Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/Ses58YInr5hDOJsyeFFs-70UQiY.roa
File: Ses58YInr5hDOJsyeFFs-70UQiY.roa (raw, json)
Hash identifier: qwOtXySw7yBjGGGPDHTNEcoQzJwGBxnnfZY22Ay+gfU=
Subject key identifier: 49:EB:39:F1:82:27:AF:98:43:38:9B:32:78:51:6C:FB:BD:14:42:26
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 04CF0B46
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/Ses58YInr5hDOJsyeFFs-70UQiY.roa
Signing time: Sat 30 Apr 2022 13:45:56 +0000
ROA not before: Sat 30 Apr 2022 13:45:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 176.52.132.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80677702 (0x4cf0b46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Apr 30 13:45:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49eb39f18227af9843389b3278516cfbbd144226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7a:9f:a4:c0:3e:b8:e9:78:19:c1:0c:f2:17:
82:44:34:6a:db:59:bd:77:5a:8f:7c:11:db:71:a9:
79:8d:6f:4c:1e:cf:3c:7a:60:1f:e3:44:bc:f9:88:
96:e3:34:cc:6d:0b:58:f9:ca:95:f3:b3:5b:39:6d:
a3:cd:30:11:86:90:30:3b:3a:3d:48:ac:0c:b0:d4:
80:77:9d:d7:60:80:9b:1c:8b:74:c7:de:78:0d:24:
b5:ff:14:bd:e7:a0:96:c1:7d:65:fa:20:d6:80:c4:
c1:07:fd:94:61:98:01:a2:2d:ef:2c:ff:a3:7c:5a:
ff:2a:89:8d:e5:22:cb:30:96:0d:99:8a:10:9c:70:
51:53:7f:c3:58:91:83:60:00:95:c0:07:51:6d:00:
ce:a6:bd:57:d1:48:b0:d5:53:ad:7f:d1:e9:8a:10:
a3:40:3b:4a:af:23:e5:ab:72:89:2b:d7:cf:df:e4:
87:04:7d:19:40:fd:3e:05:d8:3e:e6:e5:d8:65:f8:
59:55:51:2c:77:93:d0:2b:c2:8a:a8:81:13:c2:7f:
3c:71:fc:21:e2:33:94:a6:63:9e:15:a6:cb:b5:95:
de:f6:65:d0:0e:a5:32:6f:ce:bb:16:e0:70:ac:17:
79:8d:42:74:ea:b6:4d:76:97:2d:ac:a6:e5:20:5b:
9a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:EB:39:F1:82:27:AF:98:43:38:9B:32:78:51:6C:FB:BD:14:42:26
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/Ses58YInr5hDOJsyeFFs-70UQiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.52.132.0/22
Signature Algorithm: sha256WithRSAEncryption
26:92:3c:e4:25:7d:e0:99:95:49:a6:11:ab:83:b3:c5:68:fb:
19:76:32:09:ec:76:84:15:cd:51:7a:c3:0e:46:da:0d:39:aa:
44:14:0b:26:39:62:93:ee:b3:81:e1:4b:67:98:2f:b7:da:91:
27:0d:dc:15:70:5f:b4:8e:e0:d3:cb:72:57:e0:8b:d1:1a:a7:
49:e9:81:b7:9b:8b:95:fd:08:ee:67:32:18:a7:08:33:28:4a:
60:46:d7:4a:95:74:1a:42:b2:d0:f6:f4:f9:44:73:38:33:3f:
2f:de:f0:c0:31:99:f7:2b:72:2a:b0:27:f1:20:91:ae:e7:e1:
20:b7:85:8b:ec:21:27:e4:31:d7:a8:fd:7d:3a:ed:9a:15:bc:
60:8f:2b:9a:0b:a6:fc:84:77:6b:7e:ed:64:13:be:86:99:d3:
20:25:08:32:49:d2:82:ac:65:d9:4f:b6:d0:bb:a1:f0:ae:86:
59:26:18:42:53:a1:50:1b:c0:64:a8:e6:14:79:e8:c7:2a:0e:
4c:ac:04:4a:ad:f4:18:23:59:91:65:81:f5:ef:f1:d1:c7:31:
91:a1:7d:97:88:f6:ad:77:99:2b:7f:75:3a:89:fb:6e:48:28:
05:ae:63:9d:64:0f:90:45:23:72:41:33:60:a3:51:19:15:00:
ae:4c:19:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org