Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/IbY1VyWDwXQ-2xi-HhqV4vtyxjI.roa
File: IbY1VyWDwXQ-2xi-HhqV4vtyxjI.roa (raw, json)
Hash identifier: JaR+X3TFi01LIdQi+Gk5pjE/7gZD4ivBB5HqvCsWHj4=
Subject key identifier: 21:B6:35:57:25:83:C1:74:3E:DB:18:BE:1E:1A:95:E2:FB:72:C6:32
Certificate issuer: /CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Certificate serial: 2B0FF43C
Authority key identifier: 10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/IbY1VyWDwXQ-2xi-HhqV4vtyxjI.roa
Signing time: Tue 19 Apr 2022 12:31:42 +0000
ROA not before: Tue 19 Apr 2022 12:31:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8749
IP address blocks: 93.179.64.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722465852 (0x2b0ff43c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Validity
Not Before: Apr 19 12:31:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21b635572583c1743edb18be1e1a95e2fb72c632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b2:84:ed:53:b4:3c:7e:9c:9f:7f:11:7f:21:
6e:12:5f:83:cb:da:09:c6:cc:da:21:b5:a2:f7:47:
e3:47:94:08:22:ea:a9:ed:f4:84:8a:fb:7e:d8:4c:
73:1c:61:1d:90:ce:5d:4f:16:9c:fc:97:80:4a:42:
a1:ab:f5:91:6b:35:b3:1f:3f:c1:b1:3f:e7:1f:61:
2a:84:5a:59:83:0f:29:f0:a3:75:11:c3:92:15:05:
30:cb:0b:4e:83:46:94:f4:93:3e:3e:2e:ab:70:d4:
cb:80:29:ea:32:c8:26:98:e4:6e:a6:9e:c4:f7:52:
d4:0e:af:35:8c:e4:1e:eb:d4:eb:74:3f:5c:51:cd:
02:f6:ef:15:88:94:34:0f:48:6e:c7:cb:2a:b1:65:
3d:fc:a4:a0:83:a2:eb:af:d2:88:bc:52:b3:e6:0d:
8b:b1:fe:66:ad:6c:81:d8:0a:d6:5d:63:fb:ee:c6:
ed:fc:97:e3:e0:fb:25:b3:03:c6:80:44:eb:8b:3e:
ec:0a:6c:d3:f8:74:f8:9e:62:ee:53:5e:cb:88:c6:
37:ce:70:98:0a:51:b5:6f:ed:4d:ab:3f:7c:95:28:
59:8a:60:06:c1:1c:e1:e3:2c:14:64:23:7d:d1:07:
42:08:fb:1c:69:2b:39:cc:18:dd:48:37:b1:b4:95:
e0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B6:35:57:25:83:C1:74:3E:DB:18:BE:1E:1A:95:E2:FB:72:C6:32
X509v3 Authority Key Identifier:
keyid:10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/IbY1VyWDwXQ-2xi-HhqV4vtyxjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EEXazIN3mMPmzzH00nlGozsN5mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.179.64.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:ff:84:22:aa:66:7e:b7:36:65:ae:43:1f:08:69:ec:1f:bf:
ef:c9:4e:77:4e:cb:5a:39:46:4a:97:b3:80:3e:3c:06:8a:d8:
f2:34:a2:3d:69:02:41:2f:77:4e:43:b9:dd:7a:68:bb:32:fa:
c5:20:33:93:89:a8:68:27:59:79:c9:f4:d0:69:89:a6:c6:a4:
37:59:68:19:ef:29:c1:3a:a3:93:02:3c:b9:3f:ef:00:83:33:
67:db:18:66:93:ed:61:ad:26:d7:0d:4b:b2:da:b7:75:d0:88:
ca:ff:cb:68:8a:74:f4:da:c0:72:aa:be:15:fd:74:b1:41:b6:
cb:66:74:35:4c:56:06:85:6f:e9:03:39:01:cb:98:81:9c:67:
8d:ea:d6:de:7c:39:ae:93:52:87:e1:a3:1f:6c:c6:ab:ec:f2:
02:e3:ba:e2:39:5f:62:2f:09:04:5b:38:d1:34:bc:9a:7f:d7:
e9:cd:17:81:fc:f2:71:25:3e:70:ed:71:bd:15:b0:ec:f1:fc:
0f:f9:0d:ec:8c:19:91:47:0e:9d:8c:f0:75:d0:93:c6:d1:55:
46:55:57:49:90:fc:7e:52:fb:40:f2:77:bf:c5:c3:91:6e:83:
4f:a2:14:d8:2f:bb:38:52:10:87:e5:35:f8:22:b8:3e:1c:1c:
62:cd:e3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org