Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Vyt2rkcjojpviCupnNawXxagvsk.roa
File: Vyt2rkcjojpviCupnNawXxagvsk.roa (raw, json)
Hash identifier: GPhm2sCd4l7a7Ep9k9MU2U4VctEm6xFm+avrD7slSA4=
Subject key identifier: 57:2B:76:AE:47:23:A2:3A:6F:88:2B:A9:9C:D6:B0:5F:16:A0:BE:C9
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01849A35EDBA01BE49A1E11782EC7F8C2571
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Vyt2rkcjojpviCupnNawXxagvsk.roa
Signing time: Mon 21 Nov 2022 12:42:16 +0000
ROA not before: Mon 21 Nov 2022 12:42:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8866
IP address blocks: 90.154.128.0/17 maxlen: 24
62.73.64.0/18 maxlen: 24
84.40.64.0/18 maxlen: 18
46.249.64.0/19 maxlen: 19
89.25.124.0/22 maxlen: 22
85.187.46.0/23 maxlen: 24
85.187.64.0/18 maxlen: 18
212.72.199.0/24 maxlen: 24
212.72.198.0/24 maxlen: 24
212.72.202.0/23 maxlen: 24
212.72.212.0/24 maxlen: 24
89.25.72.0/22 maxlen: 22
85.187.22.0/23 maxlen: 24
85.187.24.0/21 maxlen: 24
89.25.100.0/22 maxlen: 22
85.187.32.0/21 maxlen: 24
83.228.0.0/17 maxlen: 24
79.100.0.0/16 maxlen: 24
78.154.0.0/19 maxlen: 24
212.72.214.0/24 maxlen: 24
212.72.221.0/24 maxlen: 24
212.5.128.0/19 maxlen: 24
212.39.64.0/19 maxlen: 24
82.146.0.0/22 maxlen: 22
82.146.6.0/23 maxlen: 24
82.146.11.0/24 maxlen: 24
82.146.24.0/23 maxlen: 24
77.85.176.0/20 maxlen: 24
77.85.174.0/24 maxlen: 24
77.85.198.0/24 maxlen: 24
89.25.40.0/21 maxlen: 21
89.25.52.0/22 maxlen: 22
89.25.56.0/21 maxlen: 21
89.25.64.0/21 maxlen: 21
82.146.28.0/23 maxlen: 24
82.146.31.0/24 maxlen: 24
77.85.128.0/19 maxlen: 24
87.126.0.0/16 maxlen: 24
77.85.160.0/21 maxlen: 24
77.85.168.0/22 maxlen: 24
77.85.172.0/23 maxlen: 24
95.43.206.0/24 maxlen: 24
95.43.220.0/22 maxlen: 22
87.118.144.0/22 maxlen: 22
87.118.144.0/23 maxlen: 23
213.91.154.0/24 maxlen: 24
46.10.193.0/24 maxlen: 24
87.118.164.0/22 maxlen: 22
77.85.0.0/16 maxlen: 24
213.91.128.0/17 maxlen: 24
46.10.166.0/23 maxlen: 23
84.238.136.0/22 maxlen: 22
84.238.134.0/23 maxlen: 24
84.238.140.0/23 maxlen: 23
84.238.142.0/23 maxlen: 23
84.238.144.0/21 maxlen: 21
84.238.152.0/22 maxlen: 24
84.238.156.0/22 maxlen: 22
84.238.165.0/24 maxlen: 24
84.238.168.0/21 maxlen: 21
84.238.167.0/24 maxlen: 24
84.238.178.0/23 maxlen: 24
84.238.180.0/22 maxlen: 22
82.137.64.0/18 maxlen: 24
95.43.0.0/17 maxlen: 24
37.157.136.0/21 maxlen: 21
213.16.32.0/19 maxlen: 24
37.157.160.0/19 maxlen: 19
84.238.128.0/22 maxlen: 22
46.10.0.0/16 maxlen: 24
84.238.192.0/22 maxlen: 24
84.238.204.0/22 maxlen: 22
87.116.64.0/22 maxlen: 22
87.116.68.0/22 maxlen: 22
87.116.72.0/21 maxlen: 21
151.237.140.0/23 maxlen: 24
87.116.82.0/24 maxlen: 24
87.116.84.0/22 maxlen: 22
213.130.92.0/23 maxlen: 24
213.130.95.0/24 maxlen: 24
213.130.64.0/22 maxlen: 22
213.130.78.0/23 maxlen: 23
213.130.76.0/23 maxlen: 24
213.130.77.0/24 maxlen: 24
62.176.64.0/19 maxlen: 24
94.236.229.0/24 maxlen: 24
94.236.231.0/24 maxlen: 24
94.236.228.0/24 maxlen: 24
94.236.234.0/24 maxlen: 24
94.236.235.0/24 maxlen: 24
94.236.238.0/24 maxlen: 24
94.236.240.0/20 maxlen: 20
62.176.96.0/19 maxlen: 24
94.236.163.0/24 maxlen: 24
94.236.164.0/24 maxlen: 24
94.236.160.0/24 maxlen: 24
87.243.96.0/21 maxlen: 21
94.236.161.0/24 maxlen: 24
94.155.204.0/22 maxlen: 24
94.236.160.0/19 maxlen: 24
94.236.172.0/24 maxlen: 24
87.243.104.0/21 maxlen: 21
94.236.170.0/23 maxlen: 23
94.236.179.0/24 maxlen: 24
87.243.112.0/22 maxlen: 22
94.236.173.0/24 maxlen: 24
94.236.174.0/24 maxlen: 24
94.236.175.0/24 maxlen: 24
94.236.176.0/23 maxlen: 23
87.243.116.0/22 maxlen: 22
94.236.180.0/22 maxlen: 22
94.236.184.0/21 maxlen: 21
87.243.120.0/21 maxlen: 21
94.236.204.0/24 maxlen: 24
94.236.205.0/24 maxlen: 24
217.75.152.0/21 maxlen: 21
84.21.192.0/22 maxlen: 22
95.42.0.0/15 maxlen: 24
84.21.216.0/21 maxlen: 21
62.176.117.0/24 maxlen: 24
217.75.139.0/24 maxlen: 24
217.75.143.0/24 maxlen: 24
94.155.64.0/20 maxlen: 24
94.155.80.0/22 maxlen: 24
185.20.156.0/22 maxlen: 22
83.148.64.0/18 maxlen: 24
95.87.192.0/18 maxlen: 18
94.236.144.0/24 maxlen: 24
94.236.144.0/21 maxlen: 24
87.243.80.0/20 maxlen: 20
94.236.149.0/24 maxlen: 24
94.236.151.0/24 maxlen: 24
94.236.146.0/24 maxlen: 24
94.236.152.0/24 maxlen: 24
94.236.152.0/21 maxlen: 24
94.236.153.0/24 maxlen: 24
94.236.154.0/24 maxlen: 24
94.155.104.0/21 maxlen: 24
94.155.112.0/21 maxlen: 24
94.155.120.0/22 maxlen: 24
2a01:5a8:2:5::/64 maxlen: 64
2a01:5a8:1:ffff::/64 maxlen: 64
2a01:5a8:2:4::/64 maxlen: 64
2a01:5a8::/32 maxlen: 128
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9a:35:ed:ba:01:be:49:a1:e1:17:82:ec:7f:8c:25:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Nov 21 12:42:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=572b76ae4723a23a6f882ba99cd6b05f16a0bec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4d:0e:d8:d4:d6:51:10:40:94:32:ea:68:a7:
90:9f:c4:83:c9:b1:4b:a4:74:c4:e6:b4:d9:62:0a:
6c:ea:1d:10:03:0e:93:8b:47:d0:5a:a3:1b:b4:34:
69:08:e4:97:9b:86:3d:b5:11:95:2b:97:0b:4a:e8:
26:39:df:81:29:4f:8c:61:8d:1d:95:72:a4:70:85:
60:1a:03:50:76:e4:22:a6:36:5d:3a:6b:06:6f:c4:
f2:f0:6e:f0:a8:83:12:2d:c1:d0:89:b2:fb:b1:7a:
f6:e7:64:82:57:ef:0c:ce:50:3f:55:d4:76:91:a7:
e8:64:58:a9:62:d1:14:32:43:fb:f0:c2:30:64:3e:
39:dc:e9:cf:34:24:f3:3b:10:9f:82:73:39:da:de:
38:84:92:a4:d7:7e:37:2b:bb:d6:4c:9f:6f:c1:02:
1c:0b:b4:83:fc:37:65:ee:38:ef:9d:e7:ae:f2:f9:
61:9f:1d:3d:24:fe:bc:f0:a7:fc:3a:f2:91:80:e8:
44:c9:31:44:98:47:c0:61:77:91:52:3c:c7:cb:db:
dd:1f:c1:ea:de:03:58:5a:1c:37:fb:77:53:c3:3e:
e9:63:98:e6:b2:77:ce:ad:69:9e:1e:09:56:23:9c:
b6:d8:44:8d:8a:7c:f2:5d:1c:7c:29:f7:29:32:7d:
da:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:2B:76:AE:47:23:A2:3A:6F:88:2B:A9:9C:D6:B0:5F:16:A0:BE:C9
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Vyt2rkcjojpviCupnNawXxagvsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.136.0/21
37.157.160.0/19
46.10.0.0/16
46.249.64.0/19
62.73.64.0/18
62.176.64.0/18
77.85.0.0/16
78.154.0.0/19
79.100.0.0/16
82.137.64.0/18
82.146.0.0/22
82.146.6.0/23
82.146.11.0/24
82.146.24.0/23
82.146.28.0/23
82.146.31.0/24
83.148.64.0/18
83.228.0.0/17
84.21.192.0/22
84.21.216.0/21
84.40.64.0/18
84.238.128.0/22
84.238.134.0-84.238.159.255
84.238.165.0/24
84.238.167.0-84.238.175.255
84.238.178.0-84.238.183.255
84.238.192.0/22
84.238.204.0/22
85.187.22.0-85.187.39.255
85.187.46.0/23
85.187.64.0/18
87.116.64.0/20
87.116.82.0/24
87.116.84.0/22
87.118.144.0/22
87.118.164.0/22
87.126.0.0/16
87.243.80.0-87.243.127.255
89.25.40.0/21
89.25.52.0-89.25.75.255
89.25.100.0/22
89.25.124.0/22
90.154.128.0/17
94.155.64.0-94.155.83.255
94.155.104.0-94.155.123.255
94.155.204.0/22
94.236.144.0-94.236.191.255
94.236.204.0/23
94.236.228.0/23
94.236.231.0/24
94.236.234.0/23
94.236.238.0/24
94.236.240.0/20
95.42.0.0/15
95.87.192.0/18
151.237.140.0/23
185.20.156.0/22
212.5.128.0/19
212.39.64.0/19
212.72.198.0/23
212.72.202.0/23
212.72.212.0/24
212.72.214.0/24
212.72.221.0/24
213.16.32.0/19
213.91.128.0/17
213.130.64.0/22
213.130.76.0/22
213.130.92.0/23
213.130.95.0/24
217.75.139.0/24
217.75.143.0/24
217.75.152.0/21
IPv6:
2a01:5a8::/32
Signature Algorithm: sha256WithRSAEncryption
22:c0:9a:10:df:6d:1b:78:2d:54:48:ed:af:a7:f1:31:92:a3:
00:27:16:84:95:a2:10:32:c2:38:91:ec:16:a6:71:e1:98:58:
f8:8e:0e:9d:c0:80:3a:78:d0:76:bb:66:32:ff:6c:4c:49:ae:
7a:5d:53:35:2b:36:04:da:9e:ea:a0:4e:f4:4e:04:42:44:9f:
09:f2:33:62:a1:d6:34:80:84:d5:dd:86:b7:92:45:e9:05:28:
d4:40:40:df:8b:04:be:1a:88:17:4e:40:cf:3a:b2:34:ef:a3:
bd:dd:01:48:2f:b0:03:e4:de:ff:1c:6e:83:8a:36:2a:fd:65:
48:37:05:da:64:4e:55:a4:07:0f:b3:28:62:b3:52:af:19:e8:
ed:16:56:81:d7:15:ee:15:78:95:5a:09:15:51:43:af:f5:09:
34:ff:40:81:45:5c:fb:3a:01:fe:ad:a3:4d:36:2d:12:5a:52:
f7:1e:8d:d6:fc:8b:64:1d:b3:7a:04:43:5e:a5:a5:3e:ae:8c:
d7:d7:fe:97:38:83:43:7b:26:7e:da:55:72:d7:85:c8:d3:4e:
3d:8a:20:a7:17:40:ec:04:20:ff:3c:e3:c8:5c:e6:64:eb:b7:
b9:b7:bc:75:6e:f1:b3:c3:94:97:8f:84:a6:02:4f:f1:5d:53:
31:1a:1c:0e
-----BEGIN CERTIFICATE-----
MIIHCTCCBfGgAwIBAgISAYSaNe26Ab5JoeEXgux/jCVxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjIxMTIxMTI0MjE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzJiNzZhZTQ3MjNhMjNhNmY4ODJiYTk5Y2Q2YjA1ZjE2YTBiZWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlk0O2NTWURBAlDLqaKeQn8SDybFL
pHTE5rTZYgps6h0QAw6Ti0fQWqMbtDRpCOSXm4Y9tRGVK5cLSugmOd+BKU+MYY0d
lXKkcIVgGgNQduQipjZdOmsGb8Ty8G7wqIMSLcHQibL7sXr252SCV+8MzlA/VdR2
kafoZFipYtEUMkP78MIwZD453OnPNCTzOxCfgnM52t44hJKk1343K7vWTJ9vwQIc
C7SD/Ddl7jjvneeu8vlhnx09JP688Kf8OvKRgOhEyTFEmEfAYXeRUjzHy9vdH8Hq
3gNYWhw3+3dTwz7pY5jmsnfOrWmeHglWI5y22ESNinzyXRx8KfcpMn3aoQIDAQAB
o4IEFTCCBBEwHQYDVR0OBBYEFFcrdq5HI6I6b4grqZzWsF8WoL7JMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvVnl0MnJrY2pvanB2aUN1cG5OYXdYeGFndnNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICKQYIKwYBBQUHAQcBAf8EggIYMIICFDCCAgEEAgABMIIB
+QMEAyWdiAMEBSWdoAMDAC4KAwQFLvlAAwQGPklAAwQGPrBAAwMATVUDBAVOmgAD
AwBPZAMEBlKJQAMEAlKSAAMEAVKSBgMEAFKSCwMEAVKSGAMEAVKSHAMEAFKSHwME
BlOUQAMEB1PkAAMEAlQVwAMEA1QV2AMEBlQoQAMEAlTugDAMAwQBVO6GAwQFVO6A
AwQAVO6lMAwDBABU7qcDBARU7qAwDAMEAVTusgMEA1TusAMEAlTuwAMEAlTuzDAM
AwQBVbsWAwQDVbsgAwQBVbsuAwQGVbtAAwQEV3RAAwQAV3RSAwQCV3RUAwQCV3aQ
AwQCV3akAwMAV34wDAMEBFfzUAMEB1fzAAMEA1kZKDAMAwQCWRk0AwQCWRlIAwQC
WRlkAwQCWRl8AwQHWpqAMAwDBAZem0ADBAJem1AwDAMEA16baAMEAl6beAMEAl6b
zDAMAwQEXuyQAwQGXuyAAwQBXuzMAwQBXuzkAwQAXuznAwQBXuzqAwQAXuzuAwQE
XuzwAwMBXyoDBAZfV8ADBAGX7YwDBAK5FJwDBAXUBYADBAXUJ0ADBAHUSMYDBAHU
SMoDBADUSNQDBADUSNYDBADUSN0DBAXVECADBAfVW4ADBALVgkADBALVgkwDBAHV
glwDBADVgl8DBADZS4sDBADZS48DBAPZS5gwDQQCAAIwBwMFACoBBagwDQYJKoZI
hvcNAQELBQADggEBACLAmhDfbRt4LVRI7a+n8TGSowAnFoSVohAywjiR7BamceGY
WPiODp3AgDp40Ha7ZjL/bExJrnpdUzUrNgTanuqgTvROBEJEnwnyM2Kh1jSAhNXd
hreSRekFKNRAQN+LBL4aiBdOQM86sjTvo73dAUgvsAPk3v8cboOKNir9ZUg3Bdpk
TlWkBw+zKGKzUq8Z6O0WVoHXFe4VeJVaCRVRQ6/1CTT/QIFFXPs6Af6to002LRJa
Uvcejdb8i2Qds3oEQ16lpT6ujNfX/pc4g0N7Jn7aVXLXhcjTTj2KIKcXQOwEIP88
48hc5mTrt7m3vHVu8bPDlJePhKYCT/FdUzEaHA4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org