Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/azRWIrBle0BaKH4MVyiXLBYMxvc.roa
File: azRWIrBle0BaKH4MVyiXLBYMxvc.roa (raw, json)
Hash identifier: 0iaJDP1I231mqOEX1Twy43NJ51iJJFI1vLJG0l3SAEM=
Subject key identifier: 6B:34:56:22:B0:65:7B:40:5A:28:7E:0C:57:28:97:2C:16:0C:C6:F7
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 0185A0281344F2F259FE3982B52D5DC0E1BE
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/azRWIrBle0BaKH4MVyiXLBYMxvc.roa
Signing time: Wed 11 Jan 2023 09:27:38 +0000
ROA not before: Wed 11 Jan 2023 09:27:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201453
IP address blocks: 185.183.17.0/24 maxlen: 24
185.183.16.0/24 maxlen: 24
185.183.16.0/22 maxlen: 22
185.183.19.0/24 maxlen: 24
185.183.18.0/24 maxlen: 24
185.219.216.0/22 maxlen: 22
185.178.83.0/24 maxlen: 24
185.178.82.0/24 maxlen: 24
185.178.80.0/22 maxlen: 22
185.178.81.0/24 maxlen: 24
185.178.80.0/24 maxlen: 24
185.225.148.0/24 maxlen: 24
185.163.166.0/24 maxlen: 24
185.163.165.0/24 maxlen: 24
185.163.164.0/24 maxlen: 24
185.163.164.0/22 maxlen: 22
185.163.167.0/24 maxlen: 24
185.224.95.0/24 maxlen: 24
185.224.94.0/24 maxlen: 24
185.194.24.0/22 maxlen: 22
185.74.192.0/24 maxlen: 24
185.74.192.0/22 maxlen: 22
185.192.183.0/24 maxlen: 24
185.192.182.0/24 maxlen: 24
185.192.180.0/22 maxlen: 22
185.192.181.0/24 maxlen: 24
185.192.180.0/24 maxlen: 24
185.194.25.0/24 maxlen: 24
185.194.27.0/24 maxlen: 24
185.194.26.0/24 maxlen: 24
2a05:4ac0::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:28:13:44:f2:f2:59:fe:39:82:b5:2d:5d:c0:e1:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 11 09:27:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b345622b0657b405a287e0c5728972c160cc6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f0:5c:08:0c:5f:81:4e:42:7c:8c:77:ca:b7:
7b:91:94:97:39:4e:56:27:d9:36:5d:9a:96:95:a7:
32:41:61:0c:a8:9e:94:d7:55:5c:36:72:76:80:93:
4e:78:42:b7:38:64:71:e8:22:0b:66:de:65:c8:10:
6d:ef:f3:0b:a0:cb:18:4e:58:46:cc:30:9b:4d:47:
4d:e4:09:31:de:c9:19:6b:2d:ed:52:7a:94:f2:4f:
cd:0f:0b:59:af:c9:a1:f8:7f:2b:96:df:48:66:be:
79:03:8e:f1:98:dc:ce:4c:b8:5c:8d:9a:b9:44:79:
34:55:32:dc:47:5a:db:01:8f:b1:72:5b:b3:15:21:
16:b6:1a:82:c7:9b:53:09:87:cc:1e:69:9b:af:17:
49:b3:1d:94:22:22:4f:ea:88:1a:0d:70:b1:7b:4b:
24:0f:d0:67:78:cd:5b:a8:da:b4:f3:f7:f8:1b:df:
02:39:65:b9:07:8b:c4:7b:0c:e0:54:1e:36:a9:d0:
53:9d:0f:65:22:85:dc:25:a9:0d:0c:27:80:2d:fb:
12:76:60:65:1b:a5:35:45:8c:b5:b4:03:03:b8:9f:
e8:ef:d7:7f:2d:d7:f3:06:73:c2:87:0e:8c:a5:4b:
d1:af:db:11:5b:5a:cf:16:29:34:52:a7:6f:d2:93:
d8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:34:56:22:B0:65:7B:40:5A:28:7E:0C:57:28:97:2C:16:0C:C6:F7
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/azRWIrBle0BaKH4MVyiXLBYMxvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.192.0/22
185.163.164.0/22
185.178.80.0/22
185.183.16.0/22
185.192.180.0/22
185.194.24.0/22
185.219.216.0/22
185.224.94.0/23
185.225.148.0/24
IPv6:
2a05:4ac0::/32
Signature Algorithm: sha256WithRSAEncryption
b1:53:fb:47:44:35:28:1a:ef:07:58:9b:ad:7d:12:c0:c3:cd:
14:52:fb:be:de:00:90:75:05:55:1c:19:01:95:61:da:e4:6d:
f4:6a:a3:f3:fc:64:74:14:a6:e2:17:92:4c:06:65:e7:ee:6b:
87:a8:f4:c7:5f:e8:34:23:c1:a4:cc:28:c6:e1:df:45:ea:20:
91:a0:11:e1:96:99:92:e3:22:3e:01:3d:3d:78:34:3d:c2:43:
b1:0a:7a:e8:78:7e:88:c8:4e:06:df:94:5c:fe:3f:1f:3d:46:
fb:cd:e9:77:ea:8a:fa:97:dd:74:ee:47:88:28:82:ca:67:7d:
ff:a1:d0:b9:e7:9b:a9:55:da:1b:de:76:82:3b:06:4f:3d:a2:
46:da:9a:ea:f1:1c:c1:ff:9a:10:28:1b:87:8f:26:fb:b1:3e:
12:20:18:b2:4e:0c:5e:58:be:75:48:bd:56:9a:93:58:9f:62:
e4:74:88:4d:e0:00:34:79:42:14:18:f7:32:51:1d:c9:b5:0c:
b4:b6:7f:d8:da:e1:95:74:d4:09:df:d1:cf:71:4d:0d:a5:e3:
55:70:d5:c1:99:35:51:61:69:4b:3b:44:39:aa:21:73:e1:cd:
ff:b3:2e:8d:25:40:ab:b3:a0:c0:fc:f5:1c:f6:a1:84:ba:d4:
af:27:1c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:38 2024 by rpki-client on console-fra.rpki-client.org