Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/tDPz6k5pOnQIi2DRtfSHhdSyq-Y.roa
File: tDPz6k5pOnQIi2DRtfSHhdSyq-Y.roa (raw, json)
Hash identifier: KRODJ4MkimttC4DdOCENiOXH+ePvZkmVQHppDoq1n5c=
Subject key identifier: B4:33:F3:EA:4E:69:3A:74:08:8B:60:D1:B5:F4:87:85:D4:B2:AB:E6
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 051BB7C6
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/tDPz6k5pOnQIi2DRtfSHhdSyq-Y.roa
Signing time: Fri 27 May 2022 13:53:13 +0000
ROA not before: Fri 27 May 2022 13:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 176.52.136.0/22 maxlen: 24
176.52.152.0/22 maxlen: 24
176.52.156.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85702598 (0x51bb7c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: May 27 13:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b433f3ea4e693a74088b60d1b5f48785d4b2abe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:93:1a:de:d2:ad:3e:a6:ae:a4:d7:d5:52:be:
a0:58:06:01:e8:57:da:f1:cd:10:bc:d7:3f:9b:68:
c5:be:54:ed:26:a8:e8:f2:c4:e3:39:c0:df:d0:12:
45:47:db:d8:cf:e2:0f:26:73:fa:fc:c4:08:c6:0a:
22:25:82:6c:d6:2f:ee:0f:0f:a1:83:67:ed:37:08:
d0:94:67:a9:e3:f7:e0:f5:0b:6e:d2:3c:4c:ba:dd:
2a:b7:06:9e:ef:d1:ab:3d:a3:03:f9:8a:c7:33:07:
37:36:66:cc:9f:89:e8:7a:9d:e8:7d:48:22:b5:1e:
99:f4:32:e1:14:08:ad:35:7f:ea:34:a9:46:d2:52:
c5:70:9e:90:f6:1d:b3:62:45:69:be:30:d4:c2:8f:
dc:37:bf:01:9d:e7:d3:3b:87:1b:43:32:fb:2f:30:
88:4f:7b:d1:eb:46:9c:dc:8a:c7:d7:89:99:ab:33:
24:05:e4:8c:43:12:6e:cd:0f:f5:7b:e7:97:51:11:
dd:8b:d9:98:50:b7:7e:c5:15:5b:70:53:e0:ae:97:
63:46:19:c6:8a:d0:f6:6b:c3:86:fe:d6:b9:92:c7:
b1:21:96:bb:b8:66:ab:b8:bf:4c:44:28:83:71:b3:
54:93:72:85:0d:6a:68:2a:c5:8d:7c:26:2c:85:ff:
d4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:33:F3:EA:4E:69:3A:74:08:8B:60:D1:B5:F4:87:85:D4:B2:AB:E6
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/tDPz6k5pOnQIi2DRtfSHhdSyq-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.52.136.0/22
176.52.152.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:87:57:7d:de:18:8a:5e:bc:57:70:b1:4e:46:aa:7f:07:8a:
34:af:e3:a6:61:1d:be:87:bd:5c:13:b9:c5:36:28:30:b6:b9:
9b:4e:3d:24:d5:e0:5b:19:f5:1e:eb:95:b4:ce:11:60:e6:03:
4d:65:a0:c8:f8:7f:34:0f:8b:95:50:92:46:88:c2:1c:68:86:
c8:c3:17:82:67:6f:5a:4d:0c:52:5e:b3:10:19:16:cb:bf:d2:
57:ed:85:5c:6d:a6:45:e6:8a:b6:1c:d1:5d:f2:76:a8:8f:9e:
c4:eb:e9:74:86:aa:59:f2:e5:63:5c:1a:ef:5f:fa:97:56:8b:
05:47:46:e6:56:54:bf:5b:b0:fa:a7:b2:e5:b4:57:05:04:e5:
68:e3:59:c6:4e:2f:e1:f8:51:33:39:ea:10:29:43:64:73:ff:
17:99:08:e2:60:a1:3c:95:d4:2b:ab:c6:5b:dd:46:ea:e1:c0:
6d:12:8a:24:80:99:c2:77:e7:74:ed:9c:15:d0:66:05:58:cd:
ed:2d:63:12:52:7d:fa:79:11:1e:48:4a:f4:5e:ee:01:9e:3e:
fc:fb:68:88:05:34:8c:a1:e8:2c:86:7f:82:6b:5d:52:28:50:
b2:c8:d1:ce:e6:e7:2a:e0:b5:f6:39:b6:30:40:8a:5f:ad:cb:
51:42:8b:7e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBRu3xjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTc3OWU1NjIzOGI2ZjJlYTA2OGVkZTRlMjBhZWYwMGM5MDQxMzJiMB4XDTIyMDUy
NzEzNTMxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQzM2YzZWE0ZTY5
M2E3NDA4OGI2MGQxYjVmNDg3ODVkNGIyYWJlNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOSTGt7SrT6mrqTX1VK+oFgGAehX2vHNELzXP5toxb5U7Sao
6PLE4znA39ASRUfb2M/iDyZz+vzECMYKIiWCbNYv7g8PoYNn7TcI0JRnqeP34PUL
btI8TLrdKrcGnu/Rqz2jA/mKxzMHNzZmzJ+J6Hqd6H1IIrUemfQy4RQIrTV/6jSp
RtJSxXCekPYds2JFab4w1MKP3De/AZ3n0zuHG0My+y8wiE970etGnNyKx9eJmasz
JAXkjEMSbs0P9Xvnl1ER3YvZmFC3fsUVW3BT4K6XY0YZxorQ9mvDhv7WuZLHsSGW
u7hmq7i/TEQog3GzVJNyhQ1qaCrFjXwmLIX/1PsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBS0M/PqTmk6dAiLYNG19IeF1LKr5jAfBgNVHSMEGDAWgBT+d55WI4tvLqBo
7eTiCu8AyQQTKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19uZWVWaU9MYnk2Z2FPM2s0Z3J2QU1rRUV5cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNGRlNTk4LTZiMDMtNGJlZi1hYjE0LTMzODk0OTEzZGNiNy8x
L3REUHo2azVwT25RSWkyRFJ0ZlNIaGRTeXEtWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NGRlNTk4LTZiMDMtNGJlZi1hYjE0LTMzODk0OTEzZGNiNy8xL19uZWVWaU9MYnk2
Z2FPM2s0Z3J2QU1rRUV5cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArA0iAMEA7A0mDANBgkqhkiG9w0B
AQsFAAOCAQEAbodXfd4Yil68V3CxTkaqfweKNK/jpmEdvoe9XBO5xTYoMLa5m049
JNXgWxn1HuuVtM4RYOYDTWWgyPh/NA+LlVCSRojCHGiGyMMXgmdvWk0MUl6zEBkW
y7/SV+2FXG2mReaKthzRXfJ2qI+exOvpdIaqWfLlY1wa71/6l1aLBUdG5lZUv1uw
+qey5bRXBQTlaONZxk4v4fhRMznqEClDZHP/F5kI4mChPJXUK6vGW91G6uHAbRKK
JICZwnfndO2cFdBmBVjN7S1jElJ9+nkRHkhK9F7uAZ4+/PtoiAU0jKHoLIZ/gmtd
UihQssjRzubnKuC19jm2MECKX63LUUKLfg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:05 2024 by rpki-client on console-ams.rpki-client.org