Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/5uvgeAHbanY_qzJTldrSeqemCE8.roa
File: 5uvgeAHbanY_qzJTldrSeqemCE8.roa (raw, json)
Hash identifier: c+QY1nZYEbVDBlyzbRJg577qRII1QnKM9iavPEBMZXA=
Subject key identifier: E6:EB:E0:78:01:DB:6A:76:3F:AB:32:53:95:DA:D2:7A:A7:A6:08:4F
Certificate issuer: /CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Certificate serial: 02E37EC5
Authority key identifier: D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/5uvgeAHbanY_qzJTldrSeqemCE8.roa
Signing time: Sat 01 Jan 2022 02:58:04 +0000
ROA not before: Sat 01 Jan 2022 02:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213301
IP address blocks: 93.180.132.0/24 maxlen: 24
93.180.134.0/24 maxlen: 24
93.180.133.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48463557 (0x2e37ec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Validity
Not Before: Jan 1 02:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6ebe07801db6a763fab325395dad27aa7a6084f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1f:43:52:ba:df:f3:47:ea:54:f1:bf:3f:c0:
f8:bd:46:67:5d:e7:ff:6d:57:89:96:d5:65:69:ec:
b8:37:6a:5c:0f:23:68:df:79:75:29:77:02:02:d4:
b4:08:1e:ed:76:48:ca:c5:e0:9a:70:71:be:c7:39:
f9:da:d1:cd:c4:5b:fe:73:b3:10:48:c9:98:f9:47:
7a:b9:41:9a:de:a0:ec:b7:ac:45:b7:94:31:f4:8c:
8b:a3:6b:8c:6d:c4:47:e6:aa:32:6f:f2:bb:86:c3:
67:06:4a:54:97:d1:b4:05:93:9d:ae:9f:9f:95:c8:
a2:ba:c6:9c:71:46:7b:07:de:46:ff:36:92:ae:9b:
93:d0:12:50:be:92:9f:ae:b8:ca:86:04:a8:f7:43:
be:79:e4:15:3a:d0:91:2c:8e:a0:74:6a:cd:5e:be:
d6:5a:12:e7:4b:38:51:fd:e7:49:93:cc:8e:3c:c4:
c7:18:ed:1d:9f:0c:7f:a1:ac:25:ee:02:d7:cc:98:
5c:72:9c:9b:d6:65:4b:b0:05:69:d7:a5:9c:82:0f:
42:c8:ad:92:b3:91:de:9d:5a:7f:9d:ef:de:f7:4b:
03:4e:0c:46:b6:cb:43:ff:d6:52:8a:c0:40:3d:bc:
7f:fd:c2:4d:e6:e4:ea:77:34:a3:83:dc:5e:29:50:
71:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EB:E0:78:01:DB:6A:76:3F:AB:32:53:95:DA:D2:7A:A7:A6:08:4F
X509v3 Authority Key Identifier:
keyid:D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/5uvgeAHbanY_qzJTldrSeqemCE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.132.0-93.180.134.255
Signature Algorithm: sha256WithRSAEncryption
85:44:82:37:5d:01:a1:03:66:1a:03:8d:ee:b3:fd:50:81:c5:
24:05:5d:0b:73:b0:c6:82:bd:3d:58:dc:4f:34:60:cc:15:e5:
dc:e2:f5:23:97:9e:28:59:32:ec:db:ea:c5:2f:c8:fe:ce:fd:
2d:4c:8f:f1:7b:97:35:43:c1:16:34:95:76:58:74:86:bf:ed:
2c:8d:3d:bb:77:ba:e6:04:3a:49:68:55:e9:4b:6c:c8:74:c9:
12:71:aa:bf:c3:3d:b5:c5:e1:8c:0b:13:e1:f2:ce:86:02:25:
ef:26:39:85:0c:ad:9b:55:fd:09:d8:67:a8:b6:67:88:3d:27:
31:fb:18:70:ea:1d:e0:53:1d:ac:2f:06:dd:9f:8d:31:5f:3c:
11:8f:32:1b:96:9f:6f:cb:cb:32:d2:b9:29:c3:51:ed:21:0a:
d5:25:7a:3e:3a:23:32:31:cc:81:40:0e:c9:2d:f1:c7:74:a4:
c2:bb:99:d3:90:61:02:b1:34:22:76:02:aa:7a:28:ff:54:bf:
12:84:90:77:52:f2:40:05:bb:77:d5:06:d7:6c:da:2a:33:34:
c2:7c:0c:e6:9f:79:03:b0:b4:3e:a4:94:a6:76:a7:5c:fa:0e:
e8:40:8a:97:77:89:95:e1:51:cd:d1:d8:48:e3:ba:05:f6:ca:
3d:26:fe:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-fra.rpki-client.org