Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/92MOfjWSB9ZSQpj0d1sXrecgSHo.roa
File: 92MOfjWSB9ZSQpj0d1sXrecgSHo.roa (raw, json)
Hash identifier: Cytc1+1WvTqLHbvsRPRB7R5b+njgvxr4UJdcV2z5B5U=
Subject key identifier: F7:63:0E:7E:35:92:07:D6:52:42:98:F4:77:5B:17:AD:E7:20:48:7A
Certificate issuer: /CN=679a75debd65359a45317f203f11a321e14b2f2c
Certificate serial: 05F35156
Authority key identifier: 67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/92MOfjWSB9ZSQpj0d1sXrecgSHo.roa
Signing time: Thu 03 Mar 2022 08:18:02 +0000
ROA not before: Thu 03 Mar 2022 08:18:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 176.111.240.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99832150 (0x5f35156)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679a75debd65359a45317f203f11a321e14b2f2c
Validity
Not Before: Mar 3 08:18:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7630e7e359207d6524298f4775b17ade720487a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b9:81:0b:cb:bf:58:1c:38:8f:af:a0:08:20:
5c:d2:f6:3b:a9:15:cc:c7:a9:57:98:9f:f7:7f:cc:
7c:06:96:4b:2f:9f:e6:e7:a2:c4:1f:3a:ab:3b:b3:
7c:71:35:42:a8:f7:da:d4:24:0d:e9:95:eb:68:2a:
f9:bd:6a:45:0a:d2:87:01:a6:83:dd:84:8b:aa:bd:
ad:97:83:45:3f:1c:1e:eb:d4:fb:ac:66:60:b8:ba:
07:3e:c4:b9:07:b8:a1:7d:a2:a7:51:0e:6f:a7:ad:
fe:a3:d5:f1:ea:66:85:ca:d3:fb:3f:6d:cc:22:da:
71:cc:75:52:08:d3:78:d9:63:f5:1b:a8:52:51:23:
e7:22:5f:4f:7b:64:0e:db:82:fd:e5:46:f1:7c:bf:
12:3c:b7:4e:7d:e6:85:a1:be:a1:3c:9f:8d:14:66:
74:b4:a0:8e:42:11:4c:4d:e2:98:cc:24:94:20:5b:
6a:09:54:77:bd:c8:08:73:e1:22:de:51:54:b5:9a:
ed:73:b4:79:68:ec:01:9b:fc:c0:e8:5b:8f:ab:04:
8b:38:55:1b:f4:c7:07:04:d1:d6:80:01:c1:f1:f9:
cc:38:10:26:ed:c9:05:9d:c0:df:8d:f5:7d:cf:8f:
96:b5:50:01:b8:19:97:c0:c5:f2:89:95:9a:52:c1:
d0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:63:0E:7E:35:92:07:D6:52:42:98:F4:77:5B:17:AD:E7:20:48:7A
X509v3 Authority Key Identifier:
keyid:67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/92MOfjWSB9ZSQpj0d1sXrecgSHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Z5p13r1lNZpFMX8gPxGjIeFLLyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.240.0/22
Signature Algorithm: sha256WithRSAEncryption
39:25:08:3f:88:85:39:78:07:f7:40:43:20:81:b1:9e:b4:46:
b8:7a:b3:6d:82:ed:4a:3a:32:44:37:db:9d:68:21:52:d0:d7:
dc:01:79:96:9f:61:b9:f8:95:dd:67:e9:e9:eb:bb:f8:32:ae:
59:e5:d5:96:58:dd:ad:c9:20:22:6e:44:21:5b:92:2e:9f:c9:
0a:45:0a:17:20:7a:f5:f8:05:ba:eb:c2:d5:f5:67:15:86:14:
e0:94:1d:99:3d:90:a6:cb:0b:a8:01:4b:19:28:94:84:5d:46:
4e:1d:dc:df:d9:63:4d:ea:aa:2a:3f:e9:de:02:03:f0:ea:19:
11:3f:5c:54:ab:02:ee:ea:b6:cf:0a:68:87:63:9c:36:a1:bb:
00:f4:0a:cd:d9:1d:d0:0d:57:44:56:fd:16:1b:ea:85:3b:bd:
4a:e7:f8:8f:17:a5:68:dd:5b:7a:11:4d:51:41:2e:20:61:00:
72:6e:f3:66:48:34:1e:c8:00:9c:fa:c5:95:24:ec:5c:c5:9a:
ac:33:bb:19:7b:99:22:21:80:63:7c:21:8d:41:48:41:26:13:
e8:a4:72:d4:8f:87:67:d3:b5:50:4c:89:ac:fc:80:24:8a:ce:
56:cc:a8:07:69:16:91:16:6e:ff:db:f8:e5:45:82:36:4c:b1:
94:ed:be:75
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBfNRVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NzlhNzVkZWJkNjUzNTlhNDUzMTdmMjAzZjExYTMyMWUxNGIyZjJjMB4XDTIyMDMw
MzA4MTgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjc2MzBlN2UzNTky
MDdkNjUyNDI5OGY0Nzc1YjE3YWRlNzIwNDg3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKS5gQvLv1gcOI+voAggXNL2O6kVzMepV5if93/MfAaWSy+f
5ueixB86qzuzfHE1Qqj32tQkDemV62gq+b1qRQrShwGmg92Ei6q9rZeDRT8cHuvU
+6xmYLi6Bz7EuQe4oX2ip1EOb6et/qPV8epmhcrT+z9tzCLaccx1UgjTeNlj9Ruo
UlEj5yJfT3tkDtuC/eVG8Xy/Ejy3Tn3mhaG+oTyfjRRmdLSgjkIRTE3imMwklCBb
aglUd73ICHPhIt5RVLWa7XO0eWjsAZv8wOhbj6sEizhVG/THBwTR1oABwfH5zDgQ
Ju3JBZ3A3431fc+PlrVQAbgZl8DF8omVmlLB0CUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT3Yw5+NZIH1lJCmPR3Wxet5yBIejAfBgNVHSMEGDAWgBRnmnXevWU1mkUx
fyA/EaMh4UsvLDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1o1cDEzcjFsTlpwRk1YOGdQeEdqSWVGTEx5dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvN2EzOWIxLTFkMWMtNDkxOS1iMTljLTNlZWJlNzE5Njk3Mi8x
LzkyTU9maldTQjlaU1FwajBkMXNYcmVjZ1NIby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
N2EzOWIxLTFkMWMtNDkxOS1iMTljLTNlZWJlNzE5Njk3Mi8xL1o1cDEzcjFsTlpw
Rk1YOGdQeEdqSWVGTEx5dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArBv8DANBgkqhkiG9w0BAQsFAAOC
AQEAOSUIP4iFOXgH90BDIIGxnrRGuHqzbYLtSjoyRDfbnWghUtDX3AF5lp9hufiV
3Wfp6eu7+DKuWeXVlljdrckgIm5EIVuSLp/JCkUKFyB69fgFuuvC1fVnFYYU4JQd
mT2QpssLqAFLGSiUhF1GTh3c39ljTeqqKj/p3gID8OoZET9cVKsC7uq2zwpoh2Oc
NqG7APQKzdkd0A1XRFb9FhvqhTu9Suf4jxelaN1behFNUUEuIGEAcm7zZkg0HsgA
nPrFlSTsXMWarDO7GXuZIiGAY3whjUFIQSYT6KRy1I+HZ9O1UEyJrPyAJIrOVsyo
B2kWkRZu/9v45UWCNkyxlO2+dQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:30 2023 by rpki-client on console-ams.rpki-client.org