Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/4c6cd6-37a9-4115-8366-24a8d9bf37bc/1/y7FTTgOT8TYpFaJkLh2vv7KyDX4.roa
File: y7FTTgOT8TYpFaJkLh2vv7KyDX4.roa (raw, json)
Hash identifier: gs7prKv2KnczRCvRQL08R6Yr60Y1ihXWTKoyN7rJho0=
Subject key identifier: CB:B1:53:4E:03:93:F1:36:29:15:A2:64:2E:1D:AF:BF:B2:B2:0D:7E
Certificate issuer: /CN=450bc67f549eb049257720a000eb05b54f5d2bc0
Certificate serial: 0D26
Authority key identifier: 45:0B:C6:7F:54:9E:B0:49:25:77:20:A0:00:EB:05:B5:4F:5D:2B:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQvGf1SesEkldyCgAOsFtU9dK8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/4c6cd6-37a9-4115-8366-24a8d9bf37bc/1/y7FTTgOT8TYpFaJkLh2vv7KyDX4.roa
Signing time: Mon 10 Jan 2022 16:11:26 +0000
ROA not before: Mon 10 Jan 2022 16:11:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57614
IP address blocks: 81.162.48.0/22 maxlen: 22
81.162.52.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3366 (0xd26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=450bc67f549eb049257720a000eb05b54f5d2bc0
Validity
Not Before: Jan 10 16:11:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbb1534e0393f1362915a2642e1dafbfb2b20d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3b:80:5b:ba:8e:b2:e9:44:69:a3:48:06:1d:
a4:ea:6d:29:1c:76:ec:f7:e3:fb:93:9a:46:d8:80:
0f:82:f1:59:9a:b1:25:c2:b2:59:67:c4:85:f3:d7:
47:7e:36:3b:86:40:5f:53:9d:fd:47:9b:c8:d2:83:
76:58:9a:54:c7:74:4d:40:9b:30:de:65:2c:46:9f:
02:4d:23:e4:b2:62:2d:46:d2:05:a4:68:8d:a2:47:
38:7c:75:77:51:bb:33:5c:04:93:ae:17:75:e2:0c:
81:59:57:ef:37:46:3b:2c:fa:20:c2:27:1c:c7:c9:
b9:88:4f:c4:3d:be:78:d1:87:4a:6a:2e:71:15:74:
38:24:1c:71:3e:c6:1c:af:d3:3c:b5:35:4a:4c:8d:
52:5c:77:93:ad:ba:1c:4c:53:ee:f2:8a:c2:0b:b7:
15:09:9e:5c:68:f2:f4:15:50:15:a4:9c:a9:cb:9f:
4d:89:d1:76:72:b0:fc:00:9d:c0:a4:e6:bf:b2:40:
8d:3c:92:f7:2c:51:18:ac:11:a6:84:0b:5b:be:3b:
15:1b:0c:b0:68:d2:b6:51:84:4d:00:62:b1:81:cd:
c5:20:44:9a:b4:32:88:74:44:d2:fd:a6:21:1e:5a:
bb:d4:48:e7:a3:a9:1e:07:28:7c:e0:bf:27:2f:7b:
65:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B1:53:4E:03:93:F1:36:29:15:A2:64:2E:1D:AF:BF:B2:B2:0D:7E
X509v3 Authority Key Identifier:
keyid:45:0B:C6:7F:54:9E:B0:49:25:77:20:A0:00:EB:05:B5:4F:5D:2B:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQvGf1SesEkldyCgAOsFtU9dK8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/4c6cd6-37a9-4115-8366-24a8d9bf37bc/1/y7FTTgOT8TYpFaJkLh2vv7KyDX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/4c6cd6-37a9-4115-8366-24a8d9bf37bc/1/RQvGf1SesEkldyCgAOsFtU9dK8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.162.48.0/21
Signature Algorithm: sha256WithRSAEncryption
23:63:49:67:c8:4b:9f:48:e7:a1:fc:91:61:50:61:a5:94:42:
5a:d8:12:35:ba:a2:f6:8f:92:00:e5:e6:f0:0c:1b:05:39:91:
af:5f:eb:1a:c3:c8:78:10:2b:31:47:2f:b9:bc:d5:c1:81:60:
1b:ed:ad:92:5c:d0:2f:c5:64:99:8a:85:43:a6:af:7f:a1:b5:
b9:9a:d4:82:24:92:a3:7b:53:49:56:59:c2:32:f0:72:e6:bc:
1d:9a:b2:7b:24:8c:1a:4a:19:63:31:5d:e1:a5:4f:41:ea:1d:
57:e7:cc:c5:ff:d1:c7:1c:95:fa:84:bc:0a:f6:8d:08:cc:62:
c5:94:9e:49:83:66:0f:f9:b7:59:d3:16:84:57:7f:94:c1:ae:
d2:dc:31:5c:95:87:b7:61:6c:b7:42:e8:ae:f9:09:96:61:d1:
9c:47:8d:19:6a:4b:1d:0c:75:90:02:9e:c6:8e:70:a9:92:df:
64:e4:28:97:a3:48:5d:83:40:98:2c:09:c1:5d:cf:2c:83:85:
8f:6a:64:61:4e:f0:bd:38:48:46:be:9a:6a:e8:40:f3:ff:ad:
4f:1c:d5:e9:a4:e9:5b:e2:2d:b1:0a:c5:92:dd:6f:92:07:b5:
ea:0f:c4:cc:ad:a3:bd:eb:2a:26:fc:d7:b7:6d:6e:42:f9:7e:
ca:5d:9a:f6
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUw
YmM2N2Y1NDllYjA0OTI1NzcyMGEwMDBlYjA1YjU0ZjVkMmJjMDAeFw0yMjAxMTAx
NjExMjZaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGNiYjE1MzRlMDM5M2Yx
MzYyOTE1YTI2NDJlMWRhZmJmYjJiMjBkN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCnO4Bbuo6y6URpo0gGHaTqbSkcduz34/uTmkbYgA+C8VmasSXC
sllnxIXz10d+NjuGQF9Tnf1Hm8jSg3ZYmlTHdE1AmzDeZSxGnwJNI+SyYi1G0gWk
aI2iRzh8dXdRuzNcBJOuF3XiDIFZV+83Rjss+iDCJxzHybmIT8Q9vnjRh0pqLnEV
dDgkHHE+xhyv0zy1NUpMjVJcd5OtuhxMU+7yisILtxUJnlxo8vQVUBWknKnLn02J
0XZysPwAncCk5r+yQI08kvcsURisEaaEC1u+OxUbDLBo0rZRhE0AYrGBzcUgRJq0
Moh0RNL9piEeWrvUSOejqR4HKHzgvycve2XBAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUy7FTTgOT8TYpFaJkLh2vv7KyDX4wHwYDVR0jBBgwFoAURQvGf1SesEkldyCg
AOsFtU9dK8AwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9S
UXZHZjFTZXNFa2xkeUNnQU9zRnRVOWRLOEEuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2ZiLzRjNmNkNi0zN2E5LTQxMTUtODM2Ni0yNGE4ZDliZjM3YmMvMS95
N0ZUVGdPVDhUWXBGYUprTGgydnY3S3lEWDQucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZiLzRj
NmNkNi0zN2E5LTQxMTUtODM2Ni0yNGE4ZDliZjM3YmMvMS9SUXZHZjFTZXNFa2xk
eUNnQU9zRnRVOWRLOEEuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANRojAwDQYJKoZIhvcNAQELBQADggEB
ACNjSWfIS59I56H8kWFQYaWUQlrYEjW6ovaPkgDl5vAMGwU5ka9f6xrDyHgQKzFH
L7m81cGBYBvtrZJc0C/FZJmKhUOmr3+htbma1IIkkqN7U0lWWcIy8HLmvB2asnsk
jBpKGWMxXeGlT0HqHVfnzMX/0ccclfqEvAr2jQjMYsWUnkmDZg/5t1nTFoRXf5TB
rtLcMVyVh7dhbLdC6K75CZZh0ZxHjRlqSx0MdZACnsaOcKmS32TkKJejSF2DQJgs
CcFdzyyDhY9qZGFO8L04SEa+mmroQPP/rU8c1emk6VviLbEKxZLdb5IHteoPxMyt
o73rKib817dtbkL5fspdmvY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:57 2024 by rpki-client on console-ams.rpki-client.org