Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/1/323030313a3637633a6630343a3a2f34382d3438203d3e20323136333131.roa
File: 323030313a3637633a6630343a3a2f34382d3438203d3e20323136333131.roa (raw, json)
Hash identifier: ANvoTXut20X8w5ZdRzbcfHVbB1Sma79yX1h0mvPVmVM=
Subject key identifier: 61:51:35:35:FF:39:0B:51:32:2A:80:8B:D1:4B:CC:F7:BE:F2:A8:A9
Certificate issuer: /CN=5777980e886c29f0060c3a073b6e681a8a70574b
Certificate serial: 30F3DF2F0D06DC7B734582D115D11A8E2BDCF9A0
Authority key identifier: 57:77:98:0E:88:6C:29:F0:06:0C:3A:07:3B:6E:68:1A:8A:70:57:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3eYDohsKfAGDDoHO25oGopwV0s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/1/323030313a3637633a6630343a3a2f34382d3438203d3e20323136333131.roa
Signing time: Mon 15 Jul 2024 14:23:52 +0000
ROA not before: Mon 15 Jul 2024 14:18:52 +0000
ROA not after: Mon 14 Jul 2025 14:23:52 +0000
asID: 216311
IP address blocks: 2001:67c:f04::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:f3:df:2f:0d:06:dc:7b:73:45:82:d1:15:d1:1a:8e:2b:dc:f9:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5777980e886c29f0060c3a073b6e681a8a70574b
Validity
Not Before: Jul 15 14:18:52 2024 GMT
Not After : Jul 14 14:23:52 2025 GMT
Subject: CN=61513535FF390B51322A808BD14BCCF7BEF2A8A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8e:a9:b2:85:cb:29:6e:7e:25:37:aa:e7:1b:
01:b3:d4:54:56:a7:28:42:62:0e:04:c9:03:9a:b9:
ad:f8:0a:90:c3:70:e5:be:a4:36:0e:3b:03:f7:03:
e7:89:63:fe:a6:58:ca:d3:3e:4a:43:4e:df:d9:d1:
10:a3:b5:2c:9d:49:b5:4e:5f:52:2b:19:c7:9a:ee:
a9:4a:e1:8f:7c:02:09:e1:7a:9a:e3:b0:44:a9:e1:
c8:d6:ea:a6:07:09:d0:92:65:09:dc:31:85:97:2f:
b2:17:1c:7e:8a:54:a4:56:6b:29:f6:c4:63:c1:22:
92:f1:44:19:1b:b1:08:8d:63:dc:0e:95:95:f3:a3:
31:7b:df:24:bc:aa:e8:29:e2:b6:ec:76:06:fe:5f:
c8:c8:3e:37:35:6c:94:88:88:ba:4e:52:ba:ac:d0:
fc:d7:d9:cb:18:02:83:00:ce:5c:cd:6a:2f:c5:90:
a7:96:0e:f2:9f:1f:b1:f4:57:05:d6:14:79:8e:f5:
94:d9:d1:87:1d:8d:ee:6f:91:d7:a5:e2:52:84:e6:
1a:ae:1e:e3:08:23:f4:46:04:e2:fe:68:92:f3:14:
ce:96:5f:1c:93:a8:78:82:99:fe:58:81:c7:ff:f7:
61:30:63:de:c8:27:1e:3c:ef:b3:60:0f:ea:20:bb:
f2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:51:35:35:FF:39:0B:51:32:2A:80:8B:D1:4B:CC:F7:BE:F2:A8:A9
X509v3 Authority Key Identifier:
keyid:57:77:98:0E:88:6C:29:F0:06:0C:3A:07:3B:6E:68:1A:8A:70:57:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/1/5777980E886C29F0060C3A073B6E681A8A70574B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3eYDohsKfAGDDoHO25oGopwV0s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/1/323030313a3637633a6630343a3a2f34382d3438203d3e20323136333131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:f04::/48
Signature Algorithm: sha256WithRSAEncryption
66:a5:d4:df:f7:d8:f4:9a:83:df:f2:c1:ca:71:e7:61:11:a5:
27:66:d4:b1:86:46:e5:9f:24:0e:cc:a4:7d:4e:a3:3d:29:18:
2c:2d:0a:0c:f7:bd:04:2c:e6:38:ea:c0:af:cf:fa:0e:4c:84:
f9:0e:0a:ee:d1:6c:0f:0b:30:6c:a7:05:5d:bd:a2:3c:72:d1:
fd:1d:16:33:7d:e8:82:81:13:a8:e2:11:17:25:c2:cd:51:db:
bc:7c:49:b3:9d:4e:f6:02:ee:54:ac:08:70:44:48:8b:87:16:
df:97:3c:9a:b8:b2:9d:69:65:09:d3:83:80:69:58:5d:ef:c3:
75:2c:eb:9a:f2:7b:5c:f8:8b:8e:7d:59:d4:57:bf:36:73:7d:
31:26:47:4f:a2:03:37:09:e1:8d:b6:05:0d:4b:eb:cf:32:98:
78:66:60:51:57:02:3d:d2:59:64:7d:dc:d4:0c:32:87:05:ac:
f2:2e:e5:5f:a4:b7:c3:7d:68:e0:d9:29:c2:60:0d:e3:fb:06:
0d:4b:a9:0a:ab:88:f8:e0:ad:f4:3a:a7:68:dd:6b:56:b7:69:
2d:b2:e3:d9:e4:f8:75:c6:22:e4:b4:6b:77:d1:4c:00:cc:98:
35:28:1f:29:35:ca:1e:d3:8c:6e:5f:d3:49:0b:9b:a3:e3:b7:
c9:21:67:9b
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgIUMPPfLw0G3HtzRYLRFdEajivc+aAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTc3Nzk4MGU4ODZjMjlmMDA2MGMzYTA3M2I2ZTY4MWE4
YTcwNTc0YjAeFw0yNDA3MTUxNDE4NTJaFw0yNTA3MTQxNDIzNTJaMDMxMTAvBgNV
BAMTKDYxNTEzNTM1RkYzOTBCNTEzMjJBODA4QkQxNEJDQ0Y3QkVGMkE4QTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfjqmyhcspbn4lN6rnGwGz1FRW
pyhCYg4EyQOaua34CpDDcOW+pDYOOwP3A+eJY/6mWMrTPkpDTt/Z0RCjtSydSbVO
X1IrGcea7qlK4Y98AgnheprjsESp4cjW6qYHCdCSZQncMYWXL7IXHH6KVKRWayn2
xGPBIpLxRBkbsQiNY9wOlZXzozF73yS8qugp4rbsdgb+X8jIPjc1bJSIiLpOUrqs
0PzX2csYAoMAzlzNai/FkKeWDvKfH7H0VwXWFHmO9ZTZ0Ycdje5vkdel4lKE5hqu
HuMII/RGBOL+aJLzFM6WXxyTqHiCmf5Ygcf/92EwY97IJx4877NgD+ogu/KbAgMB
AAGjggJGMIICQjAdBgNVHQ4EFgQUYVE1Nf85C1EyKoCL0UvM977yqKkwHwYDVR0j
BBgwFoAUV3eYDohsKfAGDDoHO25oGopwV0swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5
M2U2LzEvNTc3Nzk4MEU4ODZDMjlGMDA2MEMzQTA3M0I2RTY4MUE4QTcwNTc0Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1YzZVlEb2hzS2ZBR0REb0hPMjVvR29w
d1Ywcy5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMt
N2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5M2U2LzEvMzIzMDMwMzEzYTM2Mzc2MzNh
NjYzMDM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM2MzMzMTMxLnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA
AjAJAwcAIAEGfA8EMA0GCSqGSIb3DQEBCwUAA4IBAQBmpdTf99j0moPf8sHKcedh
EaUnZtSxhkblnyQOzKR9TqM9KRgsLQoM970ELOY46sCvz/oOTIT5Dgru0WwPCzBs
pwVdvaI8ctH9HRYzfeiCgROo4hEXJcLNUdu8fEmznU72Au5UrAhwREiLhxbflzya
uLKdaWUJ04OAaVhd78N1LOua8ntc+IuOfVnUV782c30xJkdPogM3CeGNtgUNS+vP
Mph4ZmBRVwI90llkfdzUDDKHBazyLuVfpLfDfWjg2SnCYA3j+wYNS6kKq4j44K30
Oqdo3WtWt2ktsuPZ5Ph1xiLktGt30UwAzJg1KB8pNcoe04xuX9NJC5uj47fJIWeb
-----END CERTIFICATE-----
Generated at Fri Sep 13 16:31:14 2024 by rpki-client on console-fra.rpki-client.org