Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/FcDvDxrRXCfNN9IVat4JGf7nHoQ.roa
File: FcDvDxrRXCfNN9IVat4JGf7nHoQ.roa (raw, json)
Hash identifier: n/EHqNg5qw71Iq5Zt7nviORKNR1sQz+Yi+0RL7SL0us=
Subject key identifier: 15:C0:EF:0F:1A:D1:5C:27:CD:37:D2:15:6A:DE:09:19:FE:E7:1E:84
Certificate issuer: /CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Certificate serial: 2AFD623B
Authority key identifier: 10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/FcDvDxrRXCfNN9IVat4JGf7nHoQ.roa
Signing time: Mon 11 Apr 2022 14:52:49 +0000
ROA not before: Mon 11 Apr 2022 14:52:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47510
IP address blocks: 93.179.120.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 721248827 (0x2afd623b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Validity
Not Before: Apr 11 14:52:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15c0ef0f1ad15c27cd37d2156ade0919fee71e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:74:25:0f:78:18:0d:de:63:6e:d8:90:16:a6:
f5:74:5e:ae:70:9d:5d:51:36:d9:15:a6:d9:1c:e0:
30:52:ac:89:35:0c:a6:1d:f0:70:56:fa:04:c5:01:
f6:1b:80:2b:45:4e:26:c6:7f:5f:37:70:d2:dc:c9:
e3:4c:da:a0:d2:0c:f2:77:76:a3:6b:ca:39:ea:92:
fc:41:11:65:48:ec:c9:12:e6:3e:38:66:12:06:26:
c0:e1:b0:f2:1b:74:c3:38:db:13:1b:a7:a9:09:28:
85:31:b2:b7:ee:10:a4:5c:7c:13:8d:9d:eb:3f:10:
29:63:64:e0:f6:6d:26:e3:41:2e:11:f4:04:7f:70:
7d:91:01:33:39:d4:b1:63:6e:c2:2b:1b:cb:20:42:
48:b4:21:a1:8b:29:86:5f:34:16:a8:32:0d:46:88:
dc:ae:6c:cc:5f:42:4e:84:2d:d8:f2:4b:82:80:2f:
b0:66:1a:fc:43:77:35:05:6a:4a:6b:6a:65:3d:c9:
4a:73:34:30:64:df:4e:c7:60:23:e1:b5:66:41:93:
d0:5a:1d:89:98:7c:6e:e3:b7:6f:51:36:34:4f:ec:
42:79:92:2a:91:61:a0:9c:f0:9d:32:30:12:a6:cf:
69:33:22:cb:c3:08:22:26:f1:86:7a:da:6a:89:db:
af:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C0:EF:0F:1A:D1:5C:27:CD:37:D2:15:6A:DE:09:19:FE:E7:1E:84
X509v3 Authority Key Identifier:
keyid:10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/FcDvDxrRXCfNN9IVat4JGf7nHoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EEXazIN3mMPmzzH00nlGozsN5mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.179.120.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:80:28:45:e1:db:be:68:49:46:74:da:ce:25:6c:12:7e:51:
5d:10:82:eb:98:30:00:01:89:f6:ce:0a:ab:96:b8:b0:38:2a:
32:80:bb:59:fc:dd:37:cd:7a:59:ec:9b:7d:9e:a7:14:40:30:
7c:ca:57:c6:29:e4:39:c4:5a:3e:ee:d3:20:74:4a:8e:7f:6f:
9b:1b:07:08:5f:8b:43:bb:21:90:45:53:f6:58:36:b1:93:2c:
5b:ac:75:7b:5d:a8:b6:99:2e:05:2e:21:88:bf:bb:65:76:4d:
a8:8a:8a:96:0f:f6:f5:80:b6:da:50:48:e2:53:eb:91:c7:08:
88:fe:56:b2:fa:40:7b:ec:5b:88:66:1d:30:c7:d6:c5:ef:a4:
3a:f0:53:48:ec:f5:0c:44:db:31:27:56:b5:7c:8d:43:81:71:
3c:61:cf:70:f0:a2:72:fe:99:e6:01:96:bd:f2:a1:27:c3:ac:
da:1a:74:ea:7e:e7:65:00:03:26:ac:78:75:f4:a7:4b:d6:93:
cc:c3:49:3d:ed:e3:a9:31:f6:25:72:74:ba:de:f3:72:8f:c2:
72:dc:c9:bb:ca:9b:68:59:12:06:7d:f6:5c:2c:98:de:cc:cf:
7d:b2:e5:ab:f9:65:79:4a:a2:54:e1:e8:61:2d:27:de:a4:cd:
3d:74:47:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKv1iOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MDQ1ZGFjYzgzNzc5OGMzZTZjZjMxZjRkMjc5NDZhMzNiMGRlNjYxMB4XDTIyMDQx
MTE0NTI0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTVjMGVmMGYxYWQx
NWMyN2NkMzdkMjE1NmFkZTA5MTlmZWU3MWU4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ10JQ94GA3eY27YkBam9XRernCdXVE22RWm2RzgMFKsiTUM
ph3wcFb6BMUB9huAK0VOJsZ/Xzdw0tzJ40zaoNIM8nd2o2vKOeqS/EERZUjsyRLm
PjhmEgYmwOGw8ht0wzjbExunqQkohTGyt+4QpFx8E42d6z8QKWNk4PZtJuNBLhH0
BH9wfZEBMznUsWNuwisbyyBCSLQhoYsphl80FqgyDUaI3K5szF9CToQt2PJLgoAv
sGYa/EN3NQVqSmtqZT3JSnM0MGTfTsdgI+G1ZkGT0FodiZh8buO3b1E2NE/sQnmS
KpFhoJzwnTIwEqbPaTMiy8MIIibxhnraaonbrwMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQVwO8PGtFcJ8030hVq3gkZ/ucehDAfBgNVHSMEGDAWgBQQRdrMg3eYw+bP
MfTSeUajOw3mYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VFWGF6SU4zbU1QbXp6SDAwbmxHb3pzTjVtRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjIvMjY2Y2FmLTNiNDMtNDllMC1iNmUxLTljMTc0ZTUzZTRmZS8x
L0ZjRHZEeHJSWENmTk45SVZhdDRKR2Y3bkhvUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIv
MjY2Y2FmLTNiNDMtNDllMC1iNmUxLTljMTc0ZTUzZTRmZS8xL0VFWGF6SU4zbU1Q
bXp6SDAwbmxHb3pzTjVtRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF2zeDANBgkqhkiG9w0BAQsFAAOC
AQEAv4AoReHbvmhJRnTaziVsEn5RXRCC65gwAAGJ9s4Kq5a4sDgqMoC7WfzdN816
WeybfZ6nFEAwfMpXxinkOcRaPu7TIHRKjn9vmxsHCF+LQ7shkEVT9lg2sZMsW6x1
e12otpkuBS4hiL+7ZXZNqIqKlg/29YC22lBI4lPrkccIiP5WsvpAe+xbiGYdMMfW
xe+kOvBTSOz1DETbMSdWtXyNQ4FxPGHPcPCicv6Z5gGWvfKhJ8Os2hp06n7nZQAD
Jqx4dfSnS9aTzMNJPe3jqTH2JXJ0ut7zco/CctzJu8qbaFkSBn32XCyY3szPfbLl
q/lleUqiVOHoYS0n3qTNPXRHSA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org