Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AI0dtmvKemUowyXIe1B2MWYbJgs.roa
File: AI0dtmvKemUowyXIe1B2MWYbJgs.roa (raw, json)
Hash identifier: sGo/bUEstW8uZIv/wc7gCuwfWMCIejY251NHXXp4zFM=
Subject key identifier: 00:8D:1D:B6:6B:CA:7A:65:28:C3:25:C8:7B:50:76:31:66:1B:26:0B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1D37D9E0
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AI0dtmvKemUowyXIe1B2MWYbJgs.roa
Signing time: Mon 21 Feb 2022 18:55:42 +0000
ROA not before: Mon 21 Feb 2022 18:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34224
IP address blocks: 212.73.131.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.132.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
212.73.135.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
87.120.177.0/24 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.136.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
87.121.42.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
92.249.50.0/24 maxlen: 24
92.249.48.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.54.0/24 maxlen: 24
87.121.59.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.253.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.2.0/24 maxlen: 24
87.121.0.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.197.0/24 maxlen: 24
185.221.66.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.37.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.227.0/24 maxlen: 24
85.217.145.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
94.156.248.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
94.156.186.0/24 maxlen: 24
94.156.184.0/24 maxlen: 24
93.123.8.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
94.156.187.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.32.0/22 maxlen: 24
93.123.37.0/24 maxlen: 24
93.123.108.0/24 maxlen: 24
94.156.10.0/24 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.95.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.102.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
31.13.194.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
31.13.217.0/24 maxlen: 24
87.121.161.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.241.0/24 maxlen: 24
31.13.248.0/22 maxlen: 24
2a00:1728:35::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:1b::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:3::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 490199520 (0x1d37d9e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 21 18:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=008d1db66bca7a6528c325c87b507631661b260b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:cd:bc:98:62:32:ca:72:6e:e8:aa:39:71:9b:
b2:ae:da:c0:71:96:a9:0b:fb:e9:e8:95:9a:88:96:
8b:c4:08:4f:39:84:04:34:67:4e:b6:e4:53:eb:3c:
a6:49:94:e3:2b:be:de:05:87:80:ad:21:5a:ac:55:
31:40:df:e3:6a:8e:6a:a6:14:0b:22:84:bf:dc:84:
c6:16:38:f5:9a:39:11:65:aa:34:be:08:b4:4b:27:
11:7f:f8:43:01:29:c6:12:b5:87:99:fd:cc:12:90:
27:58:18:98:de:e8:af:ba:f0:4c:08:75:93:83:1c:
07:34:7c:22:86:6a:ec:ac:9d:b0:9e:5a:ef:ca:0a:
d9:95:47:e5:22:44:56:f1:32:1b:2a:3a:65:6c:85:
46:6c:79:c2:42:90:06:9e:3d:99:6d:2b:1c:51:b5:
18:a7:ca:bc:b0:3c:34:fb:27:55:c9:10:ec:12:70:
b6:04:e1:b1:6c:a8:09:4d:4d:3c:1b:a8:9b:b7:63:
12:2a:ec:40:a7:05:0b:33:e6:17:69:54:29:ed:75:
93:63:9a:9d:3b:c4:3b:1f:56:1c:81:12:16:54:3a:
1e:a3:8e:e4:be:5b:32:29:27:25:7b:a1:c4:3f:43:
96:ba:35:66:10:a2:64:eb:70:bb:3f:89:aa:57:3e:
f3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8D:1D:B6:6B:CA:7A:65:28:C3:25:C8:7B:50:76:31:66:1B:26:0B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AI0dtmvKemUowyXIe1B2MWYbJgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.194.0/23
31.13.197.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
31.13.248.0/22
37.60.138.0/23
85.217.145.0/24
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.176.0/23
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.54.0/24
87.121.59.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
92.249.48.0/24
92.249.50.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
93.123.108.0/24
94.156.10.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/23
94.156.98.0/24
94.156.100.0/24
94.156.102.0/24
94.156.106.0/24
94.156.129.0/24
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.184.0-94.156.188.255
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.248.0/23
94.156.251.0-94.156.252.255
185.221.66.0/24
212.73.128.0-212.73.136.255
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
68:0c:b0:e1:61:f9:a0:ef:34:a7:db:00:81:8a:0d:48:18:1b:
82:55:05:1f:90:24:6d:6e:b0:d7:6a:65:86:34:7f:e2:44:69:
9f:25:38:6f:58:f5:34:a2:10:b8:7a:d6:ed:e7:4f:29:c9:36:
50:d7:98:fc:11:4e:e1:cc:50:50:a7:e0:e9:26:c1:ff:f4:94:
5a:c2:be:b4:dd:7a:d8:d7:bc:c2:7b:71:c3:19:09:fa:90:42:
91:66:e6:0e:76:86:3f:9b:13:63:43:7d:db:7e:67:9c:d3:59:
6b:c7:8d:52:18:58:bf:e3:8e:46:b0:cf:e2:8f:32:c3:95:50:
86:c1:f2:86:7b:67:90:55:f1:8b:13:cb:fd:3c:e9:e6:c1:8b:
26:3b:8e:de:9b:2a:d2:75:95:72:aa:3f:40:96:67:9a:bc:05:
40:ec:1c:2c:af:0f:03:1c:b9:dc:de:af:5a:8c:42:82:72:81:
30:26:3e:26:f8:b8:94:0e:b1:fa:a5:f1:16:7f:29:5f:95:2e:
f3:31:a2:fd:73:19:4d:08:59:28:08:cb:e4:27:5a:6d:ef:f8:
71:8a:96:08:3f:95:ed:f3:e2:5c:4d:8d:67:d7:94:40:d5:14:
dd:15:53:e8:42:00:45:0f:28:48:fa:16:d9:d5:61:0a:ad:65:
ad:9b:13:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:33 2023 by rpki-client on console-ams.rpki-client.org