Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/mO04O_wrLt0QPUv_MAkz7XcllfU.roa
File: mO04O_wrLt0QPUv_MAkz7XcllfU.roa (raw, json)
Hash identifier: aIa5FIvQ9jSswiLLwRtASzD08sybdHMHX6F9iNZ4bX0=
Subject key identifier: 98:ED:38:3B:FC:2B:2E:DD:10:3D:4B:FF:30:09:33:ED:77:25:95:F5
Certificate issuer: /CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Certificate serial: 03A2EE71
Authority key identifier: D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/mO04O_wrLt0QPUv_MAkz7XcllfU.roa
Signing time: Mon 04 Apr 2022 10:10:52 +0000
ROA not before: Mon 04 Apr 2022 10:10:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211327
IP address blocks: 93.180.134.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61009521 (0x3a2ee71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Validity
Not Before: Apr 4 10:10:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98ed383bfc2b2edd103d4bff300933ed772595f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9f:1d:cc:b7:ff:85:cd:e6:b3:3a:d3:cd:e7:
71:74:cb:06:b0:9d:af:d4:3f:c0:bd:08:ea:27:98:
de:ae:d9:8d:82:83:c4:df:f3:7f:73:ce:2d:3f:c6:
d5:bf:19:27:e8:a8:64:ff:c8:ac:7c:30:9f:09:5b:
89:4c:e5:6a:2d:f9:2a:e8:73:7f:27:95:14:d2:59:
8a:4d:7e:d2:57:42:ed:d0:86:82:bb:e4:be:f5:69:
f0:3f:66:70:9d:4c:a6:dd:c4:52:8b:ad:a8:d0:0b:
24:3e:10:77:50:65:3b:cc:6c:c3:d1:5a:48:a0:12:
89:c6:fb:e5:7a:6a:fd:f4:e7:b3:d8:b9:c3:6f:0f:
fb:9b:d3:72:dd:ee:1f:27:6d:0c:33:8a:f3:7a:60:
49:f3:ac:3e:af:a4:6b:56:6d:b3:4e:ea:fa:f6:bb:
1d:a0:6a:36:c3:a8:a2:94:de:8f:36:f1:20:c5:7e:
f0:87:e6:5f:f2:32:48:cc:40:49:d2:3c:2e:9c:ec:
dc:13:f9:9b:92:26:e1:8a:3c:75:f8:b3:cf:5d:42:
64:fc:65:03:99:78:98:03:92:35:64:45:16:67:4b:
de:16:02:b8:3f:76:8b:13:1c:cf:77:aa:d2:23:e7:
93:93:30:df:d2:09:ff:19:0d:9d:0f:33:5b:83:74:
3a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:ED:38:3B:FC:2B:2E:DD:10:3D:4B:FF:30:09:33:ED:77:25:95:F5
X509v3 Authority Key Identifier:
keyid:D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/mO04O_wrLt0QPUv_MAkz7XcllfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:76:fa:ec:9f:b9:4d:08:06:b1:80:a5:74:fe:f0:eb:60:92:
44:5e:36:72:62:60:1c:13:f5:5d:b6:7b:30:6e:42:5e:cd:53:
72:d9:89:71:60:3d:d7:bd:60:99:ba:8f:40:d4:0b:3c:94:fd:
ca:e0:8c:86:31:f3:e3:7c:d7:72:e0:64:65:81:10:71:9b:fa:
fa:68:a2:84:43:b6:3d:2c:ba:9d:e1:b5:99:7b:4f:fd:74:12:
74:81:74:65:df:c4:f0:02:3f:81:dd:13:c4:83:e8:34:c4:09:
b7:ea:23:0b:65:01:7b:33:50:92:81:ce:64:ba:60:a5:a0:8b:
4b:b0:dc:bf:2e:a4:32:30:7f:87:d4:55:8a:68:fd:7e:1f:8e:
38:f3:b0:3c:36:72:c2:a0:12:4e:b8:f8:79:2d:1f:9c:0f:d3:
04:88:23:b9:8b:a8:88:d7:a8:05:7a:e2:14:fc:21:50:1d:9a:
20:29:78:de:1f:48:42:ad:c7:5b:c2:92:fc:59:31:14:e6:56:
bf:7d:99:7d:a1:13:84:72:2d:26:e6:cd:50:7b:03:37:c6:ce:
87:6e:01:dc:3c:b6:90:aa:69:24:8f:8e:ca:c0:a0:12:97:dd:
23:2c:da:35:0c:cc:a2:d7:72:16:4f:4c:f0:d4:db:08:9a:75:
14:5b:71:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:34 2023 by rpki-client on console-ams.rpki-client.org