Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/gJAhZ1mpeC3_OPFPmm1x1ukD1Yg.roa
File: gJAhZ1mpeC3_OPFPmm1x1ukD1Yg.roa (raw, json)
Hash identifier: sU0BZHEGEIyYNraYd5eljdBrT/lh9Wdo1Tadz4hovIY=
Subject key identifier: 80:90:21:67:59:A9:78:2D:FF:38:F1:4F:9A:6D:71:D6:E9:03:D5:88
Certificate issuer: /CN=813e051cb831d1989607bb76c0bc5693ff947b53
Certificate serial: 09B41D82
Authority key identifier: 81:3E:05:1C:B8:31:D1:98:96:07:BB:76:C0:BC:56:93:FF:94:7B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gT4FHLgx0ZiWB7t2wLxWk_-Ue1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/gJAhZ1mpeC3_OPFPmm1x1ukD1Yg.roa
Signing time: Tue 26 Apr 2022 07:54:58 +0000
ROA not before: Tue 26 Apr 2022 07:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44285
IP address blocks: 185.79.96.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162798978 (0x9b41d82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=813e051cb831d1989607bb76c0bc5693ff947b53
Validity
Not Before: Apr 26 07:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8090216759a9782dff38f14f9a6d71d6e903d588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2a:cd:cd:38:e3:dd:f3:ab:3c:16:c8:d0:cf:
35:70:cd:c1:79:f3:b7:c9:ec:7f:89:5e:43:72:e2:
9a:b1:57:6b:49:df:fb:2c:f1:34:af:a7:4d:d1:a2:
7f:6a:06:e8:c8:53:5d:95:fb:21:00:ae:92:d6:30:
44:d4:6d:26:2c:b9:5e:a0:dd:6b:f2:54:85:86:29:
31:5d:44:fa:06:9d:4f:4f:be:81:a6:49:98:7c:d0:
2d:b5:a5:de:e4:a8:f8:ec:40:ea:d0:9f:cc:c2:ce:
be:fb:f8:f9:fb:df:df:76:ea:04:74:34:1b:9e:53:
1d:7e:ce:9f:cc:49:ea:01:17:18:f9:e1:d7:03:7d:
4e:59:5d:1a:98:0c:2e:01:44:04:83:cd:a5:e3:5a:
2f:a7:54:a5:1a:2a:cd:69:ae:e8:6f:e9:8b:59:70:
07:c1:c7:44:e7:1a:8f:8b:28:4a:3f:d6:92:fb:78:
52:5e:ef:05:4f:cc:9a:51:71:0e:0c:a7:68:1f:04:
09:76:4e:4e:5e:90:3d:4f:27:22:44:a4:c0:3d:66:
e8:26:b3:ad:fc:38:eb:3b:c4:0c:d7:c2:d5:b3:86:
60:f4:86:70:88:17:64:47:d3:fe:02:2c:1e:a8:5e:
a4:ce:4c:e9:90:7a:2f:0b:12:f7:bc:7a:9a:42:75:
e1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:90:21:67:59:A9:78:2D:FF:38:F1:4F:9A:6D:71:D6:E9:03:D5:88
X509v3 Authority Key Identifier:
keyid:81:3E:05:1C:B8:31:D1:98:96:07:BB:76:C0:BC:56:93:FF:94:7B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gT4FHLgx0ZiWB7t2wLxWk_-Ue1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/gJAhZ1mpeC3_OPFPmm1x1ukD1Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/gT4FHLgx0ZiWB7t2wLxWk_-Ue1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.96.0/24
Signature Algorithm: sha256WithRSAEncryption
94:04:48:7c:91:02:0e:ad:1c:54:61:e5:c1:34:b9:9e:9b:f1:
bf:ca:07:e6:06:8d:c5:22:d9:ac:a9:43:f0:da:3e:a6:45:71:
d3:29:3a:2e:3a:e8:8b:b9:51:9e:19:b2:e3:62:90:40:e0:a3:
dd:63:57:a6:2e:b1:6c:18:99:6a:1f:6a:09:29:9c:dc:a7:f6:
7d:59:fa:c6:27:46:21:f2:cb:5b:2e:14:87:07:2d:f1:05:d1:
ab:b3:07:96:80:9f:32:fb:cd:fd:21:38:1e:c5:07:f4:cc:b8:
a5:14:fb:29:7f:a3:b0:96:9f:a3:d6:7d:f3:0d:16:e6:7c:aa:
c5:a5:28:48:83:db:d5:41:01:55:9f:44:36:61:b0:33:92:13:
f9:3c:d6:8c:4c:39:a9:65:7d:d5:8b:b8:ac:aa:b9:75:67:e7:
42:95:b2:c1:f4:67:64:9a:fe:54:e5:23:35:a0:45:8a:4b:da:
e9:1a:9b:50:5e:7c:ae:8b:28:1b:9b:64:f3:f2:da:1a:2f:0a:
a5:c3:05:e7:05:3d:68:d6:54:08:75:c2:b2:a9:f7:da:45:46:
67:70:77:87:58:4e:e5:98:68:bc:4f:67:d6:a9:b7:19:69:af:
1c:da:00:55:c1:4a:5e:7e:f6:ef:52:87:58:02:64:f8:fc:36:
7c:c3:8b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:09 2023 by rpki-client on console.sobornost.net