Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/6KF_9ZCozWeWPcGdKD7jVK3muas.roa
File: 6KF_9ZCozWeWPcGdKD7jVK3muas.roa (raw, json)
Hash identifier: 3I2Heqd0Yd3t6Q4m7S7TOB6buPU6V+D4HvSN59rGylA=
Subject key identifier: E8:A1:7F:F5:90:A8:CD:67:96:3D:C1:9D:28:3E:E3:54:AD:E6:B9:AB
Certificate issuer: /CN=0a1d72ac0826e09bc0d17ddee8ba87d9731dd413
Certificate serial: 05423E79
Authority key identifier: 0A:1D:72:AC:08:26:E0:9B:C0:D1:7D:DE:E8:BA:87:D9:73:1D:D4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/6KF_9ZCozWeWPcGdKD7jVK3muas.roa
Signing time: Tue 07 Jun 2022 09:48:22 +0000
ROA not before: Tue 07 Jun 2022 09:48:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12312
IP address blocks: 212.172.0.0/16 maxlen: 16
85.212.128.0/18 maxlen: 18
195.78.160.0/19 maxlen: 19
194.162.0.0/16 maxlen: 16
212.122.128.0/19 maxlen: 22
80.83.96.0/20 maxlen: 20
62.144.0.0/16 maxlen: 16
79.140.176.0/20 maxlen: 20
194.112.16.0/20 maxlen: 20
85.212.64.0/18 maxlen: 18
62.246.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
85.212.0.0/18 maxlen: 18
195.52.0.0/16 maxlen: 16
85.212.0.0/16 maxlen: 16
195.63.0.0/16 maxlen: 16
62.26.0.0/15 maxlen: 15
185.210.52.0/22 maxlen: 22
85.212.192.0/18 maxlen: 18
195.185.0.0/16 maxlen: 16
2001:4091::/32 maxlen: 32
2a01:5c8::/32 maxlen: 32
2001:4090::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88227449 (0x5423e79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a1d72ac0826e09bc0d17ddee8ba87d9731dd413
Validity
Not Before: Jun 7 09:48:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8a17ff590a8cd67963dc19d283ee354ade6b9ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a7:34:a7:96:ff:9c:d2:7c:88:ac:e7:91:b3:
82:55:c2:41:52:c9:0c:05:b6:05:6e:d3:15:8f:fc:
9c:8d:70:e7:b5:94:35:43:55:ec:76:91:c9:93:81:
aa:cb:fc:2c:b3:03:51:23:d8:92:1d:5e:cf:33:74:
d5:50:b4:f5:4c:f0:d5:cc:97:14:2a:4e:de:83:fb:
b5:2e:12:ce:ec:cb:2a:b2:e4:66:33:51:ee:51:ec:
94:c1:ab:b0:82:1b:a3:1c:a4:c4:b6:4e:ac:db:1a:
6c:6d:29:99:cb:1f:a4:f3:a3:80:25:1d:5a:9a:6a:
1f:af:a9:ab:c8:89:9a:94:86:64:71:4a:cb:f9:6a:
38:82:20:01:9e:b7:af:d9:6f:36:6f:c1:b9:9e:c0:
20:4c:e6:48:bb:62:8e:45:76:9f:97:05:4a:84:9a:
df:6d:b1:37:5f:3f:11:66:0f:f0:40:31:b2:d3:58:
a9:ed:ed:07:4a:65:72:d4:a0:b8:ae:db:3a:f1:5a:
17:0c:7b:46:c0:a9:65:55:b4:35:0c:53:a4:a1:d9:
f7:04:c1:20:11:2e:8b:11:7d:7c:bd:8f:17:f0:1a:
ff:ae:d5:ac:b8:df:ec:61:7e:7d:f9:6c:4b:db:7e:
0e:84:83:00:3c:bb:f7:fe:3c:2c:fc:db:ed:c0:10:
77:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A1:7F:F5:90:A8:CD:67:96:3D:C1:9D:28:3E:E3:54:AD:E6:B9:AB
X509v3 Authority Key Identifier:
keyid:0A:1D:72:AC:08:26:E0:9B:C0:D1:7D:DE:E8:BA:87:D9:73:1D:D4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/6KF_9ZCozWeWPcGdKD7jVK3muas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.26.0.0/15
62.144.0.0/16
62.246.0.0/16
79.140.176.0/20
80.83.96.0/20
85.212.0.0/16
185.210.52.0/22
194.112.16.0/20
194.162.0.0/16
195.52.0.0/16
195.63.0.0/16
195.78.160.0/19
195.185.0.0/16
212.122.128.0/19
212.172.0.0/16
213.54.0.0/16
IPv6:
2001:4090::/31
2a01:5c8::/32
Signature Algorithm: sha256WithRSAEncryption
a0:1d:dd:c2:4e:4b:06:87:74:c3:04:f4:30:9a:3a:3a:72:6f:
cc:4f:92:7b:e5:39:14:71:1d:e9:5d:4c:0d:b4:54:8e:d0:5f:
fb:3f:a3:30:ef:07:99:47:fd:e0:19:32:55:06:cd:b7:01:e3:
45:57:4a:52:a5:5d:8b:0e:bc:80:56:ce:80:07:4d:e7:11:29:
df:c8:57:bf:f1:d1:0b:14:70:41:d6:c2:e4:a6:04:d2:0a:f5:
02:66:8b:44:c4:cc:ec:10:81:de:8e:d1:ac:cf:0a:50:b0:31:
5a:5e:38:d7:97:f4:f0:8f:e1:5e:e9:92:31:75:e2:51:21:5f:
ed:cc:92:65:0a:af:3e:d0:21:b9:50:1b:77:6c:ca:e8:e5:4d:
d8:20:92:aa:63:a9:28:36:22:56:dd:72:a1:7c:96:cd:b5:49:
63:4b:55:ba:44:44:a9:db:6b:bd:f2:06:5d:f3:ec:6e:98:73:
97:2f:cd:1b:05:5f:64:f6:24:17:32:fb:4c:67:cb:37:8e:4f:
98:80:c3:5c:3a:6d:3d:4a:39:aa:40:2d:3f:df:94:0e:19:66:
1c:f8:f0:46:fb:ef:22:c6:81:21:91:97:bd:08:c8:a4:d2:5b:
62:5d:56:df:2d:0b:26:49:df:27:e4:3b:6f:d2:36:6d:77:6e:
7e:8f:3d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:41 2024 by rpki-client on console-fra.rpki-client.org