Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/833795-4df3-4850-bd99-8e8bac4cf18b/1/81KLjprZzs9HaKzoky1IThkJAEM.roa
File: 81KLjprZzs9HaKzoky1IThkJAEM.roa (raw, json)
Hash identifier: aHSWCQIE1tpfi9mjCmzThhlzsStyAfyi94n+a87fxp0=
Subject key identifier: F3:52:8B:8E:9A:D9:CE:CF:47:68:AC:E8:93:2D:48:4E:19:09:00:43
Certificate issuer: /CN=514ab6d16a0b176fd40655e17fbde652bc21d453
Certificate serial: 018943CD1D6EED786608CD915F6254FA512B
Authority key identifier: 51:4A:B6:D1:6A:0B:17:6F:D4:06:55:E1:7F:BD:E6:52:BC:21:D4:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUq20WoLF2_UBlXhf73mUrwh1FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/833795-4df3-4850-bd99-8e8bac4cf18b/1/81KLjprZzs9HaKzoky1IThkJAEM.roa
Signing time: Tue 11 Jul 2023 07:14:23 +0000
ROA not before: Tue 11 Jul 2023 07:14:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8652
IP address blocks: 195.248.83.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:43:cd:1d:6e:ed:78:66:08:cd:91:5f:62:54:fa:51:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514ab6d16a0b176fd40655e17fbde652bc21d453
Validity
Not Before: Jul 11 07:14:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3528b8e9ad9cecf4768ace8932d484e19090043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2d:a3:54:cf:16:eb:f0:68:e8:8d:a3:50:6c:
2a:02:38:ff:9d:b2:d8:3f:b0:4b:01:d6:60:3d:14:
07:92:a2:4d:f7:d0:45:e0:98:20:3d:ec:31:92:6c:
f7:b4:d3:b1:b8:d6:0e:99:aa:15:39:97:95:f1:b3:
ae:8b:9e:e5:71:df:e1:5d:f7:19:a4:9c:ad:45:3b:
10:30:5d:4f:81:c5:2e:70:19:4f:dc:d3:31:e8:4f:
15:b0:9f:31:a8:f2:95:1c:25:68:69:e0:5f:1f:79:
25:89:ca:18:09:c4:a7:2e:ff:6a:78:c7:1c:4e:4e:
d8:b8:ee:d2:22:5d:d8:48:bd:33:76:f4:2b:ae:0b:
01:e5:32:da:01:5c:a3:5a:d8:a0:83:68:0a:2f:ae:
b9:7c:11:83:fe:c7:29:70:67:d1:de:a3:6b:8e:99:
22:ce:17:66:4e:d3:46:10:ab:b6:e6:3a:09:79:e1:
b1:26:94:14:12:19:41:c8:ee:61:e9:1f:03:ba:0a:
34:eb:2b:49:d8:6d:c5:ea:8d:06:80:4f:70:c6:d3:
3e:95:71:51:dc:5f:d9:68:a9:21:2f:17:8f:d2:fd:
2d:b6:7b:4e:29:54:0f:65:56:29:b3:1e:d1:ef:59:
a1:39:77:70:77:55:4f:3e:3e:44:12:d2:7c:79:8f:
ce:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:52:8B:8E:9A:D9:CE:CF:47:68:AC:E8:93:2D:48:4E:19:09:00:43
X509v3 Authority Key Identifier:
keyid:51:4A:B6:D1:6A:0B:17:6F:D4:06:55:E1:7F:BD:E6:52:BC:21:D4:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUq20WoLF2_UBlXhf73mUrwh1FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/833795-4df3-4850-bd99-8e8bac4cf18b/1/81KLjprZzs9HaKzoky1IThkJAEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/833795-4df3-4850-bd99-8e8bac4cf18b/1/UUq20WoLF2_UBlXhf73mUrwh1FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.83.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:9e:8e:c6:06:f1:ee:28:db:a6:54:67:02:6d:df:4d:25:ec:
4d:84:b5:dc:15:17:f2:97:49:8d:7a:5a:bc:0f:9e:c0:66:06:
3e:95:33:5d:33:15:07:bc:b7:c8:a5:07:5a:80:b6:0f:4d:75:
09:33:f4:31:d6:cc:ec:22:86:94:41:25:a8:c0:7f:ad:a0:3c:
9a:c9:cb:12:8a:8b:ee:ba:3b:93:72:9f:95:37:98:5d:5b:d7:
31:e5:29:ee:32:66:85:82:39:70:c9:92:1d:98:89:64:7d:14:
7e:c1:72:d9:85:11:ac:88:44:f1:41:c8:d0:8d:78:b1:cb:89:
90:81:d8:c5:e2:05:65:b0:52:89:a4:7b:2c:02:39:09:5a:38:
f4:68:e2:13:35:1f:70:39:16:0a:65:58:4c:5a:ac:1f:80:ed:
a7:82:87:03:b6:c9:5e:3a:63:26:8a:61:7a:9c:fa:59:8c:fe:
af:75:a6:cc:5e:dd:69:26:89:e7:02:1d:5d:cd:49:fd:18:98:
8c:f0:48:2c:4a:f1:1b:36:3f:b2:fb:4b:a2:d0:b2:c8:93:8c:
96:39:e8:77:2e:10:d6:2d:38:d0:4c:cd:30:cc:36:4f:93:46:
3f:02:80:41:71:d2:ab:fb:7a:69:c1:c9:8c:9d:32:b1:7e:a6:
cd:d8:ab:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:29 2024 by rpki-client on console-fra.rpki-client.org