Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/hLwwAO51mHmY-vkpCdAubCFr4jI.roa
File: hLwwAO51mHmY-vkpCdAubCFr4jI.roa (raw, json)
Hash identifier: 8RvPO/PDD1s4PbLu/Eyl+ZVGKVGIgXr3BPlZqu+SH7E=
Subject key identifier: 84:BC:30:00:EE:75:98:79:98:FA:F9:29:09:D0:2E:6C:21:6B:E2:32
Certificate issuer: /CN=679a75debd65359a45317f203f11a321e14b2f2c
Certificate serial: 06B3A759
Authority key identifier: 67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/hLwwAO51mHmY-vkpCdAubCFr4jI.roa
Signing time: Tue 10 May 2022 05:23:26 +0000
ROA not before: Tue 10 May 2022 05:23:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.137.36.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112437081 (0x6b3a759)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679a75debd65359a45317f203f11a321e14b2f2c
Validity
Not Before: May 10 05:23:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84bc3000ee75987998faf92909d02e6c216be232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:83:cb:03:09:42:1c:8d:b8:8f:9f:92:8b:21:
49:57:0c:9b:b4:1b:9c:f2:61:4f:b1:70:18:73:6c:
c1:52:b7:59:c4:9f:ba:93:94:35:dc:5e:22:84:c8:
33:4e:8c:85:93:4f:d2:d5:cb:7b:28:9c:54:3e:5a:
9f:9b:9f:c5:3b:f3:49:4a:07:89:79:5f:01:75:4a:
bd:9f:56:ed:85:d1:a2:fd:ce:5e:b9:49:f3:f8:7a:
7e:e6:d2:bb:63:36:b9:10:d3:93:2b:af:be:b3:98:
9b:52:77:30:64:07:ee:69:45:d6:e2:7f:03:24:d7:
19:21:df:53:a8:8d:97:9e:7b:04:d3:b6:09:73:ef:
79:6e:48:13:12:7b:7d:3a:20:cd:a8:83:ca:75:88:
62:f3:3a:82:45:4c:f4:24:c7:d7:74:9b:e2:c2:11:
97:ee:55:31:2e:53:f6:e5:ae:53:78:39:b6:59:26:
e0:90:fb:76:e2:03:bb:4e:5d:bb:16:37:57:5e:46:
25:98:28:54:a3:f1:4b:3d:cd:bd:4f:f3:57:f3:c0:
89:45:d7:33:22:7c:92:97:37:a4:00:c4:e8:71:71:
7f:6f:0c:d8:50:bb:ea:c7:81:c3:90:eb:a0:d0:24:
90:bf:85:8c:b3:d7:e9:cd:13:d0:3f:1a:f6:3e:77:
17:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:BC:30:00:EE:75:98:79:98:FA:F9:29:09:D0:2E:6C:21:6B:E2:32
X509v3 Authority Key Identifier:
keyid:67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/hLwwAO51mHmY-vkpCdAubCFr4jI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Z5p13r1lNZpFMX8gPxGjIeFLLyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.36.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:3d:ad:6c:73:02:5a:c7:e4:c7:b9:52:af:97:1d:c3:77:ba:
59:9d:ba:b9:14:43:96:32:76:ae:5a:fd:ef:ca:f7:34:c2:ca:
3b:92:d6:3a:bc:cc:75:df:5c:6a:b8:a1:47:1e:89:4a:e4:0e:
c2:61:c5:ec:74:b7:de:b9:85:93:6e:bd:3a:59:66:7b:27:81:
4d:0f:c4:21:33:57:e1:79:45:e0:eb:0b:c8:99:d1:2d:66:17:
2f:03:df:51:08:33:2b:77:52:e7:e2:50:4d:fd:87:f5:43:f3:
cf:19:c6:70:1e:87:40:ca:5e:45:1a:fa:07:8b:48:70:63:48:
e4:5e:41:37:d4:e0:d0:34:1f:df:1a:aa:91:4a:63:cd:5a:f4:
36:77:33:0b:2c:85:69:d1:76:08:02:cb:42:b1:19:05:a5:5a:
e9:c1:6d:f5:1d:92:f6:bd:f6:ad:76:a8:08:87:4c:7b:27:e8:
5c:c5:4a:3c:0f:66:6d:54:1f:1e:06:a5:ef:60:68:48:8d:18:
af:ff:d6:8b:df:65:69:2e:ae:48:b5:11:3f:d5:8c:1f:b0:70:
72:28:db:2e:67:64:ba:18:07:96:ce:b8:b0:a5:90:91:0b:3f:
ae:dd:7d:d9:2b:6e:95:ed:78:75:65:af:1a:f9:82:54:0d:fb:
07:29:d2:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org