Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/DlemCONYUtjmvpI_2N0M5RZ57nY.roa
File: DlemCONYUtjmvpI_2N0M5RZ57nY.roa (raw, json)
Hash identifier: Uk3NOExJmItwK3iQ+GSuTbc6L0Ta065mNaTp9c4bBHI=
Subject key identifier: 0E:57:A6:08:E3:58:52:D8:E6:BE:92:3F:D8:DD:0C:E5:16:79:EE:76
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182B695567247A9B3FBD13C48A4EA48E683
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/DlemCONYUtjmvpI_2N0M5RZ57nY.roa
Signing time: Fri 19 Aug 2022 14:50:16 +0000
ROA not before: Fri 19 Aug 2022 14:50:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 178.210.252.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b6:95:56:72:47:a9:b3:fb:d1:3c:48:a4:ea:48:e6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Aug 19 14:50:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e57a608e35852d8e6be923fd8dd0ce51679ee76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:54:21:59:31:44:e0:8d:c9:d0:06:c6:19:72:
0d:53:b3:8a:9f:f1:cb:90:8d:27:e3:0a:ab:47:22:
b6:00:dc:b8:b3:63:fe:0d:be:21:b6:ae:9e:5b:ee:
a1:47:c8:78:7b:f0:f1:41:a4:fd:12:88:42:d9:03:
3b:78:25:56:ee:35:bc:c7:f4:8c:a6:75:26:dd:85:
13:df:69:4d:a1:26:be:e9:67:f6:4e:01:26:d2:d9:
b7:32:7a:5f:e0:34:17:b8:93:d6:24:51:14:64:fe:
17:73:1b:d7:63:e1:e6:b3:cc:13:1f:b7:27:46:d6:
34:10:24:ee:70:c9:94:9a:c0:36:3a:8f:c3:20:46:
e1:88:11:ff:f4:cf:d2:a8:dd:ec:31:5d:69:2d:ce:
03:dc:9e:fd:b1:86:b8:9d:04:6e:1b:e1:a0:e6:d7:
0f:1b:1d:40:e4:da:1d:ed:d0:b2:4a:f4:3c:aa:8c:
9c:6d:9b:46:ce:43:0c:1a:d8:62:e8:d4:f2:2e:d6:
18:ed:a7:a3:10:8b:8e:31:57:ba:18:01:0f:e8:09:
ad:da:69:3f:20:09:ce:2e:6b:5d:8f:c9:fc:cd:e8:
b5:49:62:b2:2d:cb:a3:4d:68:01:be:e3:51:65:be:
02:6a:bc:8b:ae:84:65:05:ed:7c:57:a8:9f:e9:70:
9f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:57:A6:08:E3:58:52:D8:E6:BE:92:3F:D8:DD:0C:E5:16:79:EE:76
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/DlemCONYUtjmvpI_2N0M5RZ57nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.210.252.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b8:12:e8:59:e9:01:f7:ec:26:fd:5a:73:59:ad:c3:f3:32:
3b:ad:f4:97:4c:05:ca:83:8a:e0:e7:1e:b4:6e:b2:42:40:56:
d0:24:8a:91:95:8e:a6:6d:80:29:66:04:62:a6:9c:02:fc:0e:
a0:3b:a6:5e:ce:61:f4:fd:f7:4b:4d:db:dc:6b:e8:ef:71:13:
8d:34:f1:ea:70:36:35:cc:c7:73:cf:74:dc:a1:02:12:5e:f6:
a7:f6:03:ec:1d:73:e7:ba:10:f5:98:52:9f:51:34:59:5e:59:
37:9a:63:89:fa:5e:64:63:88:16:70:11:78:36:bc:7d:19:96:
03:c9:c9:a2:cf:95:61:a8:06:ca:05:d3:b0:9b:b5:2b:05:0b:
b7:8c:40:3d:c8:e8:a5:ed:7f:5b:16:3e:0c:a8:83:11:58:49:
44:bc:bd:ae:a7:ad:88:cc:b4:dd:9b:a2:98:ec:86:f2:b3:d8:
8e:10:79:9b:3a:2b:6d:ab:d8:f3:6b:ed:07:11:89:9a:bf:ae:
e9:ca:81:d6:03:8b:96:25:86:74:09:3b:44:5e:83:61:29:51:
b0:fe:7d:e8:b8:c2:c8:6f:99:a8:87:a9:93:1f:9b:31:52:74:
87:b5:fc:8c:bb:39:01:81:17:e2:0e:81:ee:d7:fe:69:3d:12:
5d:f6:ee:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:55 2024 by rpki-client on console-ams.rpki-client.org