Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/yu82FOaCrrRWoB2SIvODX-YORg8.roa
File: yu82FOaCrrRWoB2SIvODX-YORg8.roa (raw, json)
Hash identifier: u0rUzXy20p3wsGGZFSeIwB3ewyxbQiOrjwdU/IBFznk=
Subject key identifier: CA:EF:36:14:E6:82:AE:B4:56:A0:1D:92:22:F3:83:5F:E6:0E:46:0F
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018335CFBC8BEB71B5629C49E7B77D0757BA
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/yu82FOaCrrRWoB2SIvODX-YORg8.roa
Signing time: Tue 13 Sep 2022 07:45:50 +0000
ROA not before: Tue 13 Sep 2022 07:45:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 176.52.148.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:cf:bc:8b:eb:71:b5:62:9c:49:e7:b7:7d:07:57:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Sep 13 07:45:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=caef3614e682aeb456a01d9222f3835fe60e460f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:00:27:e4:75:b1:bb:60:4d:d5:0d:99:08:74:
a5:07:0c:5c:66:cd:3b:c5:e5:4e:5b:8d:e0:22:8e:
21:ff:37:a9:e2:2d:35:e6:51:70:18:11:1a:0e:0f:
12:d9:10:bb:7d:4b:7c:84:08:a6:6d:fd:22:ac:ff:
71:90:19:03:fc:84:cb:8e:21:7f:4a:93:67:0e:74:
6f:03:76:8c:8d:c5:19:67:d2:6b:e3:05:93:93:61:
eb:bb:82:03:d4:bf:74:0c:d9:96:5a:45:a1:d8:ca:
90:fb:68:15:29:b1:c7:25:a0:ef:fa:35:31:50:26:
9a:3d:f4:cf:e0:f8:c6:1e:1e:84:d8:e2:1e:cc:fa:
33:53:b1:cc:48:71:30:49:03:a4:50:f4:29:bb:41:
eb:7c:a2:a1:de:0b:23:6c:b5:09:fb:81:4b:63:f6:
a0:7f:7d:24:4c:fc:2c:f4:72:8d:6e:9d:4a:a8:9d:
bf:7c:92:28:e1:8f:e3:03:a0:1c:51:c1:a7:80:f5:
70:ad:fa:f8:1c:ef:16:d9:b6:b0:ec:d4:20:78:4f:
dc:82:64:b3:4d:3b:d2:f3:b0:74:10:ad:b0:fa:74:
6c:dd:cd:44:5d:6e:66:6a:86:70:80:b9:ab:53:05:
ea:d2:3e:34:48:18:f9:21:0f:25:28:43:65:20:76:
9c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:EF:36:14:E6:82:AE:B4:56:A0:1D:92:22:F3:83:5F:E6:0E:46:0F
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/yu82FOaCrrRWoB2SIvODX-YORg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.52.148.0/22
Signature Algorithm: sha256WithRSAEncryption
03:ef:f0:0c:32:22:f2:09:ed:42:93:83:c6:ed:04:6c:39:48:
23:06:ca:6c:fe:2e:fc:30:a1:6f:f9:55:98:db:d4:81:2c:7e:
a3:0c:33:7a:5e:81:5d:c9:18:6d:15:0a:19:79:50:69:6d:ac:
36:1e:11:a5:2c:3a:c1:d7:6a:44:ac:7d:92:06:1c:25:d6:f9:
fb:ee:87:e2:1d:6a:e5:94:a2:85:b5:cb:1d:79:e9:f0:2a:68:
b1:a5:44:5a:0c:b5:37:b3:f8:1a:a3:d3:22:4f:00:4a:70:20:
5b:8f:8f:38:b8:76:11:39:e8:d5:cc:68:1e:8e:3b:b7:fb:ae:
13:f7:3e:3e:bc:0a:5c:92:6e:33:eb:21:6b:97:b4:a5:2c:fe:
9e:75:4a:9c:9b:7c:bb:06:eb:eb:03:b5:c1:ba:94:88:da:6d:
bf:29:53:76:23:27:a0:46:47:df:db:a7:82:f9:17:95:9d:48:
1c:60:3c:5c:be:6b:76:82:6c:02:62:78:27:d4:d7:77:47:f1:
54:da:f1:27:ac:b3:52:0a:d4:5c:9f:9c:ad:a7:7a:7a:6e:17:
fc:2d:f4:07:91:a1:5a:95:ef:31:bf:61:e5:11:b6:bb:2d:cc:
ca:da:35:a8:bb:ee:f4:12:95:d4:a6:bc:bd:51:83:fe:01:17:
8d:80:3f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:05 2024 by rpki-client on console-ams.rpki-client.org