Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Kc2iKtdqGXbvenDk8NaOn_IO_Q4.roa
File: Kc2iKtdqGXbvenDk8NaOn_IO_Q4.roa (raw, json)
Hash identifier: NmjJtoUMVswFA5kkuwcrpWepK8CmxOAVsj2P1HVEONI=
Subject key identifier: 29:CD:A2:2A:D7:6A:19:76:EF:7A:70:E4:F0:D6:8E:9F:F2:0E:FD:0E
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 0187512075C41711CC27FD8D1A99C0A5EA9F
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Kc2iKtdqGXbvenDk8NaOn_IO_Q4.roa
Signing time: Wed 05 Apr 2023 11:14:54 +0000
ROA not before: Wed 05 Apr 2023 11:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16322
IP address blocks: 31.214.248.0/21 maxlen: 21
37.228.131.0/24 maxlen: 24
37.228.135.0/24 maxlen: 24
37.228.133.0/24 maxlen: 24
37.228.136.0/22 maxlen: 22
31.214.200.0/23 maxlen: 23
31.214.228.0/22 maxlen: 22
134.255.200.0/21 maxlen: 21
134.255.245.0/24 maxlen: 24
134.255.246.0/24 maxlen: 24
134.255.249.0/24 maxlen: 24
134.255.196.0/23 maxlen: 23
82.99.192.0/24 maxlen: 24
82.99.192.0/19 maxlen: 22
82.99.193.0/24 maxlen: 24
82.99.195.0/24 maxlen: 24
82.99.196.0/24 maxlen: 24
82.99.192.0/18 maxlen: 18
31.214.146.0/24 maxlen: 24
31.214.147.0/24 maxlen: 24
31.214.146.0/23 maxlen: 23
31.214.154.0/24 maxlen: 24
31.214.172.0/22 maxlen: 22
31.214.170.0/23 maxlen: 23
31.214.168.0/23 maxlen: 23
31.214.168.0/21 maxlen: 21
82.99.204.0/24 maxlen: 24
82.99.206.0/24 maxlen: 24
82.99.201.0/24 maxlen: 24
82.99.212.0/24 maxlen: 24
82.99.209.0/24 maxlen: 24
82.99.210.0/24 maxlen: 24
82.99.216.0/22 maxlen: 22
82.99.224.0/19 maxlen: 19
82.99.233.0/24 maxlen: 24
82.99.228.0/24 maxlen: 24
82.99.230.0/24 maxlen: 24
82.99.231.0/24 maxlen: 24
82.99.240.0/24 maxlen: 24
82.99.235.0/24 maxlen: 24
31.214.132.0/23 maxlen: 23
82.99.249.0/24 maxlen: 24
82.99.250.0/24 maxlen: 24
82.99.251.0/24 maxlen: 24
91.98.192.0/20 maxlen: 20
91.98.192.0/19 maxlen: 19
91.98.208.0/20 maxlen: 20
91.98.226.0/23 maxlen: 23
91.98.224.0/19 maxlen: 19
91.98.224.0/24 maxlen: 24
91.98.144.0/23 maxlen: 23
91.98.152.0/22 maxlen: 22
91.98.160.0/20 maxlen: 20
91.98.160.0/19 maxlen: 19
91.98.240.0/21 maxlen: 21
91.98.252.0/23 maxlen: 23
91.98.0.0/22 maxlen: 22
37.10.109.0/24 maxlen: 24
91.98.0.0/20 maxlen: 20
37.10.117.0/24 maxlen: 24
91.98.0.0/16 maxlen: 24
91.98.16.0/24 maxlen: 24
91.98.0.0/15 maxlen: 19
91.98.19.0/24 maxlen: 24
37.10.64.0/22 maxlen: 22
185.10.71.0/24 maxlen: 24
91.98.84.0/22 maxlen: 22
91.98.82.0/24 maxlen: 24
91.98.88.0/24 maxlen: 24
91.98.111.0/24 maxlen: 24
91.98.57.0/24 maxlen: 24
91.98.64.0/19 maxlen: 19
91.98.68.0/24 maxlen: 24
46.251.226.0/24 maxlen: 24
46.251.224.0/24 maxlen: 24
46.251.237.0/24 maxlen: 24
109.230.246.0/23 maxlen: 23
46.62.136.0/24 maxlen: 24
46.62.137.0/24 maxlen: 24
46.62.133.0/24 maxlen: 24
46.62.134.0/24 maxlen: 24
46.62.138.0/23 maxlen: 23
109.230.246.0/24 maxlen: 24
109.230.242.0/24 maxlen: 24
46.62.144.0/24 maxlen: 24
46.62.140.0/24 maxlen: 24
95.156.222.0/23 maxlen: 23
46.62.142.0/23 maxlen: 23
109.230.251.0/24 maxlen: 24
46.62.144.0/20 maxlen: 20
109.230.247.0/24 maxlen: 24
46.62.147.0/24 maxlen: 24
46.62.148.0/22 maxlen: 22
95.156.233.0/24 maxlen: 24
46.62.152.0/24 maxlen: 24
95.156.236.0/23 maxlen: 23
95.156.234.0/23 maxlen: 23
46.62.156.0/24 maxlen: 24
46.62.158.0/24 maxlen: 24
46.62.153.0/24 maxlen: 24
46.62.160.0/19 maxlen: 19
46.62.165.0/24 maxlen: 24
46.62.168.0/21 maxlen: 21
46.62.168.0/22 maxlen: 22
46.62.172.0/22 maxlen: 22
46.62.166.0/23 maxlen: 23
95.156.248.0/23 maxlen: 23
46.62.178.0/23 maxlen: 23
46.62.176.0/20 maxlen: 20
46.62.180.0/22 maxlen: 22
46.62.184.0/22 maxlen: 22
109.230.192.0/23 maxlen: 23
109.230.200.0/24 maxlen: 24
109.230.204.0/22 maxlen: 22
109.230.223.0/24 maxlen: 24
109.230.221.0/24 maxlen: 24
46.62.131.0/24 maxlen: 24
46.62.132.0/24 maxlen: 24
46.62.128.0/23 maxlen: 23
46.62.128.0/20 maxlen: 20
46.62.128.0/19 maxlen: 19
46.62.128.0/17 maxlen: 24
46.62.240.0/20 maxlen: 20
46.62.188.0/22 maxlen: 22
46.62.192.0/19 maxlen: 19
46.62.192.0/18 maxlen: 18
46.62.208.0/20 maxlen: 20
46.62.224.0/20 maxlen: 20
46.62.224.0/19 maxlen: 19
213.217.32.0/20 maxlen: 24
213.217.32.0/19 maxlen: 19
213.217.36.0/22 maxlen: 22
213.217.41.0/24 maxlen: 24
213.217.46.0/24 maxlen: 24
213.217.47.0/24 maxlen: 24
213.217.48.0/20 maxlen: 20
213.217.55.0/24 maxlen: 24
213.217.56.0/24 maxlen: 24
213.217.57.0/24 maxlen: 24
213.217.54.0/24 maxlen: 24
213.217.52.0/22 maxlen: 22
213.217.62.0/24 maxlen: 24
46.41.192.0/19 maxlen: 19
46.41.192.0/20 maxlen: 20
46.41.192.0/18 maxlen: 18
46.41.224.0/20 maxlen: 20
46.41.224.0/19 maxlen: 19
185.13.228.0/22 maxlen: 22
178.169.0.0/19 maxlen: 19
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:20:75:c4:17:11:cc:27:fd:8d:1a:99:c0:a5:ea:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Apr 5 11:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29cda22ad76a1976ef7a70e4f0d68e9ff20efd0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d3:04:b7:76:c4:0a:3e:b8:bc:7c:0d:26:52:
77:f8:84:a1:f1:ce:10:6b:53:63:fd:99:75:1e:ad:
1f:cd:27:03:3b:0a:0c:5b:9d:f5:20:f7:8f:2a:11:
9d:85:22:c4:bf:99:6e:d2:4e:fc:98:25:39:1a:7c:
8f:ff:0a:9d:cf:54:8f:33:f7:96:2f:e6:f4:29:c0:
dd:f0:93:72:f1:df:50:35:85:f8:10:bf:86:40:b2:
17:41:0c:ac:7b:55:b9:e4:80:69:37:50:ce:ba:2a:
06:12:b0:2c:27:d2:21:39:c9:55:de:d1:a6:8d:73:
34:e8:d7:84:2c:a0:6f:b4:93:c1:a7:1a:97:ce:33:
8f:cc:6b:39:ec:b6:c8:19:b3:5a:0c:8c:ca:4a:35:
25:5f:cd:76:ce:49:db:b9:51:21:6d:cb:60:c4:11:
a7:00:69:a1:02:c9:5c:2c:e5:07:16:f5:f4:2b:c7:
03:13:dd:d1:a7:30:47:68:79:0b:30:a4:fc:86:1d:
16:81:1c:65:00:a2:ef:51:72:7e:4e:ef:a6:a2:d9:
95:fe:19:e8:1e:c8:63:64:7e:7c:36:d3:14:1b:01:
be:ef:61:65:a2:af:99:f4:dc:4e:03:2a:44:c7:ac:
91:cc:ac:8f:d4:e8:c2:29:53:61:8f:a7:c7:e6:87:
b6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CD:A2:2A:D7:6A:19:76:EF:7A:70:E4:F0:D6:8E:9F:F2:0E:FD:0E
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Kc2iKtdqGXbvenDk8NaOn_IO_Q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.132.0/23
31.214.146.0/23
31.214.154.0/24
31.214.168.0/21
31.214.200.0/23
31.214.228.0/22
31.214.248.0/21
37.10.64.0/22
37.10.109.0/24
37.10.117.0/24
37.228.131.0/24
37.228.133.0/24
37.228.135.0-37.228.139.255
46.41.192.0/18
46.62.128.0/17
46.251.224.0/24
46.251.226.0/24
46.251.237.0/24
82.99.192.0/18
91.98.0.0/15
95.156.222.0/23
95.156.233.0-95.156.237.255
95.156.248.0/23
109.230.192.0/23
109.230.200.0/24
109.230.204.0/22
109.230.221.0/24
109.230.223.0/24
109.230.242.0/24
109.230.246.0/23
109.230.251.0/24
134.255.196.0/23
134.255.200.0/21
134.255.245.0-134.255.246.255
134.255.249.0/24
178.169.0.0/19
185.10.71.0/24
185.13.228.0/22
213.217.32.0/19
Signature Algorithm: sha256WithRSAEncryption
00:5d:2d:cf:7c:ac:55:84:2c:a8:6f:31:d7:49:b4:36:09:b0:
a2:40:a4:2e:ac:37:71:d0:c4:d9:3a:99:bc:dd:5e:17:49:d9:
6c:f5:c2:a1:8b:dc:77:0c:de:e0:70:3a:ce:c2:71:8e:96:49:
25:4f:ae:5d:ae:4c:70:88:35:a5:87:52:aa:82:ca:c9:b1:f0:
17:08:5d:97:3a:0d:de:8d:b2:2b:33:18:37:06:f3:2c:30:63:
9a:46:4b:80:06:6d:37:a6:0c:cc:1f:f9:25:e3:8d:29:bd:4d:
b3:2a:f4:ff:44:9f:d4:48:df:1e:07:1d:a7:40:36:57:25:1f:
62:7b:31:bc:f1:97:98:5d:87:31:0c:14:90:93:5c:37:7a:15:
59:2e:84:17:22:f5:6e:49:6d:d4:4f:3d:68:6f:97:c3:8f:aa:
2b:7b:59:97:82:ff:54:81:d2:0a:ef:54:83:ba:b0:d7:c0:a4:
9f:e2:75:d8:72:7e:7a:d6:56:df:c7:d2:38:f7:96:6f:5f:26:
40:2e:66:71:a9:de:58:f4:4a:49:f6:83:d5:a6:6a:0b:5b:eb:
3d:2d:fc:ac:f1:0c:c5:03:33:06:b4:a4:b7:10:07:38:0c:eb:
3a:df:56:17:e0:40:d4:d8:b6:9e:52:89:34:0b:84:14:ac:97:
f4:78:fd:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:42 2024 by rpki-client on console-fra.rpki-client.org