Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6rC6igCxTwmpmJLpiyap24-G6OY.roa
File: 6rC6igCxTwmpmJLpiyap24-G6OY.roa (raw, json)
Hash identifier: dG4bqCmfl3rh0zWpwtY80NuHX7bWI643nUTZFXjfW7o=
Subject key identifier: EA:B0:BA:8A:00:B1:4F:09:A9:98:92:E9:8B:26:A9:DB:8F:86:E8:E6
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 3536F9E8
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6rC6igCxTwmpmJLpiyap24-G6OY.roa
Signing time: Fri 18 Feb 2022 16:54:39 +0000
ROA not before: Fri 18 Feb 2022 16:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5430
IP address blocks: 194.97.46.0/23 maxlen: 24
194.97.0.0/18 maxlen: 18
194.97.119.0/24 maxlen: 24
62.104.56.0/24 maxlen: 24
62.104.66.0/23 maxlen: 23
62.104.68.0/22 maxlen: 22
62.104.72.0/21 maxlen: 21
62.104.80.0/21 maxlen: 21
62.104.88.0/21 maxlen: 21
194.97.160.0/19 maxlen: 19
62.104.96.0/21 maxlen: 21
194.97.164.0/22 maxlen: 22
62.104.104.0/22 maxlen: 22
194.97.167.0/24 maxlen: 24
194.97.168.0/24 maxlen: 24
62.104.0.0/16 maxlen: 16
62.104.8.0/21 maxlen: 21
62.104.16.0/22 maxlen: 24
62.104.20.0/24 maxlen: 24
62.104.20.0/23 maxlen: 23
62.104.28.0/22 maxlen: 22
194.97.96.0/19 maxlen: 19
62.104.32.0/21 maxlen: 21
62.104.40.0/22 maxlen: 22
62.104.48.0/23 maxlen: 23
194.97.118.0/24 maxlen: 24
62.104.50.0/24 maxlen: 24
62.104.46.0/23 maxlen: 23
62.104.45.0/24 maxlen: 24
89.49.127.0/24 maxlen: 24
89.49.126.0/24 maxlen: 24
89.48.0.0/13 maxlen: 24
195.4.104.0/22 maxlen: 22
62.104.164.0/24 maxlen: 24
62.104.164.0/22 maxlen: 22
62.104.168.0/22 maxlen: 22
62.104.172.0/23 maxlen: 23
62.104.174.0/24 maxlen: 24
62.104.175.0/24 maxlen: 24
62.104.176.0/21 maxlen: 21
62.104.178.0/24 maxlen: 24
62.104.182.0/24 maxlen: 24
62.104.184.0/22 maxlen: 22
62.104.188.0/23 maxlen: 23
62.104.130.0/23 maxlen: 23
62.104.132.0/22 maxlen: 22
194.97.192.0/18 maxlen: 18
62.104.136.0/21 maxlen: 21
62.104.144.0/22 maxlen: 22
62.104.156.0/22 maxlen: 22
195.4.0.0/16 maxlen: 16
195.4.16.0/24 maxlen: 24
195.4.16.0/22 maxlen: 22
2001:748::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 892795368 (0x3536f9e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: Feb 18 16:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eab0ba8a00b14f09a99892e98b26a9db8f86e8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:40:41:2b:c1:59:0f:e0:16:10:65:b9:22:b6:
73:43:ca:82:ad:85:4d:ec:22:10:5c:a2:c5:fe:2f:
fc:f2:8f:19:62:45:08:62:e0:bb:0e:41:7f:ac:e2:
99:f1:a5:9f:6c:5a:b7:2c:8b:f6:8b:db:f6:09:a5:
12:20:80:af:57:42:52:f9:a6:44:ab:aa:14:94:ad:
b2:66:c7:6a:a2:13:22:e3:4a:f9:f1:aa:e0:87:b4:
13:bf:19:18:b1:59:f6:46:fe:77:5b:fa:16:2a:53:
d1:18:0b:ca:ec:9e:87:10:0b:b4:cb:fd:c2:70:0e:
db:9b:e6:a7:cd:83:11:2b:bb:c3:60:12:28:1e:d2:
d9:dc:80:ad:7e:47:37:71:46:38:b6:b0:7a:88:85:
89:fb:f3:ef:f8:a5:99:e5:e8:d3:e7:f6:c8:0d:5d:
b0:aa:45:eb:46:6b:c1:f0:f9:69:c3:2f:0a:ce:90:
ba:9d:cb:cd:6f:84:ff:b8:d7:f0:a9:e5:85:e4:45:
97:86:6b:d4:bd:ce:f7:34:da:4a:5b:ab:65:4c:cc:
61:cb:49:1f:e4:8b:91:d4:c3:57:d5:07:65:a5:a8:
38:fd:6f:06:f1:31:49:07:1f:2a:b8:8a:e7:8f:be:
62:37:f2:29:2e:a8:0e:a2:5b:e8:7d:72:d7:36:bc:
d4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B0:BA:8A:00:B1:4F:09:A9:98:92:E9:8B:26:A9:DB:8F:86:E8:E6
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6rC6igCxTwmpmJLpiyap24-G6OY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.104.0.0/16
89.48.0.0/13
194.97.0.0/18
194.97.96.0/19
194.97.160.0-194.97.255.255
195.4.0.0/16
IPv6:
2001:748::/32
Signature Algorithm: sha256WithRSAEncryption
4a:b3:ea:6d:79:d4:c5:07:4a:43:ea:01:82:be:17:61:87:ec:
89:a5:4e:78:2c:c5:ff:b9:be:d3:a1:d2:9d:48:db:b4:36:a3:
e4:65:c5:96:b5:fd:c8:1b:2d:ff:b0:6a:2e:6b:de:43:29:3e:
a5:8a:b8:48:09:17:22:d9:46:bf:61:d0:0d:ff:f6:5a:5c:10:
62:3a:68:5e:9b:8b:ff:49:06:cd:73:d4:f0:87:70:29:fd:33:
25:5e:5d:7d:cf:3b:d9:36:b4:eb:4f:d3:9f:ce:57:49:4a:69:
a7:57:37:b0:52:35:c5:ae:fc:da:80:b1:26:07:48:fd:b5:ae:
52:8c:c5:58:fd:8d:47:4f:68:35:7a:94:13:b7:b7:e1:90:f1:
0f:a4:34:a7:45:e4:41:10:a4:0b:28:b3:af:e7:48:8b:b3:87:
36:08:62:1b:ab:69:d4:82:b6:ac:bc:4e:80:65:87:98:f1:07:
d8:61:a7:28:2c:b0:bb:21:5c:59:4d:f7:f7:d3:34:e7:34:ad:
65:c3:95:e2:b3:f6:d9:07:6a:ce:c4:10:3c:88:c2:dd:73:af:
3b:ab:70:34:d5:3f:52:1e:52:19:ae:cb:61:0a:20:95:2c:4d:
b3:40:ec:f2:ca:06:ca:0b:dd:51:a9:ec:41:17:df:8e:1b:0d:
7b:10:65:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:53 2024 by rpki-client on console-ams.rpki-client.org