Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/C9Joug7C_0yM5rQ_3wrn7pJ3S2k.roa
File: C9Joug7C_0yM5rQ_3wrn7pJ3S2k.roa (raw, json)
Hash identifier: c8HLmlYPDV03jIXXhwuRthhgeST3Rpb59Z2eZRO+RJM=
Subject key identifier: 0B:D2:68:BA:0E:C2:FF:4C:8C:E6:B4:3F:DF:0A:E7:EE:92:77:4B:69
Certificate issuer: /CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Certificate serial: 01857169A6B7E45B686CC044C1E00C82DEBC
Authority key identifier: D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/C9Joug7C_0yM5rQ_3wrn7pJ3S2k.roa
Signing time: Mon 02 Jan 2023 07:37:07 +0000
ROA not before: Mon 02 Jan 2023 07:37:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62456
IP address blocks: 93.180.135.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:a6:b7:e4:5b:68:6c:c0:44:c1:e0:0c:82:de:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Validity
Not Before: Jan 2 07:37:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bd268ba0ec2ff4c8ce6b43fdf0ae7ee92774b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6d:6b:cc:8b:ef:e9:3d:33:dd:3a:24:4f:f2:
10:1d:2e:21:57:83:13:c1:f8:f7:64:aa:7a:7f:22:
78:05:f0:44:b5:1f:32:97:4e:5c:4c:8a:b0:5b:c6:
df:9d:33:8f:3b:e9:ac:6c:0f:a7:71:75:4d:31:66:
31:17:f2:d0:26:fd:9d:bb:e2:07:ab:1c:0f:cf:b7:
bc:7a:78:be:27:11:d9:b4:8c:55:aa:8e:76:dc:d9:
fc:39:e8:a5:c7:aa:af:a0:03:84:dc:3c:9f:81:24:
17:ab:73:17:af:01:d1:ed:04:7d:17:16:da:42:4d:
57:fa:5b:66:dc:d4:a6:ba:cd:d1:1d:88:98:6a:5b:
30:8f:76:61:0c:08:9e:b7:72:4d:58:a9:20:45:09:
cd:34:ac:25:4b:7d:4f:69:5c:0d:2f:7a:bd:8c:a5:
0f:8c:79:b0:96:0e:95:d9:84:bf:7b:23:3b:b0:8c:
e7:12:79:74:85:b9:27:70:ac:e5:21:7f:8b:e3:5b:
24:17:a5:8a:8a:bb:6e:51:8f:36:ab:11:ef:ae:a0:
f0:a4:cf:e7:1c:ad:20:6b:54:fd:db:3c:91:90:36:
a7:ac:9b:02:66:25:49:23:d0:ad:98:52:6d:01:76:
08:99:c7:cc:a4:77:1d:4e:dd:c6:1a:a1:15:91:9a:
87:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D2:68:BA:0E:C2:FF:4C:8C:E6:B4:3F:DF:0A:E7:EE:92:77:4B:69
X509v3 Authority Key Identifier:
keyid:D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/C9Joug7C_0yM5rQ_3wrn7pJ3S2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.135.0/24
Signature Algorithm: sha256WithRSAEncryption
08:4a:a1:c8:50:e6:9e:76:ab:66:ab:4c:0e:2d:94:0e:c6:4b:
33:a3:69:16:00:dc:10:a1:ba:f9:85:df:6d:34:e5:ab:6a:4b:
44:40:2f:06:58:a5:09:9e:43:39:60:96:ed:fa:20:d4:a8:f9:
5a:61:29:00:27:b2:58:b7:49:d3:0d:9b:aa:96:d2:09:bd:61:
85:0f:7a:7a:9b:71:11:fa:d1:93:4f:8d:c7:e9:91:31:ba:0f:
f0:e7:09:e6:27:07:ac:62:c1:7f:7e:fd:be:f1:08:8e:40:27:
52:bb:e4:90:af:02:ad:40:1d:2c:ad:db:a9:26:be:ac:00:af:
41:59:e1:75:0b:3f:51:52:7c:92:a6:4b:0f:99:af:e3:56:48:
b3:ed:c9:19:29:d4:cb:67:a9:1f:37:25:8e:76:7f:69:bc:81:
41:9a:c5:09:14:a0:11:40:47:18:53:fb:ea:dd:05:b9:3b:cc:
3c:45:75:8e:8f:98:7f:e6:62:dc:92:62:59:b0:63:dd:b4:94:
f6:52:24:b7:86:f6:f4:05:d0:e8:68:29:92:da:b6:ae:9d:cd:
66:b9:5f:99:7b:ae:47:c6:78:1f:94:24:e5:38:5f:66:64:c5:
ae:96:38:c4:4f:57:8d:57:72:7b:53:93:12:8c:6e:21:26:95:
44:fc:51:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxaaa35FtobMBEweAMgt68MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ODFhNjI3MDE3ZDFhMDZjZWRkMGI0OGU0ZmM2ZmNmZjU4
NmRkOTQwHhcNMjMwMTAyMDczNzA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmQyNjhiYTBlYzJmZjRjOGNlNmI0M2ZkZjBhZTdlZTkyNzc0YjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnG1rzIvv6T0z3TokT/IQHS4hV4MT
wfj3ZKp6fyJ4BfBEtR8yl05cTIqwW8bfnTOPO+msbA+ncXVNMWYxF/LQJv2du+IH
qxwPz7e8eni+JxHZtIxVqo523Nn8Oeilx6qvoAOE3DyfgSQXq3MXrwHR7QR9Fxba
Qk1X+ltm3NSmus3RHYiYalswj3ZhDAiet3JNWKkgRQnNNKwlS31PaVwNL3q9jKUP
jHmwlg6V2YS/eyM7sIznEnl0hbkncKzlIX+L41skF6WKirtuUY82qxHvrqDwpM/n
HK0ga1T92zyRkDanrJsCZiVJI9CtmFJtAXYImcfMpHcdTt3GGqEVkZqHrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAvSaLoOwv9MjOa0P98K5+6Sd0tpMB8GA1UdIwQY
MBaAFNSBpicBfRoGzt0LSOT8b8/1ht2UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUlHbUp3RjlHZ2JPM1F0STVQeHZ6X1dHM1pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9mZjYzZDgtZmVjYS00M2NkLTkwNGQt
NzJiMzJkOTUxOTUzLzEvQzlKb3VnN0NfMHlNNXJRXzN3cm43cEozUzJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9mZjYzZDgtZmVjYS00M2NkLTkwNGQtNzJiMzJkOTUxOTUz
LzEvMUlHbUp3RjlHZ2JPM1F0STVQeHZ6X1dHM1pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXbSHMA0G
CSqGSIb3DQEBCwUAA4IBAQAISqHIUOaedqtmq0wOLZQOxkszo2kWANwQobr5hd9t
NOWraktEQC8GWKUJnkM5YJbt+iDUqPlaYSkAJ7JYt0nTDZuqltIJvWGFD3p6m3ER
+tGTT43H6ZExug/w5wnmJwesYsF/fv2+8QiOQCdSu+SQrwKtQB0srdupJr6sAK9B
WeF1Cz9RUnySpksPma/jVkiz7ckZKdTLZ6kfNyWOdn9pvIFBmsUJFKARQEcYU/vq
3QW5O8w8RXWOj5h/5mLckmJZsGPdtJT2UiS3hvb0BdDoaCmS2raunc1muV+Ze65H
xngflCTlOF9mZMWuljjET1eNV3J7U5MSjG4hJpVE/FHP
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:34 2023 by rpki-client on console-ams.rpki-client.org