Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/b1rpQ4NYa74SaHxtizE_OOBveto.roa
File: b1rpQ4NYa74SaHxtizE_OOBveto.roa (raw, json)
Hash identifier: oG46fWwFXnaqxGeimPQq0I0SKdtWymiL3Rp2T+2LNG4=
Subject key identifier: 6F:5A:E9:43:83:58:6B:BE:12:68:7C:6D:8B:31:3F:38:E0:6F:7A:DA
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 078C0EE1
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/b1rpQ4NYa74SaHxtizE_OOBveto.roa
Signing time: Tue 01 Mar 2022 10:25:28 +0000
ROA not before: Tue 01 Mar 2022 10:25:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 192.42.65.0/24 maxlen: 24
147.189.162.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126619361 (0x78c0ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Mar 1 10:25:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f5ae94383586bbe12687c6d8b313f38e06f7ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5d:2b:cc:64:70:5d:73:de:c7:44:9f:43:88:
0c:ba:29:fd:69:c1:23:91:15:0b:1c:39:d5:b3:bf:
70:26:40:25:c7:fb:b6:c8:8f:1c:f5:5b:09:51:b6:
dc:b2:8a:e8:3a:9a:d8:db:34:0b:36:76:cb:c8:d1:
59:41:ee:45:7f:a9:57:98:62:ed:3e:b0:94:e6:bd:
35:64:20:39:ac:38:33:ef:60:18:66:88:41:8d:56:
42:1b:9c:92:60:9f:3a:40:62:88:33:33:ca:82:7f:
8b:67:9f:40:73:08:88:e0:1a:91:93:f8:42:53:31:
24:31:99:e7:48:08:e1:52:36:0d:9f:e2:79:04:5e:
31:a1:e2:21:77:2d:0d:23:85:1f:ff:c7:35:4f:97:
82:79:b4:4d:f0:ba:ca:6b:aa:aa:24:a0:d0:03:56:
76:b3:9b:9b:15:33:86:d0:54:03:15:18:3a:a0:05:
b4:9a:a7:1a:6b:53:9a:43:ff:3c:a4:46:02:f4:a9:
fa:28:03:05:99:f4:23:3c:de:05:e7:4d:9d:03:43:
c0:61:fd:05:af:8b:d6:32:74:f5:fe:8c:0e:42:8d:
f6:29:1c:9d:cc:ca:0d:5e:18:e5:4a:4a:09:a3:86:
0d:1a:59:35:f1:28:ee:3c:be:a4:53:5c:a1:ee:e2:
f5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5A:E9:43:83:58:6B:BE:12:68:7C:6D:8B:31:3F:38:E0:6F:7A:DA
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/b1rpQ4NYa74SaHxtizE_OOBveto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.162.0/24
192.42.65.0/24
Signature Algorithm: sha256WithRSAEncryption
22:24:08:de:c9:53:41:1c:47:c8:55:be:d6:b5:d1:a2:a3:19:
41:4b:7d:b4:ef:4d:39:86:78:c5:eb:17:00:a4:8d:ec:19:da:
0e:31:07:f6:10:c4:49:21:b8:2c:b4:e6:e8:5f:cf:7a:3f:0a:
02:3b:d0:1f:69:1d:83:f7:e6:9c:a2:6f:b5:9a:6e:05:e4:a5:
bf:9e:b4:4c:fc:d3:04:ef:03:ae:f0:6a:a4:b3:82:66:e7:dc:
19:36:31:13:8e:fd:71:b2:1c:88:70:94:f5:01:04:22:27:4c:
9f:58:ec:7a:8f:21:35:aa:15:be:f2:a5:45:57:c5:53:0f:94:
d0:29:e7:b1:42:6b:b9:c0:25:09:80:fd:8e:29:bb:5b:7d:da:
28:b1:73:4e:1b:96:c3:27:38:dc:88:89:e7:eb:59:f3:ee:06:
64:ea:25:30:dc:d2:53:56:ed:87:17:e5:37:3f:9a:9d:b2:ca:
2d:f6:12:07:bd:0a:5f:24:fd:be:2d:3f:a4:69:bd:1f:77:3e:
62:b8:f3:89:75:83:f3:9c:bd:23:d5:15:2e:30:f5:8e:50:5e:
04:27:81:0f:c7:d9:73:8d:a1:fb:91:43:f9:1e:35:88:74:8a:
83:bb:f4:d1:00:10:ff:75:bf:d6:69:51:e4:1b:05:de:50:9e:
80:ff:f1:b7
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB4wO4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDk5OGQzYzlkOGJkYzljMWRmZjhlMzE5NDI0NDEyYjZjZGMxZGQzMB4XDTIyMDMw
MTEwMjUyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmY1YWU5NDM4MzU4
NmJiZTEyNjg3YzZkOGIzMTNmMzhlMDZmN2FkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANtdK8xkcF1z3sdEn0OIDLop/WnBI5EVCxw51bO/cCZAJcf7
tsiPHPVbCVG23LKK6Dqa2Ns0CzZ2y8jRWUHuRX+pV5hi7T6wlOa9NWQgOaw4M+9g
GGaIQY1WQhuckmCfOkBiiDMzyoJ/i2efQHMIiOAakZP4QlMxJDGZ50gI4VI2DZ/i
eQReMaHiIXctDSOFH//HNU+Xgnm0TfC6ymuqqiSg0ANWdrObmxUzhtBUAxUYOqAF
tJqnGmtTmkP/PKRGAvSp+igDBZn0IzzeBedNnQNDwGH9Ba+L1jJ09f6MDkKN9ikc
nczKDV4Y5UpKCaOGDRpZNfEo7jy+pFNcoe7i9XUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRvWulDg1hrvhJofG2LMT844G962jAfBgNVHSMEGDAWgBRgmY08nYvcnB3/
jjGUJEErbNwd0zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lKbU5QSjJMM0p3ZF80NHhsQ1JCSzJ6Y0hkTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvNzc5YWU5LTdkMjItNDI1Mi04YzViLTBlYTRkNTMxYjc5My8x
L2IxcnBRNE5ZYTc0U2FIeHRpekVfT09CdmV0by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
Nzc5YWU5LTdkMjItNDI1Mi04YzViLTBlYTRkNTMxYjc5My8xL1lKbU5QSjJMM0p3
ZF80NHhsQ1JCSzJ6Y0hkTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAJO9ogMEAMAqQTANBgkqhkiG9w0B
AQsFAAOCAQEAIiQI3slTQRxHyFW+1rXRoqMZQUt9tO9NOYZ4xesXAKSN7BnaDjEH
9hDESSG4LLTm6F/Pej8KAjvQH2kdg/fmnKJvtZpuBeSlv560TPzTBO8DrvBqpLOC
ZufcGTYxE479cbIciHCU9QEEIidMn1jseo8hNaoVvvKlRVfFUw+U0CnnsUJrucAl
CYD9jim7W33aKLFzThuWwyc43IiJ5+tZ8+4GZOolMNzSU1bthxflNz+anbLKLfYS
B70KXyT9vi0/pGm9H3c+YrjziXWD85y9I9UVLjD1jlBeBCeBD8fZc42h+5FD+R41
iHSKg7v00QAQ/3W/1mlR5BsF3lCegP/xtw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:06 2024 by rpki-client on console-ams.rpki-client.org