:5d:75:e9:9b:48:9d:f6:6e:3b:4a:7e:e7:e6:ba:
41:08:b7:c1:c8:60:05:fc:cf:0b:74:35:b2:b2:93:0f:5e:a4:
de:25:79:6d:b6:e9:5a:6d:47:48:27:8f:c8:2b:51:a8:01:64:
6f:8d:46:44:a2:0a:5b:5b:22:ec:b7:db:54:9e:6c:67:3f:38:
9d:37:6d:ea:3e:bf:bd:98:a3:82:dc:66:47:0f:2e:ad:cc:5c:
1b:24:c1:33:04:f0:8d:b9:48:e7:f7:d3:56:e4:bf:c0:a4:0a:
43:9d:fc:24:12:ad:01:d4:87:2a:09:04:59:7f:0c:58:da:db:
a1:02:55:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:02 2024 by rpki-client on console-ams.rpki-client.org