Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/vwHVbtQ0xBIapq6MiAHURTt7Ii0.roa
File: vwHVbtQ0xBIapq6MiAHURTt7Ii0.roa (raw, json)
Hash identifier: 5bTqtIYk5F8s5r/swtQO42Z0IJgBctzOQboKsvd0irM=
Subject key identifier: BF:01:D5:6E:D4:34:C4:12:1A:A6:AE:8C:88:01:D4:45:3B:7B:22:2D
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 2FB4FA64
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/vwHVbtQ0xBIapq6MiAHURTt7Ii0.roa
Signing time: Sat 01 Jan 2022 10:04:47 +0000
ROA not before: Sat 01 Jan 2022 10:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9033
IP address blocks: 194.122.80.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 800389732 (0x2fb4fa64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 1 10:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf01d56ed434c4121aa6ae8c8801d4453b7b222d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a3:21:51:84:ca:e1:b3:49:f5:1d:b4:ec:85:
db:3c:64:19:3a:21:18:3e:e9:68:1e:42:c5:a5:6a:
26:31:67:1b:bf:b5:f3:f6:a1:7f:28:b3:7c:2a:43:
ae:c5:0f:cc:2f:8c:45:d2:da:a2:f7:0f:d2:a6:44:
1f:4d:40:b5:40:d8:1f:ef:e2:29:6b:2b:13:fc:b2:
56:f3:bc:7c:b8:42:c3:d8:a4:c1:7f:e1:a6:33:0d:
82:72:f5:48:6c:dd:3e:e3:b6:86:be:08:76:25:15:
06:a8:13:19:6f:2a:99:5d:a9:83:a2:0b:76:76:9f:
6a:75:7f:d5:0d:52:ef:c3:d0:db:d0:e7:63:fc:07:
c3:bf:dd:36:1d:57:bc:bf:86:85:d4:88:06:a2:69:
8e:cc:e7:a6:85:e3:7e:82:3c:5b:74:b7:f3:7b:90:
5a:57:49:10:ee:6b:00:f1:6b:40:4d:9d:fc:eb:5b:
5e:06:45:61:00:35:12:97:c5:47:9b:d8:c7:6b:3d:
d8:72:c7:8d:c1:b7:5f:57:b7:c7:b0:e8:2e:d0:df:
ce:25:49:39:bf:f3:07:7f:74:e1:09:f4:25:9b:9b:
04:95:5c:11:f2:ec:5c:a3:5b:80:b6:ec:00:30:f8:
95:62:54:b7:54:b2:74:a8:ab:25:7c:4b:64:3f:48:
94:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:01:D5:6E:D4:34:C4:12:1A:A6:AE:8C:88:01:D4:45:3B:7B:22:2D
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/vwHVbtQ0xBIapq6MiAHURTt7Ii0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.122.80.0/22
Signature Algorithm: sha256WithRSAEncryption
58:92:c4:fe:7a:d4:b9:ba:62:bd:98:ff:a5:d2:65:ba:9f:0c:
e0:15:9a:4d:b0:08:0f:cd:37:cb:2c:cc:7e:72:ad:87:0c:f3:
15:3c:9a:6f:6e:7d:e0:fd:de:cb:38:a6:e0:21:9d:62:32:5b:
a3:27:42:7d:bc:44:3b:00:50:c0:03:07:be:93:6d:7f:2c:c6:
91:39:92:e4:b4:94:5f:08:d6:a1:e6:63:ad:e8:58:a8:0f:94:
3b:75:c0:d9:8f:c3:21:b5:90:47:4a:4e:0e:eb:8d:dc:3c:2c:
ef:e7:a8:c1:e6:b4:4b:35:12:e9:6f:f6:ba:0f:d8:a9:5a:d5:
a0:21:ea:70:99:c9:7e:20:13:43:51:2b:01:28:bd:27:f8:fb:
da:05:cb:05:ed:f3:96:9c:e3:40:d6:4f:84:f4:a5:5b:f3:23:
f5:2c:d3:28:aa:5f:5d:5f:ad:1d:c2:eb:8d:5e:01:25:a0:8b:
f2:65:0d:24:6a:bf:e3:74:e4:4d:59:8d:56:44:6a:4c:6a:89:
c7:c3:86:3d:b3:cb:7e:67:76:1d:75:30:c3:65:48:b8:98:49:
1c:18:1d:ca:b3:55:de:f2:4c:dc:cd:ce:64:bf:29:fe:4b:ca:
a6:74:ed:49:73:69:53:c1:f9:cc:7d:00:f2:85:80:2b:a4:ff:
97:18:e1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org