Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/jCe15mHM2TE-MkmNWEP8Lw7kPps.roa
File: jCe15mHM2TE-MkmNWEP8Lw7kPps.roa (raw, json)
Hash identifier: ZrLH4Gvu20BKA+J66tHgpzpYBopDXikh4MMXyShdJKA=
Subject key identifier: 8C:27:B5:E6:61:CC:D9:31:3E:32:49:8D:58:43:FC:2F:0E:E4:3E:9B
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 0B05928D
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/jCe15mHM2TE-MkmNWEP8Lw7kPps.roa
Signing time: Wed 04 May 2022 08:26:11 +0000
ROA not before: Wed 04 May 2022 08:26:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204175
IP address blocks: 185.74.195.0/24 maxlen: 24
185.74.194.0/24 maxlen: 24
185.74.193.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184914573 (0xb05928d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: May 4 08:26:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c27b5e661ccd9313e32498d5843fc2f0ee43e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c0:d1:83:1e:d4:27:3c:60:05:9c:3c:30:35:
de:cd:7e:43:f5:99:3f:8c:8a:c0:64:c4:2a:b0:f6:
3b:b3:f2:2a:3e:4a:50:07:79:d9:28:19:f3:be:ac:
ab:19:03:de:5f:a0:ad:47:36:8d:94:ab:a2:74:81:
aa:9d:94:1f:df:3a:ee:1d:8b:e7:8a:b6:de:2c:11:
ef:e3:7a:1f:c9:d4:9a:bb:f8:dd:a2:62:08:f1:f2:
d8:4c:82:52:91:db:a3:55:99:12:16:dd:1f:9e:72:
4b:23:95:eb:40:1f:a9:bb:fe:50:b6:1b:24:f2:96:
f8:91:85:99:54:a7:2a:7c:05:41:1a:ac:c7:0b:cf:
65:ce:c6:ba:25:b1:55:06:9e:9a:00:1f:15:e1:77:
50:ac:3f:1f:e5:ee:f3:89:a8:68:f1:96:79:45:b9:
02:f6:30:ac:d1:45:5b:85:b4:79:30:96:79:60:4d:
f4:06:4e:d4:48:87:ea:2f:9f:9d:ff:24:a8:b9:16:
a3:7c:1d:db:c8:4b:55:86:4c:63:11:7a:bd:06:ac:
2b:ad:78:09:bc:5a:e6:ab:52:19:cc:4b:6b:29:40:
6e:e5:0c:55:2c:a2:97:f3:3f:b9:c1:77:bc:22:21:
03:b0:51:ae:c9:cc:90:50:0d:08:40:a8:3f:4e:5c:
0a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:27:B5:E6:61:CC:D9:31:3E:32:49:8D:58:43:FC:2F:0E:E4:3E:9B
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/jCe15mHM2TE-MkmNWEP8Lw7kPps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.193.0-185.74.195.255
Signature Algorithm: sha256WithRSAEncryption
3c:4d:31:d0:63:39:1f:85:ec:5c:12:87:2d:d5:d4:75:3e:b1:
68:43:f2:f2:25:34:88:b7:36:aa:3a:11:3b:e9:9c:e7:0d:11:
a4:2f:c3:68:d1:bf:d3:9d:53:4b:40:c6:94:eb:e9:d0:c8:57:
b5:ee:b5:21:c5:be:17:17:4a:8e:c8:58:7f:2a:0e:0f:c4:f4:
48:7c:d8:b8:3c:5e:c0:40:fa:18:1d:cb:65:4d:bd:56:59:85:
ac:ce:76:6b:c4:f3:eb:3d:3c:a4:8f:81:3b:26:58:4b:61:76:
e9:da:17:c0:2d:37:51:04:f0:92:57:b2:61:b0:fe:09:45:21:
7a:14:18:e4:e9:a0:e8:6c:31:31:57:56:f6:33:9d:39:20:ce:
0f:6b:18:d0:d9:0a:77:4e:ee:17:65:57:c7:b5:33:11:a0:aa:
8b:36:5c:7f:fc:68:84:e2:f7:ed:83:80:46:af:6d:c4:a1:be:
e4:aa:06:32:ce:d9:5a:da:7d:13:13:86:bb:f4:43:3f:11:34:
5d:ae:ac:5c:08:d7:96:9a:0a:db:e5:cd:06:46:3b:bc:aa:cd:
51:1b:b5:fc:1f:3b:02:ec:52:20:6c:28:28:91:c8:9e:44:d3:
3e:f0:6d:a4:32:6a:3c:14:a0:87:5b:c3:44:47:d2:4c:7d:2b:
b3:01:10:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:38 2024 by rpki-client on console-fra.rpki-client.org