Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/1-tRzElFneELzYY_LoHDUX-noZT4.roa
File: 1-tRzElFneELzYY_LoHDUX-noZT4.roa (raw, json)
Hash identifier: U8p93s0SuLIeKWgeCoF26+YB/03i53U7yzWuGpRXEWM=
Subject key identifier: FA:D4:73:12:51:67:78:42:F3:61:8F:CB:A0:70:D4:5F:E9:E8:65:3E
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 04A2CE4E
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/1-tRzElFneELzYY_LoHDUX-noZT4.roa
Signing time: Thu 14 Apr 2022 08:10:24 +0000
ROA not before: Thu 14 Apr 2022 08:10:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 176.52.132.0/22 maxlen: 24
176.52.128.0/22 maxlen: 24
176.52.136.0/22 maxlen: 24
176.52.140.0/22 maxlen: 24
176.52.144.0/22 maxlen: 24
176.52.152.0/22 maxlen: 24
176.52.148.0/22 maxlen: 24
176.52.156.0/22 maxlen: 24
92.53.180.0/22 maxlen: 24
92.53.188.0/22 maxlen: 24
185.93.104.0/22 maxlen: 24
92.53.172.0/22 maxlen: 24
92.53.168.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77778510 (0x4a2ce4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Apr 14 08:10:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fad4731251677842f3618fcba070d45fe9e8653e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:16:3f:ad:b8:e5:3c:81:c4:86:81:9a:f8:17:
e1:24:35:90:31:b7:76:76:20:be:b7:6c:15:3a:f5:
d4:39:07:2f:e9:5c:cd:4b:22:59:15:7a:bb:b7:b9:
cb:6d:a1:de:b0:cb:a0:d0:1b:d8:74:6f:28:f7:48:
85:60:dc:da:8b:3e:74:9d:0d:0d:86:fe:5b:bb:9c:
e1:21:b7:3c:ad:1f:fe:2d:f6:1f:1b:bd:ae:92:5d:
f8:41:49:31:cd:8d:bc:f9:f2:00:f7:b1:90:c0:ed:
80:61:4c:96:1c:5f:fd:7b:87:1b:19:3a:cf:f4:13:
81:b8:16:d8:47:1f:f4:d6:f4:67:63:8c:59:5b:f3:
76:b7:3e:6f:40:2a:d5:9e:28:f0:f5:29:9e:83:06:
52:7d:ef:5c:71:93:69:e8:21:95:bf:87:44:5c:ae:
05:c0:cf:90:04:b8:fb:56:bf:31:3d:f9:06:91:a8:
53:6b:d0:ff:c3:b4:a8:73:e7:36:75:8b:f5:5c:97:
d6:a8:d3:e3:fe:8a:1c:8a:53:ca:4f:f7:a9:a6:b0:
12:8b:5d:59:c4:58:dc:d0:47:c5:7c:ba:dc:bb:b5:
b7:a7:69:e2:f4:5d:95:f6:66:a1:62:40:33:9f:73:
8c:e4:d2:9c:5e:2a:58:37:77:c2:12:6b:4e:e3:69:
dd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D4:73:12:51:67:78:42:F3:61:8F:CB:A0:70:D4:5F:E9:E8:65:3E
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/1-tRzElFneELzYY_LoHDUX-noZT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.168.0/21
92.53.180.0/22
92.53.188.0/22
176.52.128.0/19
185.93.104.0/22
Signature Algorithm: sha256WithRSAEncryption
26:01:18:51:da:ed:69:99:0e:1a:36:09:f3:0a:45:8f:ba:0c:
3d:0e:2e:b9:a4:d0:fa:90:4b:1e:23:e5:61:00:fc:bd:d9:97:
62:a8:3f:18:b1:f2:11:f1:75:c1:dc:fe:7e:0f:fb:dd:c1:78:
0f:44:d7:25:f4:38:fa:c6:21:73:16:a3:9d:47:37:b6:76:a4:
f8:cd:85:8f:6b:82:6d:c9:e0:18:8d:6e:96:5d:64:26:5a:42:
4e:f8:3c:e7:ab:d7:51:4c:2e:48:ae:5e:24:2b:03:a8:57:e2:
a4:f0:43:56:5d:49:b3:14:a4:1d:f0:b3:54:39:0d:85:0f:95:
03:e0:07:30:ed:91:93:a1:fb:84:1d:8b:a0:68:9c:54:13:75:
b4:73:54:d9:c0:b1:eb:5c:71:50:a2:6e:e5:78:92:a6:6e:18:
90:67:85:83:4c:5a:f8:01:46:1c:6c:37:2a:9b:0c:c3:e4:8f:
08:6d:7a:8e:91:db:d0:6b:c1:b3:20:91:fd:52:d7:4a:73:32:
fe:3e:f2:37:7d:69:30:c8:00:c6:6d:9f:a4:a6:51:8d:25:0a:
96:e3:ba:2c:3c:f5:91:66:e0:d5:bc:95:f1:c2:dd:50:38:09:
74:fd:b2:17:b9:ac:54:2e:e2:d7:7c:e8:ea:19:34:4e:67:20:
85:db:99:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org