Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/btefXrpRq40ErXW41yHhLEep6Ac.roa
File: btefXrpRq40ErXW41yHhLEep6Ac.roa (raw, json)
Hash identifier: 9b/OztqA05IavfTac99sXiYSj/PtzsiNOE2E5DS16Wg=
Subject key identifier: 6E:D7:9F:5E:BA:51:AB:8D:04:AD:75:B8:D7:21:E1:2C:47:A9:E8:07
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 019110928A72E4CFEE72648C5BD1669327BB
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/btefXrpRq40ErXW41yHhLEep6Ac.roa
Signing time: Fri 02 Aug 2024 00:52:04 +0000
ROA not before: Fri 02 Aug 2024 00:52:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 195.133.202.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:10:92:8a:72:e4:cf:ee:72:64:8c:5b:d1:66:93:27:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Aug 2 00:52:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ed79f5eba51ab8d04ad75b8d721e12c47a9e807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:44:b7:8e:2b:b7:ac:85:7b:30:8a:ba:ae:a7:
74:b6:66:b1:a6:85:57:45:a0:e5:ea:e9:c7:81:b2:
84:c8:d3:e9:cb:63:be:26:15:40:04:1f:e0:3f:19:
90:fb:5e:63:b7:bf:3e:84:8a:24:fd:44:c7:7d:78:
95:88:b3:0e:0a:ef:5c:fe:66:d5:9a:17:27:d7:1a:
d7:32:9f:7f:95:f2:92:16:bf:1d:27:0f:49:47:d7:
71:fb:7f:50:50:e1:56:1a:2b:b0:30:75:56:a9:db:
27:14:d6:e1:13:3e:41:32:aa:a5:3c:a5:d4:4d:a3:
8c:70:15:7f:65:75:fe:32:33:c2:4c:09:2b:eb:73:
50:c3:22:8e:5d:38:a7:e4:95:83:74:9c:60:3e:e3:
a6:21:89:98:66:f2:f0:4a:23:b8:92:31:78:52:3d:
35:95:19:a3:8e:ae:30:b0:1e:5d:c9:3a:be:4a:3c:
55:b1:91:b0:f4:f3:60:ba:f7:ee:a9:6c:00:6e:5f:
e0:4a:58:bc:c5:b9:44:27:85:57:68:d0:35:2f:e1:
1b:89:54:4e:6d:f5:d9:c7:3a:e2:9b:62:86:7c:c8:
9f:4d:eb:5f:29:cc:3f:e4:24:7b:f6:56:4c:0d:dc:
35:7c:d1:62:b5:59:34:a4:3e:6e:aa:ca:28:55:96:
a2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D7:9F:5E:BA:51:AB:8D:04:AD:75:B8:D7:21:E1:2C:47:A9:E8:07
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/btefXrpRq40ErXW41yHhLEep6Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.202.0/23
Signature Algorithm: sha256WithRSAEncryption
64:44:16:13:02:b0:4c:92:04:18:bd:0e:6d:3b:83:b2:96:54:
93:3a:52:47:f7:6c:24:ce:74:1c:a8:0e:fb:45:38:8c:71:fc:
03:28:71:6e:87:f8:f1:d9:62:63:47:d0:26:75:3c:50:3a:d4:
bd:f9:74:b3:92:7a:1b:3e:e8:49:2d:79:a2:f7:07:96:94:2d:
8d:08:76:c7:75:0e:1c:da:f7:e4:79:6a:24:bc:dd:3a:89:a4:
90:ac:6c:23:16:96:5b:3c:d7:8a:26:7c:5e:02:4d:7c:2d:6a:
47:7f:21:84:4f:9d:2c:10:35:c7:6f:53:14:89:4a:29:9b:ae:
4f:7b:50:11:d8:b8:75:ad:cc:e0:46:24:25:88:80:d7:5b:aa:
80:07:f5:4b:73:28:65:22:19:98:67:b4:6a:74:9f:8e:6d:f4:
07:3c:4a:b0:14:2d:13:4c:14:47:b6:a9:77:b5:4a:eb:bd:37:
ff:59:a2:36:2f:55:54:e8:7a:ff:13:cd:21:45:1e:f2:a4:0f:
ea:f6:28:ae:96:f2:44:8d:e5:94:dc:50:5e:fc:c5:a5:67:db:
b0:08:5b:1c:80:8c:e9:d9:dc:e6:fc:bc:dd:49:b5:dc:5c:39:
8b:25:dc:d9:4c:0b:5d:ed:25:63:9d:eb:dd:3f:a6:9d:01:37:
33:23:b0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:06:49 2024 by rpki-client on console-fra.rpki-client.org