Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/m57V73G7fyQ9Rv-nzXElNsEf1mk.roa
File: m57V73G7fyQ9Rv-nzXElNsEf1mk.roa (raw, json)
Hash identifier: QCLWqaTYXkznO+7xH22UQX/dhREYeMEHY44x6EPCRsw=
Subject key identifier: 9B:9E:D5:EF:71:BB:7F:24:3D:46:FF:A7:CD:71:25:36:C1:1F:D6:69
Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial: FCFD1E
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/m57V73G7fyQ9Rv-nzXElNsEf1mk.roa
Signing time: Fri 21 Jan 2022 04:20:29 +0000
ROA not before: Fri 21 Jan 2022 04:20:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39010
IP address blocks: 85.112.64.0/24 maxlen: 24
85.112.69.0/24 maxlen: 24
85.112.70.0/24 maxlen: 24
85.112.71.0/24 maxlen: 24
85.112.65.0/24 maxlen: 24
85.112.66.0/24 maxlen: 24
85.112.67.0/24 maxlen: 24
85.112.75.0/24 maxlen: 24
85.112.76.0/24 maxlen: 24
85.112.77.0/24 maxlen: 24
85.112.78.0/24 maxlen: 24
85.112.72.0/24 maxlen: 24
85.112.74.0/24 maxlen: 24
85.112.82.0/24 maxlen: 24
85.112.83.0/24 maxlen: 24
85.112.84.0/24 maxlen: 24
85.112.85.0/24 maxlen: 24
85.112.89.0/24 maxlen: 24
85.112.90.0/24 maxlen: 24
85.112.91.0/24 maxlen: 24
85.112.86.0/24 maxlen: 24
85.112.87.0/24 maxlen: 24
85.112.88.0/24 maxlen: 24
85.112.93.0/24 maxlen: 24
85.112.94.0/24 maxlen: 24
85.112.95.0/24 maxlen: 24
85.112.92.0/24 maxlen: 24
212.98.137.0/24 maxlen: 24
212.98.138.0/24 maxlen: 24
212.98.139.0/24 maxlen: 24
212.98.135.0/24 maxlen: 24
212.98.136.0/24 maxlen: 24
212.98.133.0/24 maxlen: 24
212.98.144.0/24 maxlen: 24
212.98.145.0/24 maxlen: 24
212.98.141.0/24 maxlen: 24
212.98.142.0/24 maxlen: 24
212.98.143.0/24 maxlen: 24
212.98.140.0/24 maxlen: 24
212.98.151.0/24 maxlen: 24
212.98.152.0/24 maxlen: 24
212.98.147.0/24 maxlen: 24
212.98.148.0/24 maxlen: 24
212.98.149.0/24 maxlen: 24
212.98.150.0/24 maxlen: 24
212.98.146.0/24 maxlen: 24
212.98.158.0/24 maxlen: 24
212.98.159.0/24 maxlen: 24
212.98.154.0/24 maxlen: 24
212.98.155.0/24 maxlen: 24
212.98.156.0/24 maxlen: 24
212.98.157.0/24 maxlen: 24
212.98.153.0/24 maxlen: 24
212.98.130.0/24 maxlen: 24
212.98.131.0/24 maxlen: 24
212.98.132.0/24 maxlen: 24
212.98.129.0/24 maxlen: 24
5.57.4.0/24 maxlen: 24
5.57.3.0/24 maxlen: 24
5.57.0.0/21 maxlen: 21
5.57.7.0/24 maxlen: 24
5.57.5.0/24 maxlen: 24
5.57.6.0/24 maxlen: 24
213.204.112.0/24 maxlen: 24
213.204.108.0/24 maxlen: 24
213.204.109.0/24 maxlen: 24
213.204.110.0/24 maxlen: 24
213.204.111.0/24 maxlen: 24
213.204.106.0/24 maxlen: 24
213.204.107.0/24 maxlen: 24
213.204.115.0/24 maxlen: 24
213.204.116.0/24 maxlen: 24
213.204.117.0/24 maxlen: 24
213.204.118.0/24 maxlen: 24
213.204.113.0/24 maxlen: 24
213.204.114.0/24 maxlen: 24
213.204.122.0/24 maxlen: 24
213.204.123.0/24 maxlen: 24
213.204.124.0/24 maxlen: 24
213.204.125.0/24 maxlen: 24
213.204.119.0/24 maxlen: 24
213.204.120.0/24 maxlen: 24
213.204.121.0/24 maxlen: 24
213.204.126.0/24 maxlen: 24
213.204.127.0/24 maxlen: 24
213.204.64.0/24 maxlen: 24
213.204.70.0/24 maxlen: 24
213.204.71.0/24 maxlen: 24
213.204.67.0/24 maxlen: 24
213.204.64.0/18 maxlen: 18
213.204.68.0/24 maxlen: 24
213.204.69.0/24 maxlen: 24
213.204.65.0/24 maxlen: 24
213.204.66.0/24 maxlen: 24
213.204.77.0/24 maxlen: 24
213.204.78.0/24 maxlen: 24
213.204.74.0/24 maxlen: 24
213.204.75.0/24 maxlen: 24
213.204.76.0/24 maxlen: 24
213.204.76.0/23 maxlen: 23
213.204.72.0/24 maxlen: 24
213.204.73.0/24 maxlen: 24
213.204.81.0/24 maxlen: 24
213.204.82.0/24 maxlen: 24
213.204.83.0/24 maxlen: 24
213.204.79.0/24 maxlen: 24
213.204.80.0/24 maxlen: 24
213.204.84.0/24 maxlen: 24
213.204.85.0/24 maxlen: 24
213.204.91.0/24 maxlen: 24
213.204.88.0/24 maxlen: 24
213.204.89.0/24 maxlen: 24
213.204.90.0/24 maxlen: 24
213.204.86.0/24 maxlen: 24
213.204.87.0/24 maxlen: 24
213.204.98.0/24 maxlen: 24
213.204.94.0/24 maxlen: 24
213.204.95.0/24 maxlen: 24
213.204.97.0/24 maxlen: 24
213.204.92.0/24 maxlen: 24
213.204.93.0/24 maxlen: 24
213.204.105.0/24 maxlen: 24
213.204.101.0/24 maxlen: 24
213.204.102.0/24 maxlen: 24
213.204.103.0/24 maxlen: 24
213.204.104.0/24 maxlen: 24
213.204.99.0/24 maxlen: 24
213.204.100.0/24 maxlen: 24
78.108.164.0/24 maxlen: 24
78.108.165.0/24 maxlen: 24
78.108.166.0/24 maxlen: 24
78.108.161.0/24 maxlen: 24
78.108.162.0/24 maxlen: 24
78.108.163.0/24 maxlen: 24
78.108.160.0/24 maxlen: 24
78.108.171.0/24 maxlen: 24
78.108.172.0/24 maxlen: 24
78.108.167.0/24 maxlen: 24
78.108.169.0/24 maxlen: 24
78.108.170.0/24 maxlen: 24
78.108.174.0/24 maxlen: 24
78.108.175.0/24 maxlen: 24
185.54.62.0/24 maxlen: 24
185.54.63.0/24 maxlen: 24
185.54.60.0/24 maxlen: 24
185.54.61.0/24 maxlen: 24
2a00:1580::/48 maxlen: 48
2a00:1580:5::/48 maxlen: 48
2a00:1580:2::/48 maxlen: 48
2a00:1582:2::/48 maxlen: 48
2a00:1580:4::/48 maxlen: 48
2a00:1580::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16579870 (0xfcfd1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Validity
Not Before: Jan 21 04:20:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b9ed5ef71bb7f243d46ffa7cd712536c11fd669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f3:9b:65:32:df:6f:7e:99:af:50:e0:10:16:
dc:35:71:42:9d:06:d1:2f:5f:99:eb:a5:62:6a:66:
b6:4d:9d:b1:d6:b9:08:77:5c:6e:3c:ba:70:15:b8:
76:93:c9:8f:0a:38:c9:e1:2d:60:83:bb:5a:af:2d:
79:6f:e3:75:ba:6b:9d:2d:93:33:c7:b9:c2:31:70:
2c:54:0e:7e:ba:bb:4e:b5:17:9a:57:c0:27:2c:dd:
03:77:7b:32:db:4f:11:f1:b2:3c:d6:b0:7c:08:a4:
58:f8:af:58:24:89:f0:8c:d9:4c:99:f2:4e:c4:ef:
8d:d6:4b:c9:e3:bc:0a:ec:78:fe:88:bf:64:8a:5f:
d4:80:33:5f:cd:87:71:4e:06:95:d8:85:b4:1f:2d:
43:a8:58:30:93:d7:b5:dd:ae:1d:6a:fa:1b:91:c6:
18:d0:57:25:10:88:a6:06:1a:d2:86:59:d2:c0:71:
8a:a3:53:73:9a:1d:45:e2:a5:1a:34:87:38:8b:5b:
3f:70:3f:67:02:bf:d2:71:89:8e:4a:db:b6:81:4f:
c7:13:4b:37:8a:1a:b8:55:74:ba:c4:65:97:b5:40:
56:51:26:d9:46:16:3a:20:6b:ec:bd:51:3d:3b:f0:
91:0c:03:cd:90:77:c3:d2:4b:1b:47:6f:c8:09:30:
bb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:9E:D5:EF:71:BB:7F:24:3D:46:FF:A7:CD:71:25:36:C1:1F:D6:69
X509v3 Authority Key Identifier:
keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/m57V73G7fyQ9Rv-nzXElNsEf1mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.0.0/21
78.108.160.0/21
78.108.169.0-78.108.172.255
78.108.174.0/23
85.112.64.0/22
85.112.69.0-85.112.72.255
85.112.74.0-85.112.78.255
85.112.82.0-85.112.95.255
185.54.60.0/22
212.98.129.0-212.98.133.255
212.98.135.0-212.98.159.255
213.204.64.0/18
IPv6:
2a00:1580::/29
Signature Algorithm: sha256WithRSAEncryption
5f:d5:58:48:b8:00:b7:67:b5:cb:19:67:c6:eb:7b:b5:56:a3:
68:5f:84:c8:70:74:8d:49:46:cd:79:52:3d:0c:3e:01:84:d7:
dc:a1:3b:66:08:f3:ce:8c:06:95:48:15:8b:c7:94:a3:6d:25:
99:a4:12:16:a2:c8:d2:4d:04:b1:f3:97:a5:ba:3b:e4:70:ef:
33:ef:6d:8b:d6:ab:6d:ab:62:bb:3f:7f:dd:76:46:dc:3a:7a:
a2:a9:6b:1c:88:a3:27:e2:5d:b7:88:7a:9a:ee:7b:0f:b9:36:
2b:02:43:29:76:8b:5d:ec:a7:05:1c:01:60:8f:de:47:f4:13:
8e:cf:6f:2a:53:54:1a:9d:3a:83:25:3f:d4:a1:43:18:1b:22:
69:43:15:8a:2c:f2:45:b8:ad:56:d4:5d:b0:54:38:85:6e:43:
12:eb:4f:9c:03:d3:c1:a5:ac:09:6e:43:1b:72:d5:2c:50:1d:
a1:1d:2d:e6:3f:81:8d:ce:12:3b:ce:6c:81:a7:b4:b9:11:1e:
02:a3:a9:cc:21:32:25:3f:55:1d:d5:82:e1:08:ba:75:16:68:
44:91:a0:61:49:4c:10:eb:ad:4a:86:a6:37:c6:26:35:b7:00:
12:14:cf:3e:9e:4c:8a:47:58:34:cd:82:16:47:7d:d9:9b:c2:
66:aa:6d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:24 2024 by rpki-client on console-ams.rpki-client.org