Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/8Nx-SckDHc4JdXfyES3phPZOJag.roa
File: 8Nx-SckDHc4JdXfyES3phPZOJag.roa (raw, json)
Hash identifier: rmiqMJ++5NGCdexENlfx/8KGnfGzc92QJoYJ5QfAKhI=
Subject key identifier: F0:DC:7E:49:C9:03:1D:CE:09:75:77:F2:11:2D:E9:84:F6:4E:25:A8
Certificate issuer: /CN=94948e5f2fa04b222a6e96883b840f7124531556
Certificate serial: 0AF53C92
Authority key identifier: 94:94:8E:5F:2F:A0:4B:22:2A:6E:96:88:3B:84:0F:71:24:53:15:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJSOXy-gSyIqbpaIO4QPcSRTFVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/8Nx-SckDHc4JdXfyES3phPZOJag.roa
Signing time: Tue 26 Apr 2022 05:41:23 +0000
ROA not before: Tue 26 Apr 2022 05:41:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60117
IP address blocks: 185.117.73.0/24 maxlen: 24
185.117.72.0/24 maxlen: 24
185.117.74.0/24 maxlen: 24
185.117.75.0/24 maxlen: 24
185.198.58.0/24 maxlen: 24
185.198.57.0/24 maxlen: 24
185.198.56.0/24 maxlen: 24
185.198.59.0/24 maxlen: 24
185.141.24.0/24 maxlen: 24
185.141.26.0/24 maxlen: 24
185.141.25.0/24 maxlen: 24
185.141.27.0/24 maxlen: 24
194.36.188.0/24 maxlen: 24
194.36.190.0/24 maxlen: 24
194.36.189.0/24 maxlen: 24
194.36.191.0/24 maxlen: 24
185.45.192.0/24 maxlen: 24
185.82.201.0/24 maxlen: 24
185.82.200.0/24 maxlen: 24
185.82.203.0/24 maxlen: 24
185.82.202.0/24 maxlen: 24
185.45.193.0/24 maxlen: 24
185.45.194.0/24 maxlen: 24
185.45.195.0/24 maxlen: 24
185.106.121.0/24 maxlen: 24
185.244.148.0/24 maxlen: 24
185.106.120.0/24 maxlen: 24
185.244.150.0/24 maxlen: 24
185.106.123.0/24 maxlen: 24
185.244.149.0/24 maxlen: 24
185.106.122.0/24 maxlen: 24
185.244.151.0/24 maxlen: 24
212.8.251.0/24 maxlen: 24
185.183.96.0/24 maxlen: 24
185.183.98.0/24 maxlen: 24
185.183.97.0/24 maxlen: 24
185.183.99.0/24 maxlen: 24
188.116.36.0/24 maxlen: 24
2a05:9341::/32 maxlen: 32
2a05:9342::/32 maxlen: 32
2a05:9340::/32 maxlen: 32
2a03:660::/32 maxlen: 32
2a04:dd02::/32 maxlen: 32
2a05:9340::/29 maxlen: 29
2a0e:df40::/32 maxlen: 32
2a04:dd00::/29 maxlen: 29
2a06:3d80::/29 maxlen: 29
2a04:dd01::/32 maxlen: 32
2a04:dd00::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183843986 (0xaf53c92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94948e5f2fa04b222a6e96883b840f7124531556
Validity
Not Before: Apr 26 05:41:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0dc7e49c9031dce097577f2112de984f64e25a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5b:f3:3b:5a:38:b4:b6:57:86:1c:59:d1:75:
c9:92:8c:ef:8e:12:5b:6f:9b:c2:39:cf:19:ea:20:
14:2f:fb:64:1a:79:d2:6e:53:10:b5:67:a7:ad:3f:
04:04:40:41:18:1f:75:96:91:80:72:eb:1f:2a:fb:
1a:e8:d6:28:d4:4d:d1:86:82:e7:96:2a:b2:2c:6d:
ec:ee:70:6e:da:c9:e9:97:bc:23:45:67:4f:06:bd:
39:eb:53:e5:3d:95:45:53:05:89:a0:98:24:1a:66:
19:44:22:06:68:9e:84:87:ff:f6:47:95:67:76:e9:
30:14:6e:fa:5e:01:6d:18:5f:7a:1c:4b:a6:9e:e5:
ab:88:61:7d:32:0b:38:46:40:c2:f5:0b:d1:bc:e0:
ad:67:62:07:77:b3:f1:38:56:67:30:14:09:ce:83:
ca:1f:fb:6a:1c:0b:a9:6f:09:c1:5e:99:2b:08:69:
e8:b9:71:f5:bb:d3:15:ae:2a:45:65:b1:7c:5a:de:
e9:24:38:44:c3:57:3f:48:52:75:f8:9b:ad:b4:18:
f0:81:9e:20:f5:47:38:0a:1f:ea:0d:6b:c8:bd:19:
40:4a:e7:f1:84:69:37:15:87:bb:f7:f6:3b:e4:ea:
60:26:42:ce:34:7e:4d:44:00:d6:9c:92:9c:6a:32:
fe:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:DC:7E:49:C9:03:1D:CE:09:75:77:F2:11:2D:E9:84:F6:4E:25:A8
X509v3 Authority Key Identifier:
keyid:94:94:8E:5F:2F:A0:4B:22:2A:6E:96:88:3B:84:0F:71:24:53:15:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJSOXy-gSyIqbpaIO4QPcSRTFVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/8Nx-SckDHc4JdXfyES3phPZOJag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/lJSOXy-gSyIqbpaIO4QPcSRTFVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.192.0/22
185.82.200.0/22
185.106.120.0/22
185.117.72.0/22
185.141.24.0/22
185.183.96.0/22
185.198.56.0/22
185.244.148.0/22
188.116.36.0/24
194.36.188.0/22
212.8.251.0/24
IPv6:
2a03:660::/32
2a04:dd00::/29
2a05:9340::/29
2a06:3d80::/29
2a0e:df40::/32
Signature Algorithm: sha256WithRSAEncryption
2b:0b:0f:42:76:74:94:f5:97:5d:9b:6c:fc:76:e1:38:fb:bc:
20:1b:b3:96:b9:fc:46:e0:b8:93:72:c3:bb:c2:64:2e:ad:3d:
83:29:92:c1:44:0e:65:25:00:3c:97:38:e7:e3:a5:20:a5:5c:
07:62:dd:55:48:57:66:26:e6:0b:b5:01:8d:7a:e9:7a:4b:10:
54:5d:22:59:24:c7:96:83:98:22:a9:2b:fc:ef:2c:96:8b:91:
41:22:44:9f:28:d2:24:21:3a:0e:68:75:34:83:df:b4:f1:77:
c7:6d:3d:2e:d3:e5:dd:23:05:96:4f:56:92:a6:b5:d3:03:08:
48:dd:04:d4:43:c4:9f:f5:ab:d5:48:99:7e:ca:08:94:54:25:
3f:6b:42:88:4a:a2:47:84:d1:2a:d0:e4:90:1b:02:9b:f3:dc:
78:3d:5a:1d:9c:c0:c5:b3:03:19:f2:fb:d9:ea:bb:94:d1:3e:
59:4d:51:12:ac:cf:78:6c:fa:ce:ea:f9:98:3a:03:2e:c9:77:
a0:55:c3:d6:39:b9:8d:0b:d1:37:fa:b5:47:dc:d4:ff:d5:fb:
09:b6:8a:5b:4d:e2:89:18:bb:c6:1b:4f:30:fb:48:34:56:4b:
5d:72:e7:3a:98:1a:e0:42:6d:f3:d9:e4:c2:a1:5d:f1:b1:aa:
84:a9:e5:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:55 2024 by rpki-client on console-fra.rpki-client.org