Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/J3rWax_4SgALXAtm6BeIGF6o_Lg.roa
File: J3rWax_4SgALXAtm6BeIGF6o_Lg.roa (raw, json)
Hash identifier: 6IWc+dDrIOQUBcUcpKdau8OHlRxityS/Y4p5dNe1Xwg=
Subject key identifier: 27:7A:D6:6B:1F:F8:4A:00:0B:5C:0B:66:E8:17:88:18:5E:A8:FC:B8
Certificate issuer: /CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Certificate serial: 018570305D0AD041B2C3A4725011326E59C9
Authority key identifier: FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/J3rWax_4SgALXAtm6BeIGF6o_Lg.roa
Signing time: Mon 02 Jan 2023 01:54:55 +0000
ROA not before: Mon 02 Jan 2023 01:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 77.91.103.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:5d:0a:d0:41:b2:c3:a4:72:50:11:32:6e:59:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Validity
Not Before: Jan 2 01:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=277ad66b1ff84a000b5c0b66e81788185ea8fcb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:46:4c:1d:63:09:a9:00:5f:8b:7c:dc:c6:90:
37:a4:7a:7a:20:7d:39:05:74:14:88:85:16:3c:8e:
9d:4f:ed:e0:36:d2:47:1f:82:ba:32:3d:93:fc:94:
3b:b4:36:91:a1:f9:83:2f:d0:8b:41:af:d8:1a:38:
94:46:fc:b1:13:93:9d:3e:e3:aa:73:87:fc:15:c9:
6d:82:b2:ca:5b:90:a9:07:14:10:7a:0a:7a:f4:28:
a1:70:d5:c3:06:24:33:ab:84:50:ea:c4:4d:b5:4d:
9e:7f:39:73:99:54:ca:1b:57:06:39:fb:15:31:d8:
82:a4:ee:81:2a:02:04:f1:3f:ea:75:21:90:75:77:
5d:e1:d4:40:5d:6e:60:63:11:ec:36:df:b5:a7:25:
b0:fe:a2:52:51:5b:18:6e:87:18:ed:a2:cb:9e:5e:
16:65:66:54:48:cf:b2:5e:7e:38:8e:79:99:38:50:
69:3c:ab:75:4c:ae:8a:06:a3:6c:ea:b4:75:36:6f:
a0:89:91:7a:b4:ca:f6:20:e6:de:fe:61:10:21:3a:
f2:b5:ac:73:6e:5e:48:95:d1:bb:4b:da:ba:0f:98:
db:3e:cc:3f:36:6c:d8:f1:2a:c7:85:cc:b3:c0:fe:
39:10:50:3a:1d:27:62:d6:7b:ef:7f:87:8b:8d:23:
36:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:7A:D6:6B:1F:F8:4A:00:0B:5C:0B:66:E8:17:88:18:5E:A8:FC:B8
X509v3 Authority Key Identifier:
keyid:FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/J3rWax_4SgALXAtm6BeIGF6o_Lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.103.0/24
Signature Algorithm: sha256WithRSAEncryption
93:79:f9:4b:cb:d3:ce:f5:86:6d:58:c9:7f:00:4a:37:06:80:
46:64:18:87:0f:5b:0a:3b:20:eb:9e:c8:87:e1:86:b1:a7:bb:
a7:93:c6:da:69:69:2d:a0:47:af:b0:55:07:9d:d5:df:b5:ab:
fb:ac:44:e1:2d:06:63:35:f2:8d:45:06:a5:0e:fa:6f:12:b3:
1f:c6:ca:05:53:3a:ed:2b:4f:9f:d2:3a:e2:d4:94:bf:ea:33:
b6:9b:da:f0:5a:a8:8f:b8:25:cf:74:bd:d5:a1:f8:2b:f6:08:
3f:f2:90:3a:8c:d0:a2:4f:02:ac:ef:77:7c:1c:2d:1f:f3:2f:
29:61:57:ef:5e:e1:67:9a:a1:fb:34:04:87:35:de:34:99:c9:
eb:95:c4:e8:df:01:33:04:8d:87:d8:00:af:11:a2:ac:ad:df:
b2:81:9e:d9:f1:fd:73:8c:f2:59:eb:1a:26:9b:e5:e3:6c:9e:
7b:c3:7c:0a:dd:55:31:03:e2:1d:03:5a:0e:ea:74:17:ec:98:
7e:95:61:70:1c:76:c2:d7:20:5c:2d:3f:cb:1b:52:3c:a5:b8:
34:1e:2e:55:d7:de:33:3f:3c:e7:57:cd:a9:b2:63:67:11:27:
b9:46:d8:42:e9:ab:fb:85:59:d5:d0:d3:f7:8d:33:29:22:e0:
81:a6:46:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:57 2024 by rpki-client on console-ams.rpki-client.org