Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/NhiGyCsrgoUM_8ZBtLWU1Og6Jlg.roa
File: NhiGyCsrgoUM_8ZBtLWU1Og6Jlg.roa (raw, json)
Hash identifier: 8Vm7SIlghQycv3viyceiy0FYakC4zoJI7X3IAIZ5ry4=
Subject key identifier: 36:18:86:C8:2B:2B:82:85:0C:FF:C6:41:B4:B5:94:D4:E8:3A:26:58
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 03AB51E9
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/NhiGyCsrgoUM_8ZBtLWU1Og6Jlg.roa
Signing time: Fri 15 Apr 2022 08:45:03 +0000
ROA not before: Fri 15 Apr 2022 08:45:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 176.223.181.0/24 maxlen: 24
188.211.249.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61559273 (0x3ab51e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Apr 15 08:45:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=361886c82b2b82850cffc641b4b594d4e83a2658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:78:4e:ed:41:60:b9:9e:19:11:a9:35:37:d7:
fe:9d:fa:46:19:5d:50:b0:95:44:e0:66:c4:c6:8b:
e2:b6:b9:87:c3:b3:98:bb:76:0f:34:e9:8d:2b:9c:
83:5b:af:9e:63:8c:be:43:6f:9b:11:aa:67:4b:da:
f2:d9:28:25:f3:d6:b3:df:3f:c3:b7:7e:e9:ef:fd:
c7:f0:80:b2:64:84:be:8c:b6:06:6b:c7:65:bf:11:
c2:98:39:bc:d9:b8:62:1d:7c:ca:1a:1a:92:31:7f:
ff:03:bc:93:b8:02:27:91:37:23:52:41:df:ae:8e:
be:b8:7a:fc:1c:82:0f:43:4c:9b:cd:43:38:9a:29:
47:a5:57:8d:06:40:9a:d4:b1:3c:e0:09:d4:a0:8c:
31:d9:96:c9:bb:5b:f8:e1:6c:74:eb:ee:c2:55:2a:
c3:5e:02:e7:cf:ae:de:b6:01:4d:fd:d2:94:4d:5d:
b5:c3:38:04:45:26:c2:ca:00:63:30:47:51:70:2b:
d4:95:08:f0:a8:cf:61:39:3b:20:12:63:12:19:2a:
b5:aa:b0:15:46:04:df:d3:5e:e3:a4:79:b4:35:3a:
56:93:6f:fe:d6:51:ee:e7:04:d7:16:60:c1:e6:19:
ac:09:52:d2:ec:ee:fe:0d:ff:c5:a7:5e:89:e6:a5:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:18:86:C8:2B:2B:82:85:0C:FF:C6:41:B4:B5:94:D4:E8:3A:26:58
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/NhiGyCsrgoUM_8ZBtLWU1Og6Jlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.223.181.0/24
188.211.249.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:5b:dc:d5:3f:0e:34:9b:e6:98:f7:be:b4:db:b2:0e:fe:e0:
5d:7b:09:4a:4a:e7:df:db:6d:c8:88:bb:58:71:fb:53:03:28:
36:96:0b:b2:ec:04:d6:48:dd:a2:f5:0a:70:b9:22:90:67:73:
ee:7f:bf:9b:d4:aa:bc:13:2a:1d:c5:43:7c:b1:73:ff:b5:7b:
d9:b7:27:9a:d4:36:a3:98:c0:02:bd:30:c2:bd:88:80:7c:cc:
e0:02:6a:ad:18:8f:01:f4:48:e2:af:61:38:7c:9d:5a:3d:48:
ea:dc:1c:6c:4a:1d:4d:60:da:92:c0:a3:ee:77:76:d0:ad:e5:
c9:96:49:8e:79:aa:ec:f9:e7:09:1a:7c:b5:e7:0d:d8:fd:72:
20:bb:6f:fb:62:c2:d0:c0:0b:ff:9a:23:a2:70:3f:7c:90:32:
66:73:1e:bb:a1:8e:45:7d:87:18:f6:bb:e7:7a:7e:b4:1c:74:
f6:f0:5c:ee:08:b2:70:54:b6:7a:0f:55:c6:0d:44:e4:11:fa:
3b:1b:cb:ac:99:16:e9:f5:8c:a9:ce:a7:fc:bb:34:53:72:f5:
42:ce:eb:38:20:f3:49:b2:70:6a:13:e1:63:32:8e:c5:b7:7e:
73:2c:79:dc:52:1b:6e:de:e5:ec:75:48:65:e4:c1:80:e9:06:
94:4a:cf:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:14 2024 by rpki-client on console-fra.rpki-client.org