Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Y3djyyPWGRez71Y6WgYvkcR7Aao.roa
File: Y3djyyPWGRez71Y6WgYvkcR7Aao.roa (raw, json)
Hash identifier: qU5drcarePV6MeXqUqXL9IBENURpqwjWtaEcUmGTNyI=
Subject key identifier: 63:77:63:CB:23:D6:19:17:B3:EF:56:3A:5A:06:2F:91:C4:7B:01:AA
Certificate issuer: /CN=679a75debd65359a45317f203f11a321e14b2f2c
Certificate serial: 06D6BDFF
Authority key identifier: 67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Y3djyyPWGRez71Y6WgYvkcR7Aao.roa
Signing time: Wed 25 May 2022 00:49:13 +0000
ROA not before: Wed 25 May 2022 00:49:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 93.113.31.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114736639 (0x6d6bdff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679a75debd65359a45317f203f11a321e14b2f2c
Validity
Not Before: May 25 00:49:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=637763cb23d61917b3ef563a5a062f91c47b01aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3c:5a:bf:35:3b:dc:78:61:17:3e:e1:7c:39:
1f:e5:f8:5e:5b:0b:08:f4:bc:c8:5b:ee:96:d5:0a:
10:fa:da:be:b8:1e:b5:f4:a2:e8:b7:39:e4:07:9a:
6d:34:e9:9d:03:9f:9d:27:86:c4:e3:85:8e:ad:00:
a9:a2:f6:83:7b:30:72:d4:c5:37:1e:09:64:07:2c:
ab:43:21:6a:94:93:14:78:ea:ae:66:be:ee:63:06:
69:d4:7f:d2:47:8f:7a:37:a5:3c:3c:cd:5b:a4:e1:
45:9e:b5:76:0a:3c:0d:29:c9:60:bb:6a:67:16:78:
f6:c9:5f:f4:1b:85:e5:81:4b:a8:05:df:7b:b7:26:
0d:7e:16:4c:e2:1a:ea:fb:9c:70:8a:58:04:0a:50:
6a:af:5f:4e:82:b6:e6:9f:b1:ce:2b:5c:f3:e3:40:
80:86:dc:42:39:41:71:46:c8:ec:69:de:6f:f6:1f:
c3:a1:1b:5e:52:44:87:eb:16:52:4d:5c:40:8f:3a:
53:ef:a1:4e:42:3f:4a:3e:d3:61:83:67:68:43:5e:
5a:5a:4a:c5:28:57:ff:4d:19:0b:1c:4f:a6:ad:22:
08:8a:09:32:21:51:e0:1a:83:3d:97:db:00:8b:32:
25:f7:c5:92:47:2d:57:7e:e4:f3:5a:a9:46:af:4b:
17:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:77:63:CB:23:D6:19:17:B3:EF:56:3A:5A:06:2F:91:C4:7B:01:AA
X509v3 Authority Key Identifier:
keyid:67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Y3djyyPWGRez71Y6WgYvkcR7Aao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Z5p13r1lNZpFMX8gPxGjIeFLLyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.31.0/24
Signature Algorithm: sha256WithRSAEncryption
75:ba:01:42:21:f5:6d:2b:24:6c:25:a6:9c:ba:c6:42:7d:81:
b5:8e:ad:00:91:4c:3b:85:ca:ff:a0:28:8f:d9:1a:79:4f:c3:
37:61:a0:e3:ce:c7:91:bc:a0:16:86:ee:74:9a:bf:2b:b5:ef:
7c:ee:fd:5e:3d:7a:19:9c:f8:d8:cf:a1:da:79:35:ac:cb:83:
fb:20:73:11:54:15:c0:27:d8:b9:c3:c0:1c:30:ea:8a:2e:03:
d4:82:55:71:66:db:fe:44:fb:40:1d:4c:23:11:50:29:92:4c:
ee:34:3b:ba:a0:a5:25:a4:55:84:83:a6:91:dc:f4:1f:bf:7e:
75:ea:58:ce:57:b7:35:89:00:67:e6:76:cd:6b:8e:33:1e:d2:
dd:80:e7:68:68:8f:80:5e:0e:81:89:20:d3:88:43:55:ce:7b:
00:92:93:c4:87:7b:39:35:90:02:be:69:1c:20:9f:1c:8b:95:
d7:fb:12:4d:59:80:9c:0b:c4:7a:c1:6e:9c:80:50:9b:ce:be:
09:90:b4:0e:b3:45:8b:74:0f:64:eb:59:2d:41:a1:5f:5e:18:
59:0d:5d:36:3a:44:5e:97:e8:53:28:e5:33:bc:d8:f6:72:3a:
5f:eb:d9:f4:e8:c2:04:4c:53:77:8a:b8:10:70:55:e0:b9:dd:
2b:cb:bf:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBta9/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NzlhNzVkZWJkNjUzNTlhNDUzMTdmMjAzZjExYTMyMWUxNGIyZjJjMB4XDTIyMDUy
NTAwNDkxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjM3NzYzY2IyM2Q2
MTkxN2IzZWY1NjNhNWEwNjJmOTFjNDdiMDFhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ48Wr81O9x4YRc+4Xw5H+X4XlsLCPS8yFvultUKEPravrge
tfSi6Lc55AeabTTpnQOfnSeGxOOFjq0AqaL2g3swctTFNx4JZAcsq0MhapSTFHjq
rma+7mMGadR/0kePejelPDzNW6ThRZ61dgo8DSnJYLtqZxZ49slf9BuF5YFLqAXf
e7cmDX4WTOIa6vuccIpYBApQaq9fToK25p+xzitc8+NAgIbcQjlBcUbI7Gneb/Yf
w6EbXlJEh+sWUk1cQI86U++hTkI/Sj7TYYNnaENeWlpKxShX/00ZCxxPpq0iCIoJ
MiFR4BqDPZfbAIsyJffFkkctV37k81qpRq9LFykCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjd2PLI9YZF7PvVjpaBi+RxHsBqjAfBgNVHSMEGDAWgBRnmnXevWU1mkUx
fyA/EaMh4UsvLDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1o1cDEzcjFsTlpwRk1YOGdQeEdqSWVGTEx5dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvN2EzOWIxLTFkMWMtNDkxOS1iMTljLTNlZWJlNzE5Njk3Mi8x
L1kzZGp5eVBXR1JlejcxWTZXZ1l2a2NSN0Fhby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
N2EzOWIxLTFkMWMtNDkxOS1iMTljLTNlZWJlNzE5Njk3Mi8xL1o1cDEzcjFsTlpw
Rk1YOGdQeEdqSWVGTEx5dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF1xHzANBgkqhkiG9w0BAQsFAAOC
AQEAdboBQiH1bSskbCWmnLrGQn2BtY6tAJFMO4XK/6Aoj9kaeU/DN2Gg487Hkbyg
FobudJq/K7XvfO79Xj16GZz42M+h2nk1rMuD+yBzEVQVwCfYucPAHDDqii4D1IJV
cWbb/kT7QB1MIxFQKZJM7jQ7uqClJaRVhIOmkdz0H79+depYzle3NYkAZ+Z2zWuO
Mx7S3YDnaGiPgF4OgYkg04hDVc57AJKTxId7OTWQAr5pHCCfHIuV1/sSTVmAnAvE
esFunIBQm86+CZC0DrNFi3QPZOtZLUGhX14YWQ1dNjpEXpfoUyjlM7zY9nI6X+vZ
9OjCBExTd4q4EHBV4LndK8u/Qg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:30 2023 by rpki-client on console-ams.rpki-client.org