Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/6JH-cEd5tWZdQQwYJUagsnyd9-Y.roa
File: 6JH-cEd5tWZdQQwYJUagsnyd9-Y.roa (raw, json)
Hash identifier: /YFdTx1qC/2v3GwQZqIWVDgNg2LYUOwWqA2SgoYR0jA=
Subject key identifier: E8:91:FE:70:47:79:B5:66:5D:41:0C:18:25:46:A0:B2:7C:9D:F7:E6
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0A7F7674
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/6JH-cEd5tWZdQQwYJUagsnyd9-Y.roa
Signing time: Sat 01 Jan 2022 02:54:15 +0000
ROA not before: Sat 01 Jan 2022 02:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39712
IP address blocks: 5.154.186.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176125556 (0xa7f7674)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Jan 1 02:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e891fe704779b5665d410c182546a0b27c9df7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:78:85:11:18:e0:db:7d:e4:16:ef:ba:1c:34:
fe:8f:05:bc:bd:b3:8d:d0:0d:37:85:e4:6a:49:60:
11:42:c2:bb:23:2c:9e:55:f2:9b:7f:78:50:42:66:
e9:03:6a:04:b4:2d:93:97:9e:85:a4:88:92:c8:a0:
3b:66:76:ed:3b:56:c5:6d:0a:fa:63:39:df:8d:3b:
b3:40:ca:5a:bc:8d:9e:e9:ed:78:0b:96:d6:de:34:
7c:ee:51:18:24:ac:9d:b8:a2:a6:5a:53:38:13:83:
9e:6f:46:ce:d3:fb:2c:26:b1:13:e9:0e:71:20:d8:
4d:92:9d:c9:bb:cd:1e:99:bf:85:e6:50:3c:99:c8:
82:20:5f:d9:63:83:5b:f9:e5:a8:ed:a1:15:8a:d5:
54:19:18:e6:71:b3:11:b5:0d:67:fa:df:46:0d:77:
d9:58:f2:0e:ac:78:82:57:e4:67:68:36:38:59:94:
7c:23:08:d9:8b:cd:b8:ce:1b:ac:71:a9:cb:f8:ef:
f6:43:46:65:f7:c7:cc:2b:1f:19:b8:24:1a:ba:0d:
20:b3:30:c8:40:4e:7d:d6:b2:bf:dd:ee:4c:10:e0:
80:06:17:c2:75:e3:e4:27:75:48:26:3e:a3:40:fb:
d7:95:2c:3b:7c:09:b1:da:43:9f:1a:ea:65:2c:88:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:91:FE:70:47:79:B5:66:5D:41:0C:18:25:46:A0:B2:7C:9D:F7:E6
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/6JH-cEd5tWZdQQwYJUagsnyd9-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.186.0/24
Signature Algorithm: sha256WithRSAEncryption
17:27:a9:27:c3:26:44:49:c0:69:4f:94:59:84:8f:63:0e:35:
a3:2a:d1:95:77:50:46:36:bf:96:b5:5e:7d:d4:62:67:49:75:
6f:ba:c1:fa:a9:8c:83:61:41:28:56:16:6c:8a:4a:a7:b9:d9:
d3:66:1e:b3:0e:06:a0:15:e7:68:8f:c3:f2:a5:33:8a:a8:9c:
3e:72:d6:ee:85:ca:50:a8:87:d8:3e:7c:70:0c:a9:c2:d9:7c:
4d:7f:50:f6:12:f8:67:f6:a4:b0:a7:76:04:2f:72:45:7e:04:
35:82:7b:d0:d5:ac:5b:7c:e4:ab:d4:bb:d0:5c:68:ab:8e:31:
2e:f9:4a:1a:fa:69:b1:35:4d:1c:c4:16:00:ac:ca:f7:63:94:
68:2f:34:ba:06:12:83:a5:00:05:75:80:43:0a:21:9b:4d:05:
eb:67:10:7d:61:81:84:03:d2:05:f5:5b:1e:a9:56:29:dd:64:
2c:09:20:43:5b:5e:65:6f:8f:54:7a:45:85:14:80:85:0d:f8:
18:36:02:0e:67:c2:7f:e8:88:bc:28:c4:72:96:b2:28:4f:46:
f6:09:2a:7d:4f:81:d5:70:9f:42:d5:aa:f1:6c:f0:f0:ea:3b:
90:b3:93:dc:60:32:01:a3:a9:9f:9c:98:d9:e7:9e:7a:77:9c:
0c:5d:dc:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org