Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/Fwy0EuG20A-ZkOoRWYkD51_07NE.roa
File: Fwy0EuG20A-ZkOoRWYkD51_07NE.roa (raw, json)
Hash identifier: tFWcZNAOzoCUdsMYy5Wdb0Z4kfCSnwBjEsU/zI0wCfQ=
Subject key identifier: 17:0C:B4:12:E1:B6:D0:0F:99:90:EA:11:59:89:03:E7:5F:F4:EC:D1
Certificate issuer: /CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Certificate serial: 29F19581
Authority key identifier: 10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/Fwy0EuG20A-ZkOoRWYkD51_07NE.roa
Signing time: Sat 01 Jan 2022 13:54:26 +0000
ROA not before: Sat 01 Jan 2022 13:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199560
IP address blocks: 93.179.66.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 703698305 (0x29f19581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Validity
Not Before: Jan 1 13:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=170cb412e1b6d00f9990ea11598903e75ff4ecd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d8:ea:9f:30:2d:cf:02:3e:50:ca:d2:46:74:
56:10:f3:0a:1a:0a:e0:92:70:a8:80:e7:14:59:71:
c4:65:45:5f:ed:2c:94:04:77:9c:93:1b:ff:1c:fe:
3c:5d:c5:89:8e:ac:9f:0f:3d:cb:08:d3:e2:87:ee:
4c:3a:a8:df:dc:86:0a:7a:c9:33:97:e6:80:c5:ed:
e2:bf:07:0b:a5:51:86:8b:7c:d0:4c:a7:87:35:e5:
55:b1:ee:9f:de:59:13:88:ae:45:7f:4f:33:3c:f6:
88:38:c9:2e:25:86:da:99:44:95:03:70:bb:1a:ff:
1a:81:e3:be:0e:3e:8f:8f:60:03:85:e0:f2:b0:aa:
71:58:32:fd:80:c7:9b:a7:e3:82:64:8f:6c:7f:cc:
77:b1:5e:70:c8:6d:13:20:63:5f:6a:40:37:64:8c:
03:74:66:50:99:b0:62:5e:9d:37:cf:e8:9a:78:33:
14:6f:d3:8c:c9:11:be:9d:ae:57:30:51:e1:1f:77:
31:d1:f5:35:83:38:21:6b:05:75:81:66:22:07:70:
58:12:58:90:31:47:9d:8f:c8:e6:f3:6b:52:f2:10:
45:c8:22:06:73:b6:fe:65:92:35:f4:35:9a:e6:dc:
70:95:d8:21:5c:ce:6a:40:41:37:1b:8f:f7:60:04:
ef:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0C:B4:12:E1:B6:D0:0F:99:90:EA:11:59:89:03:E7:5F:F4:EC:D1
X509v3 Authority Key Identifier:
keyid:10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/Fwy0EuG20A-ZkOoRWYkD51_07NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EEXazIN3mMPmzzH00nlGozsN5mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.179.66.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:5e:2c:63:a1:b6:e2:21:88:45:dc:32:26:6e:d4:cf:0e:28:
57:ae:4b:ac:89:6c:28:2e:d0:af:95:13:16:03:e6:0f:d9:b4:
32:f9:32:e7:5d:a5:64:eb:89:68:48:3a:84:4b:4a:12:f7:fb:
f5:39:59:6d:b1:bd:a7:1b:bd:64:86:92:5b:92:3f:0d:fb:19:
ea:96:4c:28:69:36:6e:06:75:68:4d:36:57:38:d0:4b:ed:1d:
c0:c2:45:16:84:ef:54:d8:bc:47:7c:f1:b7:d2:b1:a7:26:94:
33:e2:9c:da:50:97:c9:ef:23:0f:79:46:1c:be:62:75:94:3f:
2b:58:ba:0d:17:c5:8b:69:c5:ab:6e:43:e6:ef:ad:a9:bd:fc:
dd:e4:c5:8d:12:9c:7f:8a:a9:af:26:10:4b:1e:8e:77:43:b4:
bb:a4:ef:20:b9:39:41:11:f6:29:5d:dc:05:d2:4e:42:04:65:
9b:c7:0a:f7:1b:fe:95:00:c9:6e:40:a4:a8:b3:88:1e:35:cd:
f9:29:a0:84:fd:7f:88:0d:3d:7c:db:f4:73:17:47:de:00:7e:
38:2b:b8:6d:61:36:41:83:7d:75:e3:ed:99:8f:95:1a:44:2c:
c6:e7:52:c8:2e:44:18:1f:a0:e4:5d:bd:55:bb:22:24:bc:3a:
14:ec:c1:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org