Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/0Q7rXpLKGMef9WUN8Gfw2wKfgl0.roa
File: 0Q7rXpLKGMef9WUN8Gfw2wKfgl0.roa (raw, json)
Hash identifier: 8ZFlbfUIimZc2QkrNPY+8H3JD88tvB9Kas6cs5rHP3M=
Subject key identifier: D1:0E:EB:5E:92:CA:18:C7:9F:F5:65:0D:F0:67:F0:DB:02:9F:82:5D
Certificate issuer: /CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Certificate serial: 01827F29CC3D555F4ED4640025D53783071A
Authority key identifier: E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/0Q7rXpLKGMef9WUN8Gfw2wKfgl0.roa
Signing time: Mon 08 Aug 2022 20:33:41 +0000
ROA not before: Mon 08 Aug 2022 20:33:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21243
IP address blocks: 31.2.0.0/17 maxlen: 17
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7f:29:cc:3d:55:5f:4e:d4:64:00:25:d5:37:83:07:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Validity
Not Before: Aug 8 20:33:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d10eeb5e92ca18c79ff5650df067f0db029f825d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:27:aa:3f:0a:a5:c2:2d:d3:1c:16:73:52:60:
c4:58:ce:54:a9:8c:57:5a:d4:df:2c:4f:eb:f5:10:
39:38:e4:03:93:11:0e:79:b1:cb:75:00:63:04:a2:
d8:38:3a:7b:51:f5:2d:6b:a6:7e:f7:b9:5c:e7:be:
48:2e:13:ab:77:36:f8:a0:d2:29:75:0f:29:4d:0a:
d3:78:91:63:09:48:bb:31:50:da:fe:5c:ca:77:67:
e3:d2:79:93:fd:69:63:c0:94:72:1e:10:d1:5d:03:
28:da:ac:9e:a1:5b:53:90:c6:24:7a:c3:d3:d8:28:
1e:53:9c:7e:fc:dd:3e:87:73:68:4b:e3:ec:4f:f5:
13:56:78:f4:f5:2d:80:c6:35:7d:37:af:8c:3c:96:
5e:a2:cd:50:0b:6a:3f:a0:08:0d:3d:e5:7a:1b:7f:
c5:49:4d:94:91:43:50:d1:1e:cf:3b:ad:92:ca:2d:
ad:7f:77:2c:91:7f:2a:c3:26:be:de:4a:c8:df:cd:
c9:eb:a7:bc:7e:5c:9e:79:b7:5f:6f:ce:83:16:14:
11:77:84:6d:0f:2e:78:92:dd:1c:5a:5b:1d:eb:76:
0e:2f:83:43:a1:0c:80:05:85:8e:f5:aa:c9:3b:f5:
8a:1a:5b:25:42:d3:8d:bd:ff:70:20:a5:f7:d0:cb:
7a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0E:EB:5E:92:CA:18:C7:9F:F5:65:0D:F0:67:F0:DB:02:9F:82:5D
X509v3 Authority Key Identifier:
keyid:E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/0Q7rXpLKGMef9WUN8Gfw2wKfgl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.2.0.0/17
Signature Algorithm: sha256WithRSAEncryption
6f:6c:55:af:45:e7:24:1c:cf:3d:bd:b6:13:41:5d:6b:3b:82:
dc:00:f6:85:15:dc:a9:be:80:c8:c2:80:33:53:a4:e6:f1:66:
7c:44:03:e1:b8:fd:43:4b:1c:3e:01:f0:f6:44:51:b2:dd:da:
2d:c3:9f:f2:f2:0c:b8:3e:46:d5:73:6f:2e:41:97:f4:ce:e4:
a0:d2:fc:f5:45:02:54:50:dc:08:74:e6:97:bb:d7:c7:01:9e:
19:bf:61:61:1d:4b:1e:a9:cb:0f:8c:2d:17:62:16:bf:89:8f:
ff:75:f9:a4:5f:0a:67:9e:b3:f2:c7:20:02:06:87:e1:61:65:
ab:5d:ca:d1:59:d8:15:73:33:23:1d:7b:87:f2:9e:ab:6e:69:
0e:aa:f7:9d:b9:69:66:7a:9e:19:ee:6e:34:be:20:fb:c0:b8:
df:03:7b:aa:dd:db:4d:9a:84:79:43:78:5f:a7:5b:b4:06:ce:
8f:b0:4c:6c:43:c0:2d:0a:c2:b8:6d:fe:9c:06:02:63:60:67:
b4:4c:dd:49:27:bf:c2:3e:41:10:45:63:6b:23:86:ff:64:99:
8d:19:df:0d:32:ec:af:1f:4e:64:c1:a3:10:e3:b7:18:39:c3:
bf:1c:0a:55:59:e3:14:30:c0:e5:f8:a3:78:15:69:68:55:a6:
26:80:7d:e5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJ/Kcw9VV9O1GQAJdU3gwcaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyOWI5YWMyZWY2MzFiOTJlODJmNTk1ZDczZTQ3OTJjODE2
ZWM2ZTYwHhcNMjIwODA4MjAzMzQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTBlZWI1ZTkyY2ExOGM3OWZmNTY1MGRmMDY3ZjBkYjAyOWY4MjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCeqPwqlwi3THBZzUmDEWM5UqYxX
WtTfLE/r9RA5OOQDkxEOebHLdQBjBKLYODp7UfUta6Z+97lc575ILhOrdzb4oNIp
dQ8pTQrTeJFjCUi7MVDa/lzKd2fj0nmT/WljwJRyHhDRXQMo2qyeoVtTkMYkesPT
2CgeU5x+/N0+h3NoS+PsT/UTVnj09S2AxjV9N6+MPJZeos1QC2o/oAgNPeV6G3/F
SU2UkUNQ0R7PO62Syi2tf3cskX8qwya+3krI383J66e8flyeebdfb86DFhQRd4Rt
Dy54kt0cWlsd63YOL4NDoQyABYWO9arJO/WKGlslQtONvf9wIKX30Mt6FQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNEO616SyhjHn/VlDfBn8NsCn4JdMB8GA1UdIwQY
MBaAFOKbmsLvYxuS6C9ZXXPkeSyBbsbmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHB1YXd1OWpHNUxvTDFsZGMtUjVMSUZ1eHVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82OTAzNTctZGZiZS00ZDg2LWFmZDYt
OTE2NGUzNTJhODNjLzEvMFE3clhwTEtHTWVmOVdVTjhHZncyd0tmZ2wwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82OTAzNTctZGZiZS00ZDg2LWFmZDYtOTE2NGUzNTJhODNj
LzEvNHB1YXd1OWpHNUxvTDFsZGMtUjVMSUZ1eHVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHHwIAMA0G
CSqGSIb3DQEBCwUAA4IBAQBvbFWvReckHM89vbYTQV1rO4LcAPaFFdypvoDIwoAz
U6Tm8WZ8RAPhuP1DSxw+AfD2RFGy3dotw5/y8gy4PkbVc28uQZf0zuSg0vz1RQJU
UNwIdOaXu9fHAZ4Zv2FhHUseqcsPjC0XYha/iY//dfmkXwpnnrPyxyACBofhYWWr
XcrRWdgVczMjHXuH8p6rbmkOqveduWlmep4Z7m40viD7wLjfA3uq3dtNmoR5Q3hf
p1u0Bs6PsExsQ8AtCsK4bf6cBgJjYGe0TN1JJ7/CPkEQRWNrI4b/ZJmNGd8NMuyv
H05kwaMQ47cYOcO/HApVWeMUMMDl+KN4FWloVaYmgH3l
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org