Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/318a26-52f5-4dc1-aa47-af1e2df5bdc3/1/vkJfRVXNTxQ_SX9Sg3OWuArm-to.roa
File: vkJfRVXNTxQ_SX9Sg3OWuArm-to.roa (raw, json)
Hash identifier: b1JRPOa6lMFcIFoRCxQvBWyMWEIwB2z3crClQsYPnsI=
Subject key identifier: BE:42:5F:45:55:CD:4F:14:3F:49:7F:52:83:73:96:B8:0A:E6:FA:DA
Certificate issuer: /CN=d4181de1b32b7c1050d0b0ca6d640d463a5352f4
Certificate serial: 018BD302A516E2FF95994E4153D0101AC139
Authority key identifier: D4:18:1D:E1:B3:2B:7C:10:50:D0:B0:CA:6D:64:0D:46:3A:53:52:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Bgd4bMrfBBQ0LDKbWQNRjpTUvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/318a26-52f5-4dc1-aa47-af1e2df5bdc3/1/vkJfRVXNTxQ_SX9Sg3OWuArm-to.roa
Signing time: Wed 15 Nov 2023 12:44:07 +0000
ROA not before: Wed 15 Nov 2023 12:44:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199839
IP address blocks: 151.216.45.0/24 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d3:02:a5:16:e2:ff:95:99:4e:41:53:d0:10:1a:c1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4181de1b32b7c1050d0b0ca6d640d463a5352f4
Validity
Not Before: Nov 15 12:44:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be425f4555cd4f143f497f52837396b80ae6fada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:82:2a:45:28:28:fc:1b:98:83:01:1f:31:3c:
d7:bd:d6:00:9b:29:54:ef:dd:28:89:fe:76:a8:3d:
20:6a:56:4e:19:09:e8:e6:fd:ca:13:45:02:9d:9e:
75:43:87:3b:8e:62:06:e9:0d:9a:ee:0f:db:7b:8d:
45:6a:66:0b:8b:83:21:80:2f:e2:37:43:9d:f9:b6:
15:c0:09:d2:d6:95:5a:67:b8:0d:b2:02:64:b3:a1:
a9:c3:53:eb:fb:1b:31:94:71:c8:67:d6:f7:ff:16:
00:b6:b5:c8:37:71:1b:26:b4:40:e0:09:30:d7:4d:
4e:69:31:39:99:24:c5:b0:2d:28:a9:2b:44:07:be:
1c:52:5d:c1:c6:59:0d:c5:d1:9f:21:fc:53:00:e1:
33:02:6b:ac:55:6f:fb:6b:b0:df:2a:1f:b1:62:be:
c8:25:7a:3a:38:d2:e3:ac:f9:08:23:e8:41:76:3e:
d0:49:45:04:b8:89:40:a0:b1:93:16:dc:80:d6:1d:
f0:10:b3:4f:b9:34:f8:0e:d6:19:61:43:29:21:a7:
8c:18:99:76:06:59:d6:72:98:40:47:cc:b2:1c:52:
93:3e:7c:cf:cb:27:cb:86:c5:36:9b:25:2f:5e:36:
85:a7:e9:8a:8b:9d:67:1f:04:47:45:05:b7:00:6d:
35:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:42:5F:45:55:CD:4F:14:3F:49:7F:52:83:73:96:B8:0A:E6:FA:DA
X509v3 Authority Key Identifier:
keyid:D4:18:1D:E1:B3:2B:7C:10:50:D0:B0:CA:6D:64:0D:46:3A:53:52:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Bgd4bMrfBBQ0LDKbWQNRjpTUvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/318a26-52f5-4dc1-aa47-af1e2df5bdc3/1/vkJfRVXNTxQ_SX9Sg3OWuArm-to.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/318a26-52f5-4dc1-aa47-af1e2df5bdc3/1/1Bgd4bMrfBBQ0LDKbWQNRjpTUvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.45.0/24
Signature Algorithm: sha256WithRSAEncryption
35:be:0a:71:db:fe:0b:b2:31:29:87:2c:d6:aa:17:75:b3:d0:
e7:59:1b:3d:78:8c:c1:f5:ab:41:64:94:e0:42:2d:cf:b2:e0:
40:aa:75:43:7c:b0:df:cd:64:bd:7d:86:6e:35:e9:72:89:28:
12:fe:23:b3:39:22:e7:eb:51:50:22:ba:0b:d9:44:e4:89:ea:
14:42:78:49:c1:ee:db:e7:b7:c6:68:e3:21:10:9e:6a:53:70:
c6:24:b3:fc:eb:a4:96:4b:d3:0f:14:a1:7e:60:69:56:74:b0:
77:bd:28:03:b1:ef:d6:2b:fb:c3:72:59:fc:9c:6b:bd:68:00:
2d:8c:53:94:2a:2b:e4:58:4e:46:d0:a0:ce:b6:7a:ae:b6:5b:
e7:19:2e:bc:67:78:49:c4:89:3b:55:4a:27:a6:13:56:6c:be:
0c:b2:91:82:b4:37:c4:f5:3b:2b:1a:db:bb:17:4d:ba:c3:c9:
bd:44:b0:ef:0e:26:ca:24:be:35:3b:09:89:0b:93:70:ca:03:
7e:1e:6c:fd:65:43:14:39:d3:bc:ac:0e:5a:ed:93:66:71:de:
3e:a1:3f:60:4d:0c:16:f1:57:27:4b:5e:f9:14:9e:f1:03:02:
bc:21:a0:4b:b8:ee:9b:f6:32:8c:7e:b2:74:59:48:12:81:bb:
7e:46:08:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:51 2024 by rpki-client on console-ams.rpki-client.org