Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/rowDZE-z16LtGTgQpks0uMAx68I.roa
File: rowDZE-z16LtGTgQpks0uMAx68I.roa (raw, json)
Hash identifier: 3UfM0R+l+QRJVCoY2x3E1PjHW/fCR75cVG7lA4K546I=
Subject key identifier: AE:8C:03:64:4F:B3:D7:A2:ED:19:38:10:A6:4B:34:B8:C0:31:EB:C2
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 018D0D615E3EF30A344386FD5BC5FF8C4604
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/rowDZE-z16LtGTgQpks0uMAx68I.roa
Signing time: Mon 15 Jan 2024 13:48:21 +0000
ROA not before: Mon 15 Jan 2024 13:48:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201453
IP address blocks: 185.183.17.0/24 maxlen: 24
185.183.16.0/24 maxlen: 24
185.183.16.0/22 maxlen: 22
185.183.18.0/24 maxlen: 24
185.183.19.0/24 maxlen: 24
185.219.216.0/22 maxlen: 22
185.178.83.0/24 maxlen: 24
185.178.82.0/24 maxlen: 24
185.178.80.0/22 maxlen: 22
185.178.81.0/24 maxlen: 24
185.178.80.0/24 maxlen: 24
185.225.148.0/24 maxlen: 24
185.163.166.0/24 maxlen: 24
185.163.165.0/24 maxlen: 24
185.163.164.0/24 maxlen: 24
185.163.164.0/22 maxlen: 22
185.163.167.0/24 maxlen: 24
185.194.24.0/24 maxlen: 24
185.74.192.0/24 maxlen: 24
185.192.182.0/24 maxlen: 24
185.192.181.0/24 maxlen: 24
185.192.180.0/24 maxlen: 24
185.194.27.0/24 maxlen: 24
185.194.26.0/24 maxlen: 24
2a05:4ac0::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0d:61:5e:3e:f3:0a:34:43:86:fd:5b:c5:ff:8c:46:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 15 13:48:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae8c03644fb3d7a2ed193810a64b34b8c031ebc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:20:21:9a:47:01:ab:b9:d7:fc:8e:26:2c:ff:
25:32:da:d3:d3:fb:b6:a9:e8:85:77:be:67:aa:93:
80:e8:b2:84:72:8e:d1:6e:33:ea:7b:26:3e:a3:34:
73:77:ad:7d:5c:57:b6:73:7b:45:67:31:7a:0e:11:
ff:60:f8:d0:10:02:bc:b9:d3:4a:17:e9:d8:e0:c3:
03:91:ff:68:e5:2b:7b:02:e4:b5:2d:23:3c:e4:f0:
a3:fb:52:78:6d:e2:b6:87:ae:0c:91:f0:02:f5:e5:
2c:8c:5f:fb:ae:ce:59:b6:fa:13:49:44:00:c4:13:
2f:3f:f7:f6:1f:8e:ef:5a:8a:1b:c0:b9:bc:7a:86:
27:ed:99:b4:34:96:d1:d6:cd:64:82:93:fa:32:25:
1b:63:41:a4:71:b2:b7:ca:4f:b6:d3:2b:bc:1c:97:
02:1a:a6:56:87:99:71:5a:4e:15:ac:6f:0b:44:8a:
b9:e4:dd:0b:ca:8b:22:63:4c:4e:0d:ae:8a:ef:b1:
b1:15:73:aa:87:1c:10:ce:9e:49:a1:7b:92:62:9e:
cf:07:b1:2e:12:53:8c:e1:06:ce:ae:85:a7:d3:d2:
1b:0e:34:5b:ee:78:cf:93:13:e1:99:9e:2f:b3:47:
44:c8:6b:39:08:9f:50:5b:3a:2e:71:0e:0f:2b:e2:
dc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8C:03:64:4F:B3:D7:A2:ED:19:38:10:A6:4B:34:B8:C0:31:EB:C2
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/rowDZE-z16LtGTgQpks0uMAx68I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.192.0/24
185.163.164.0/22
185.178.80.0/22
185.183.16.0/22
185.192.180.0-185.192.182.255
185.194.24.0/24
185.194.26.0/23
185.219.216.0/22
185.225.148.0/24
IPv6:
2a05:4ac0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:90:c9:22:08:66:c1:90:26:67:ee:dd:50:8a:c8:1a:08:dd:
6c:c5:03:f8:2c:67:69:57:73:81:83:8f:ab:3a:a7:b9:ee:af:
62:16:cc:4e:53:64:c6:22:cc:11:9a:ec:2e:c5:12:97:2b:63:
ed:46:ca:3a:2b:45:3f:e8:62:e6:8d:b8:d2:4a:8f:4b:1f:58:
83:10:c9:ab:7e:6e:6b:35:58:a7:76:a6:37:5c:3f:9c:76:6e:
a4:86:ac:91:6d:85:64:8a:43:67:f8:b1:81:95:6c:1c:07:d2:
1e:77:c0:fe:43:58:29:52:58:88:14:6f:e9:8f:34:1f:1d:61:
4a:55:e9:fd:3f:7a:1e:71:a0:76:5a:c0:27:e9:15:80:b5:f3:
08:a0:d2:5e:e9:33:98:bd:df:7b:62:76:d8:f1:91:96:68:18:
71:7c:f6:76:9f:2d:7c:7a:04:4b:4e:93:76:76:ac:a1:c9:27:
cc:9d:2b:5d:a1:81:83:2c:a8:0e:9d:99:7c:0f:50:0f:4e:be:
76:c4:ef:05:9b:5b:ac:0e:1b:56:af:c7:ce:c4:c5:7c:74:25:
65:76:09:3c:9b:77:9e:47:f2:64:54:b5:bd:c0:3b:e7:44:ae:
15:51:92:32:3a:52:55:f4:3b:9d:18:87:5b:94:34:a8:6f:79:
be:78:f2:56
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgISAY0NYV4+8wo0Q4b9W8X/jEYEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYTMxODY1OTc3NDJhOTI2Y2QyNjUwNGUxZWQ3NmY4NTQz
ZmRiMjYwHhcNMjQwMTE1MTM0ODIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZThjMDM2NDRmYjNkN2EyZWQxOTM4MTBhNjRiMzRiOGMwMzFlYmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCAhmkcBq7nX/I4mLP8lMtrT0/u2
qeiFd75nqpOA6LKEco7RbjPqeyY+ozRzd619XFe2c3tFZzF6DhH/YPjQEAK8udNK
F+nY4MMDkf9o5St7AuS1LSM85PCj+1J4beK2h64MkfAC9eUsjF/7rs5ZtvoTSUQA
xBMvP/f2H47vWoobwLm8eoYn7Zm0NJbR1s1kgpP6MiUbY0GkcbK3yk+20yu8HJcC
GqZWh5lxWk4VrG8LRIq55N0LyosiY0xODa6K77GxFXOqhxwQzp5JoXuSYp7PB7Eu
ElOM4QbOroWn09IbDjRb7njPkxPhmZ4vs0dEyGs5CJ9QWzoucQ4PK+LcuwIDAQAB
o4ICUDCCAkwwHQYDVR0OBBYEFK6MA2RPs9ei7Rk4EKZLNLjAMevCMB8GA1UdIwQY
MBaAFGujGGWXdCqSbNJlBOHtdvhUP9smMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTZNWVpaZDBLcEpzMG1VRTRlMTItRlFfMnlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi85ZDU5MTAtOWY1ZS00NDZjLThkM2Mt
YmMwMDdmMmRhYzI0LzEvcm93RFpFLXoxNkx0R1RnUXBrczB1TUF4NjhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi85ZDU5MTAtOWY1ZS00NDZjLThkM2MtYmMwMDdmMmRhYzI0
LzEvYTZNWVpaZDBLcEpzMG1VRTRlMTItRlFfMnlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTBEBAIAATA+AwQAuUrAAwQC
uaOkAwQCubJQAwQCubcQMAwDBAK5wLQDBAC5wLYDBAC5whgDBAG5whoDBAK529gD
BAC54ZQwDQQCAAIwBwMFACoFSsAwDQYJKoZIhvcNAQELBQADggEBAAyQySIIZsGQ
Jmfu3VCKyBoI3WzFA/gsZ2lXc4GDj6s6p7nur2IWzE5TZMYizBGa7C7FEpcrY+1G
yjorRT/oYuaNuNJKj0sfWIMQyat+bms1WKd2pjdcP5x2bqSGrJFthWSKQ2f4sYGV
bBwH0h53wP5DWClSWIgUb+mPNB8dYUpV6f0/eh5xoHZawCfpFYC18wig0l7pM5i9
33tidtjxkZZoGHF89nafLXx6BEtOk3Z2rKHJJ8ydK12hgYMsqA6dmXwPUA9OvnbE
7wWbW6wOG1avx87ExXx0JWV2CTybd55H8mRUtb3AO+dErhVRkjI6UlX0O50Yh1uU
NKhveb548lY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:50 2024 by rpki-client on console-ams.rpki-client.org