Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/2cd4cc-f498-4dae-9e24-8af66f488bbc/1/V_SqOIsFpga50E5p92JZ8ot6H3k.roa
File: V_SqOIsFpga50E5p92JZ8ot6H3k.roa (raw, json)
Hash identifier: ajdRmtdVtbyM9Vjg7pZtdtwY5ThPavtpfffdf2AK9iI=
Subject key identifier: 57:F4:AA:38:8B:05:A6:06:B9:D0:4E:69:F7:62:59:F2:8B:7A:1F:79
Certificate issuer: /CN=7c7bec7205df88d077086f4a8fb5aece75cbb661
Certificate serial: 04A5244E
Authority key identifier: 7C:7B:EC:72:05:DF:88:D0:77:08:6F:4A:8F:B5:AE:CE:75:CB:B6:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fHvscgXfiNB3CG9Kj7WuznXLtmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/2cd4cc-f498-4dae-9e24-8af66f488bbc/1/V_SqOIsFpga50E5p92JZ8ot6H3k.roa
Signing time: Sat 01 Jan 2022 14:02:15 +0000
ROA not before: Sat 01 Jan 2022 14:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41009
IP address blocks: 195.189.60.0/22 maxlen: 22
2001:67c:1bcc::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77931598 (0x4a5244e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c7bec7205df88d077086f4a8fb5aece75cbb661
Validity
Not Before: Jan 1 14:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57f4aa388b05a606b9d04e69f76259f28b7a1f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ff:79:6b:87:b8:4d:62:23:6e:b7:72:1a:43:
bc:65:a5:3b:7d:0a:52:fb:b1:6c:e9:a5:c2:40:3b:
83:05:89:2c:51:10:26:73:6e:e5:11:f5:73:3b:14:
4b:c5:4c:c8:26:53:f2:93:19:93:8b:83:2f:a1:1d:
23:82:4a:15:04:24:f6:14:73:83:fd:a9:f6:88:30:
02:4b:eb:ab:1b:e4:bd:43:b7:7d:1a:a7:00:dd:27:
4c:99:da:57:b7:fb:7d:a6:96:2d:60:6a:aa:6f:26:
50:c4:9a:a7:06:f1:82:f3:a9:84:af:c9:da:c3:e7:
79:75:31:ab:06:e4:88:98:14:8e:40:33:ff:1c:21:
45:37:4c:31:71:1a:26:bd:9b:cb:f8:cd:f6:b9:21:
81:62:7e:40:11:bd:a8:6e:21:86:f7:9a:4b:33:b2:
2b:f8:8a:7c:67:86:28:35:cd:c3:80:ca:77:79:6e:
ef:4a:80:fa:9f:11:24:75:60:10:70:84:24:d0:38:
65:db:ed:e0:3a:c3:74:ff:ba:97:91:5d:03:ce:72:
a9:96:ff:e3:dc:84:f0:fe:3e:e2:8c:d4:1a:11:e9:
b2:a9:ac:8f:fd:83:8f:05:09:8e:f7:ef:0b:41:54:
4e:ee:51:63:4a:1c:41:56:69:29:c2:11:20:83:9c:
d9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:F4:AA:38:8B:05:A6:06:B9:D0:4E:69:F7:62:59:F2:8B:7A:1F:79
X509v3 Authority Key Identifier:
keyid:7C:7B:EC:72:05:DF:88:D0:77:08:6F:4A:8F:B5:AE:CE:75:CB:B6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fHvscgXfiNB3CG9Kj7WuznXLtmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/2cd4cc-f498-4dae-9e24-8af66f488bbc/1/V_SqOIsFpga50E5p92JZ8ot6H3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/2cd4cc-f498-4dae-9e24-8af66f488bbc/1/fHvscgXfiNB3CG9Kj7WuznXLtmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.60.0/22
IPv6:
2001:67c:1bcc::/48
Signature Algorithm: sha256WithRSAEncryption
10:69:11:3a:3f:74:9f:5b:c6:34:6f:36:4e:e0:74:be:06:8e:
3f:7f:d8:4f:38:b7:71:2c:94:22:9e:72:6d:4b:cc:af:f3:59:
67:f8:56:fd:0d:68:98:fc:7c:c8:e4:4c:97:e0:ff:c4:00:98:
41:e4:f0:64:ae:49:08:fe:5d:03:1b:a5:1f:20:2f:c9:75:d9:
47:db:3f:9e:38:fe:c3:ae:e5:8c:26:f0:8f:17:d7:b6:1c:cf:
31:1f:07:f9:6f:28:90:8b:09:02:42:32:3e:02:48:44:72:46:
c5:86:93:36:70:28:da:c5:37:68:ca:f5:65:6b:e2:00:c0:7c:
d6:cf:13:e1:cc:34:02:ea:03:55:a7:c1:f1:f0:01:c6:0b:d2:
68:83:3c:47:ef:5d:f6:9b:12:77:d7:de:fb:38:17:bc:4b:95:
cd:ae:ef:f2:1a:58:5a:2d:be:d2:35:9e:77:3d:c9:18:e5:98:
e1:4a:60:b7:79:fa:af:f8:bc:57:d9:b5:18:a8:f7:8e:84:0a:
c6:31:66:df:3a:77:45:58:19:dc:5b:17:9c:4f:77:af:2b:12:
ed:f5:ca:80:32:06:48:cb:fc:45:6b:17:f4:bf:b6:9d:48:c7:
6f:f3:03:8b:fb:7a:1c:5a:c8:a0:6a:5f:95:ff:52:81:16:52:
1f:a5:db:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:24 2024 by rpki-client on console-ams.rpki-client.org