Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/0_jx-FIS1aP0EQ6ok89fbxKsbAQ.roa
File: 0_jx-FIS1aP0EQ6ok89fbxKsbAQ.roa (raw, json)
Hash identifier: 8QAcjylqvMML35ka8DXNwQdxh7HHf7X271yVbPShli0=
Subject key identifier: D3:F8:F1:F8:52:12:D5:A3:F4:11:0E:A8:93:CF:5F:6F:12:AC:6C:04
Certificate issuer: /CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Certificate serial: 0467C935
Authority key identifier: D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/0_jx-FIS1aP0EQ6ok89fbxKsbAQ.roa
Signing time: Wed 29 Jun 2022 15:02:02 +0000
ROA not before: Wed 29 Jun 2022 15:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57152
IP address blocks: 93.180.132.0/24 maxlen: 24
93.180.133.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73910581 (0x467c935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Validity
Not Before: Jun 29 15:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f8f1f85212d5a3f4110ea893cf5f6f12ac6c04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:36:70:4c:5b:94:c6:cd:fd:b0:60:c3:61:81:
df:a7:d3:e9:53:71:43:d6:55:27:a9:e1:75:ec:63:
dc:f1:66:8e:dd:f3:36:01:71:ea:89:2d:82:9a:20:
69:1b:d9:96:67:c9:ce:1b:08:df:68:2b:ef:4a:7a:
68:97:52:7e:5a:6c:2b:55:5f:0f:d4:92:22:46:69:
06:43:e0:b3:80:96:93:35:50:ad:39:ec:73:e3:9b:
96:3f:e3:bc:15:27:da:4a:44:03:af:af:bc:74:f1:
86:08:00:19:fd:ea:ea:dd:5a:05:73:10:02:ff:29:
92:25:80:07:4f:81:4d:b8:84:d1:6b:10:5a:db:5e:
45:63:ba:eb:c0:09:45:14:67:23:0d:94:54:74:dc:
b3:84:df:69:85:f9:9a:9c:07:81:02:4e:8c:33:a0:
20:5f:6b:e9:ed:41:61:b4:ed:35:7f:0d:62:52:32:
a4:d8:e3:61:54:2d:d5:5e:c8:55:97:48:57:a9:57:
6c:12:74:38:00:90:8f:d1:8f:98:4c:7d:2b:e7:3f:
cb:3f:53:83:72:db:82:a8:cc:a6:f2:0c:fa:b1:41:
61:05:11:52:8e:c0:4d:3a:8f:a2:0e:a1:19:c0:0b:
93:eb:80:da:49:0a:75:7d:19:c6:d0:3a:57:dc:d2:
b8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F8:F1:F8:52:12:D5:A3:F4:11:0E:A8:93:CF:5F:6F:12:AC:6C:04
X509v3 Authority Key Identifier:
keyid:D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/0_jx-FIS1aP0EQ6ok89fbxKsbAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.132.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:28:41:e1:b3:53:50:06:71:ca:8f:a6:91:68:50:0f:6d:b7:
84:4e:93:46:7f:fd:c6:87:f6:6b:ac:27:13:ca:da:92:1a:ce:
bf:f5:a3:be:d9:d9:47:f6:f9:0d:16:f3:a5:2e:4d:1b:31:01:
73:38:4f:c1:14:26:00:db:6d:97:2e:6f:40:f4:37:59:5d:11:
de:54:81:35:f7:68:03:1a:2e:eb:ab:97:d7:2f:f7:b4:34:5c:
e8:63:8d:73:24:a8:fb:f7:77:b4:09:2f:c5:db:de:87:7e:6d:
bb:ac:86:11:9c:4e:9d:28:73:2c:9c:3e:d4:ad:34:63:8d:31:
a2:a6:b0:9a:a6:f6:51:6d:aa:c3:87:85:9c:0d:e1:88:b5:19:
4e:8a:77:80:21:e3:12:46:87:24:47:c3:ac:04:e5:86:b8:28:
05:f8:df:03:4f:38:41:de:c5:ca:84:23:0b:79:1f:be:5a:9f:
77:0d:7e:29:4d:69:1c:4f:97:76:59:45:c6:88:1b:9b:d4:b1:
27:49:06:5d:9c:d6:33:53:e1:51:05:91:95:b3:4b:a1:ed:98:
a6:c6:41:89:85:07:3d:aa:1a:3f:53:2e:67:e7:8a:5e:2c:6b:
ae:48:03:22:71:19:0b:18:59:e5:78:5d:52:ee:a5:7c:b6:7d:
93:9c:e4:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-fra.rpki-client.org