Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/c702c3-1f1e-41c5-8b08-c7d379b3f22c/1/0Bn6oO0k5KJ8oSihgtxYOBlK4HQ.roa
File: 0Bn6oO0k5KJ8oSihgtxYOBlK4HQ.roa (raw, json)
Hash identifier: AOHr9tF7AjP75SZH/6mQcj0HlmxJBZVEk2XIAT4Smqw=
Subject key identifier: D0:19:FA:A0:ED:24:E4:A2:7C:A1:28:A1:82:DC:58:38:19:4A:E0:74
Certificate issuer: /CN=537192cc8fcf52e81e8d0530466fe99a56aaf3d1
Certificate serial: 0182465A5D615A2C9242604D5F5B30D239D9
Authority key identifier: 53:71:92:CC:8F:CF:52:E8:1E:8D:05:30:46:6F:E9:9A:56:AA:F3:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3GSzI_PUugejQUwRm_pmlaq89E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/c702c3-1f1e-41c5-8b08-c7d379b3f22c/1/0Bn6oO0k5KJ8oSihgtxYOBlK4HQ.roa
Signing time: Thu 28 Jul 2022 19:48:23 +0000
ROA not before: Thu 28 Jul 2022 19:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208261
IP address blocks: 62.204.43.0/24 maxlen: 24
193.58.43.0/24 maxlen: 24
45.149.56.0/22 maxlen: 22
193.57.226.0/23 maxlen: 23
2a0f:ce00::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:46:5a:5d:61:5a:2c:92:42:60:4d:5f:5b:30:d2:39:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537192cc8fcf52e81e8d0530466fe99a56aaf3d1
Validity
Not Before: Jul 28 19:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d019faa0ed24e4a27ca128a182dc5838194ae074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:de:77:64:e6:a2:95:dc:b7:c2:af:a8:18:
92:9c:94:a0:f6:2e:16:e3:39:bd:be:be:f5:3a:3f:
af:35:8c:fd:9a:74:bb:07:1f:b6:ae:43:64:52:40:
0c:bb:ca:19:40:8e:45:d3:75:3f:9e:30:5a:53:b0:
0d:14:2e:28:d4:48:5b:d0:eb:8c:1c:85:cc:78:b3:
f6:ff:94:26:9c:81:5d:fd:7f:80:eb:ef:5a:68:92:
13:86:84:69:0c:d3:e8:05:66:e2:84:d0:cb:29:ef:
c8:49:89:c2:2f:0e:cc:dd:eb:44:99:ad:a3:75:f4:
b0:64:13:54:76:bb:aa:f4:5e:52:48:68:8f:d4:8a:
c7:6e:7d:01:37:b4:6e:1d:ca:50:15:c1:68:2e:77:
f7:f6:fb:76:40:c5:76:10:ce:16:44:62:93:8c:f3:
c5:3d:c4:b9:64:55:e5:13:05:c1:9c:11:a3:2b:65:
09:dd:2e:67:eb:f2:b6:7b:bd:4b:8b:42:7c:6e:2a:
c5:52:a2:97:b0:df:1b:70:ac:e8:87:4d:e6:a2:f5:
a4:3e:98:92:59:70:11:ff:40:8e:e5:d9:88:67:dc:
62:37:ce:6c:8b:85:1b:23:6a:8a:16:54:21:4a:59:
9d:2b:c8:6c:8f:1f:ab:ef:1c:35:f8:eb:1c:37:11:
e1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:19:FA:A0:ED:24:E4:A2:7C:A1:28:A1:82:DC:58:38:19:4A:E0:74
X509v3 Authority Key Identifier:
keyid:53:71:92:CC:8F:CF:52:E8:1E:8D:05:30:46:6F:E9:9A:56:AA:F3:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3GSzI_PUugejQUwRm_pmlaq89E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c702c3-1f1e-41c5-8b08-c7d379b3f22c/1/0Bn6oO0k5KJ8oSihgtxYOBlK4HQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c702c3-1f1e-41c5-8b08-c7d379b3f22c/1/U3GSzI_PUugejQUwRm_pmlaq89E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.56.0/22
62.204.43.0/24
193.57.226.0/23
193.58.43.0/24
IPv6:
2a0f:ce00::/29
Signature Algorithm: sha256WithRSAEncryption
63:57:2c:fc:3d:67:5c:eb:a3:e3:2d:57:c6:fe:34:e4:1c:6f:
c2:dc:22:ce:01:b1:d2:87:af:53:75:dc:3f:c0:24:0c:d5:12:
bf:5f:8f:4a:17:09:ec:6a:bf:85:7c:de:84:05:a9:02:0d:a7:
bf:cb:83:18:bc:9e:6f:3b:a7:7b:c3:4a:66:67:fd:de:f2:4a:
7a:21:46:39:46:64:df:c7:7b:09:dc:fd:95:dd:2c:67:5c:d1:
e5:b2:5c:4b:0a:1e:2c:ff:14:fd:36:7a:67:60:37:a0:3d:da:
72:0e:57:54:ba:d7:42:59:e4:82:56:28:e2:75:6c:07:87:e9:
33:0e:db:85:2a:8f:e9:42:f6:92:c1:9e:42:be:56:f4:67:55:
64:b0:48:24:7a:d4:e2:39:75:3e:32:58:c1:2c:c1:28:24:ef:
5a:3b:0f:25:65:07:7d:80:07:5c:05:18:ec:9d:df:14:6d:4f:
54:96:2e:71:7b:f0:6b:95:97:c0:59:4d:31:93:03:66:b1:a7:
88:c7:56:91:7b:96:15:87:1b:2f:b0:1b:55:24:e5:a5:20:62:
47:4d:ce:e5:4d:4c:90:da:c2:98:34:ad:b8:10:42:cc:5e:b2:
e7:ce:ba:38:fb:72:e9:35:39:a9:4d:26:81:aa:3a:d9:48:8c:
2c:05:88:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net