Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pu9Hj220rkXWqXISozAiS7Koskk.roa
File: pu9Hj220rkXWqXISozAiS7Koskk.roa (raw, json)
Hash identifier: Sx5wiC+vc8/A1I0fNjCQpCOzLQEgxnEP/NyJKYlI22U=
Subject key identifier: A6:EF:47:8F:6D:B4:AE:45:D6:A9:72:12:A3:30:22:4B:B2:A8:B2:49
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 03F05A1D
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pu9Hj220rkXWqXISozAiS7Koskk.roa
Signing time: Mon 13 Jun 2022 12:38:45 +0000
ROA not before: Mon 13 Jun 2022 12:38:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42864
IP address blocks: 178.210.236.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66083357 (0x3f05a1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 13 12:38:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6ef478f6db4ae45d6a97212a330224bb2a8b249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9e:16:d3:c4:c4:31:ca:63:a9:78:7b:cf:72:
71:53:19:fa:87:97:ed:b2:96:39:8b:db:dd:92:9d:
d1:a1:52:9d:d8:ae:b2:0f:f8:f7:9a:a9:5a:cd:0a:
49:93:db:2f:d1:dd:8c:a1:2a:3c:65:4d:e0:e4:16:
02:dc:c7:9e:5a:17:72:ba:17:72:bc:d2:f4:98:0e:
9a:0b:3d:62:e4:ab:2a:87:02:19:20:ee:27:e7:c1:
91:06:37:76:27:f0:a4:57:48:4e:98:d2:c5:ae:ef:
e2:2f:63:b9:da:76:bd:0b:7d:2b:37:a2:5d:36:bc:
76:e7:70:fa:7f:a5:5d:aa:df:14:71:b6:ed:bc:d9:
db:6c:8b:d3:1a:43:69:66:21:1c:12:d1:c3:07:81:
9d:78:bd:b1:40:76:7d:c2:56:e4:de:bf:5d:f9:a1:
f6:28:3a:da:8a:ed:0a:5b:cb:b2:6c:2e:f8:39:10:
33:28:57:3f:e4:79:b6:ce:2b:24:d5:27:00:e8:2c:
30:b4:cd:4f:98:66:30:46:ed:a3:7a:6c:f9:6e:08:
1d:92:32:a5:53:8e:a3:2d:d9:cb:7a:35:a7:51:fb:
a4:7c:3a:4d:25:f5:d4:60:78:0e:a4:02:30:8a:ea:
4d:36:24:66:ce:6c:f1:9c:51:2f:ee:e8:4f:dd:eb:
00:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:EF:47:8F:6D:B4:AE:45:D6:A9:72:12:A3:30:22:4B:B2:A8:B2:49
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pu9Hj220rkXWqXISozAiS7Koskk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.210.236.0/24
Signature Algorithm: sha256WithRSAEncryption
65:82:65:7e:94:8a:d8:5b:d4:38:94:f2:57:50:b6:9a:af:e9:
9c:0e:65:06:d5:9f:8f:9a:41:fa:6a:7a:21:e4:67:3d:e7:5b:
bc:6f:94:ed:d3:38:25:5d:35:ca:19:8c:2b:41:66:ac:7b:76:
a5:29:d2:15:a8:a9:a9:5c:ef:3e:f2:45:0e:a4:02:8e:11:22:
7b:4b:39:fe:04:11:58:e7:60:85:f6:f5:5a:a1:8b:52:08:38:
74:2a:92:70:94:e4:3f:ba:a0:cd:73:d7:6d:ab:2b:5d:bc:81:
c0:c3:04:cd:72:69:3b:38:a6:59:95:d4:65:00:a2:0b:1c:47:
9d:30:05:e2:6c:ff:80:52:5d:b0:bd:b0:97:03:68:7b:c3:e4:
19:8f:bb:6e:4a:ad:c0:b7:74:de:87:4e:bd:68:0b:6a:ed:77:
8f:5f:ce:90:c8:38:80:9a:e2:05:49:bd:d5:16:be:5d:af:b0:
c5:ba:77:15:20:aa:a3:f6:f1:8f:81:be:0e:22:fa:23:e5:57:
8b:aa:7e:b5:96:79:4f:cf:aa:77:10:35:e8:74:e0:e0:6b:30:
fb:c3:39:c2:79:d8:9e:cf:88:d8:8f:69:89:28:23:38:42:ce:
25:36:b6:8f:00:8a:09:63:d7:8d:03:61:ae:84:cc:74:01:61:
d6:6a:eb:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org