Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DLv9IRmPD6wTPdNY1YwmKQXZazU.roa
File: DLv9IRmPD6wTPdNY1YwmKQXZazU.roa (raw, json)
Hash identifier: +CyWQBBwuVkylvWDabCICaZ47AILdC7beqetpW0TzUI=
Subject key identifier: 0C:BB:FD:21:19:8F:0F:AC:13:3D:D3:58:D5:8C:26:29:05:D9:6B:35
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01835653BCF726FF007DC641653AB09BA3FE
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DLv9IRmPD6wTPdNY1YwmKQXZazU.roa
Signing time: Mon 19 Sep 2022 15:17:51 +0000
ROA not before: Mon 19 Sep 2022 15:17:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43561
IP address blocks: 87.120.192.0/23 maxlen: 23
87.120.192.0/24 maxlen: 24
87.120.193.0/24 maxlen: 24
87.121.38.0/24 maxlen: 24
87.121.36.0/24 maxlen: 24
87.121.36.0/23 maxlen: 24
87.121.37.0/24 maxlen: 24
87.121.44.0/22 maxlen: 24
87.121.57.0/24 maxlen: 24
87.121.56.0/23 maxlen: 24
87.121.56.0/24 maxlen: 24
87.121.60.0/22 maxlen: 24
87.121.63.0/24 maxlen: 24
87.121.62.0/24 maxlen: 24
87.121.61.0/24 maxlen: 24
87.121.60.0/24 maxlen: 24
87.120.218.0/23 maxlen: 24
87.120.220.0/23 maxlen: 24
87.120.64.0/24 maxlen: 24
87.120.64.0/23 maxlen: 24
87.120.68.0/24 maxlen: 24
87.120.68.0/23 maxlen: 24
87.120.69.0/24 maxlen: 24
87.120.65.0/24 maxlen: 24
87.120.72.0/21 maxlen: 21
87.120.77.0/24 maxlen: 24
87.120.73.0/24 maxlen: 24
87.120.76.0/24 maxlen: 24
87.120.72.0/24 maxlen: 24
87.120.75.0/24 maxlen: 24
87.120.78.0/24 maxlen: 24
87.120.74.0/24 maxlen: 24
87.120.79.0/24 maxlen: 24
87.120.89.0/24 maxlen: 24
87.120.88.0/23 maxlen: 24
87.120.88.0/24 maxlen: 24
87.120.97.0/24 maxlen: 24
87.120.96.0/23 maxlen: 24
87.120.96.0/24 maxlen: 24
87.120.100.0/22 maxlen: 24
87.120.32.0/24 maxlen: 24
87.120.33.0/24 maxlen: 24
87.120.34.0/24 maxlen: 24
87.120.35.0/24 maxlen: 24
87.120.32.0/22 maxlen: 24
87.120.46.0/24 maxlen: 24
87.120.46.0/23 maxlen: 24
87.120.47.0/24 maxlen: 24
91.92.8.0/21 maxlen: 24
91.92.6.0/24 maxlen: 24
91.92.16.0/24 maxlen: 24
91.92.21.0/24 maxlen: 24
91.92.24.0/22 maxlen: 24
91.92.67.0/24 maxlen: 24
93.123.81.5/32 maxlen: 32
93.123.39.0/24 maxlen: 24
94.156.232.0/21 maxlen: 24
93.123.69.0/24 maxlen: 24
93.123.68.0/24 maxlen: 24
93.123.71.0/24 maxlen: 24
93.123.68.0/22 maxlen: 22
93.123.70.0/24 maxlen: 24
93.123.77.0/24 maxlen: 24
93.123.76.0/24 maxlen: 24
93.123.76.0/22 maxlen: 24
93.123.78.0/24 maxlen: 24
93.123.84.0/22 maxlen: 24
93.123.80.0/23 maxlen: 23
93.123.79.0/24 maxlen: 24
93.123.85.0/24 maxlen: 24
93.123.86.0/24 maxlen: 24
93.123.87.0/24 maxlen: 24
93.123.88.0/21 maxlen: 24
94.156.160.0/23 maxlen: 24
94.156.169.0/24 maxlen: 24
94.156.168.0/24 maxlen: 24
94.156.168.0/23 maxlen: 24
94.156.176.0/21 maxlen: 24
93.123.24.0/24 maxlen: 24
93.123.22.0/24 maxlen: 24
93.123.31.0/24 maxlen: 24
93.123.27.0/24 maxlen: 24
93.123.30.0/24 maxlen: 24
93.123.30.0/23 maxlen: 24
93.123.26.0/23 maxlen: 24
93.123.26.0/24 maxlen: 24
93.123.112.0/24 maxlen: 24
93.123.118.0/24 maxlen: 24
93.123.114.0/24 maxlen: 24
93.123.115.0/24 maxlen: 24
93.123.116.0/24 maxlen: 24
93.123.112.0/21 maxlen: 24
93.123.117.0/24 maxlen: 24
93.123.113.0/24 maxlen: 24
93.123.119.0/24 maxlen: 24
94.156.2.0/24 maxlen: 24
94.156.6.0/24 maxlen: 24
94.156.8.0/24 maxlen: 24
94.156.131.0/24 maxlen: 24
94.156.136.0/21 maxlen: 24
94.156.152.0/24 maxlen: 24
94.156.154.0/23 maxlen: 24
94.156.157.0/24 maxlen: 24
94.156.156.0/24 maxlen: 24
94.156.156.0/23 maxlen: 24
94.156.78.0/24 maxlen: 24
94.156.78.0/23 maxlen: 24
94.156.79.0/24 maxlen: 24
87.121.147.0/24 maxlen: 24
87.121.146.0/24 maxlen: 24
87.121.146.0/23 maxlen: 24
87.121.162.0/23 maxlen: 24
87.121.69.0/24 maxlen: 24
87.121.103.0/24 maxlen: 24
87.121.105.0/24 maxlen: 24
87.121.101.0/24 maxlen: 24
87.121.104.0/24 maxlen: 24
87.121.100.0/24 maxlen: 24
87.121.104.0/23 maxlen: 24
87.121.100.0/23 maxlen: 24
87.121.115.0/24 maxlen: 24
87.121.114.0/24 maxlen: 24
87.121.114.0/23 maxlen: 24
31.13.252.0/24 maxlen: 24
31.13.253.0/24 maxlen: 24
31.13.252.0/22 maxlen: 22
31.13.254.0/24 maxlen: 24
31.13.255.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:53:bc:f7:26:ff:00:7d:c6:41:65:3a:b0:9b:a3:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 19 15:17:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cbbfd21198f0fac133dd358d58c262905d96b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8c:cd:01:f2:5f:ac:2f:da:c1:fc:f5:8c:25:
a2:14:b3:3d:59:1e:76:18:d3:68:45:a0:d4:bb:03:
5a:0a:cb:80:23:db:43:67:97:45:71:22:92:66:ae:
c2:78:ea:a8:79:4f:33:e4:1f:ef:89:28:ad:bd:80:
25:50:7c:5c:96:46:72:a6:33:0a:63:f3:86:d7:83:
dd:64:9f:42:d1:ea:22:df:9c:aa:a9:f3:53:58:8c:
58:eb:8d:e6:9c:d1:c2:84:c5:18:52:79:69:11:e5:
42:c8:3b:db:be:31:1a:3b:ed:3e:4f:a7:61:85:ec:
9a:52:15:da:13:f7:77:52:b9:3a:7c:b8:ee:73:bb:
a1:df:35:0e:0e:48:02:ce:91:44:38:c4:8a:0d:28:
d7:4b:b4:eb:64:a0:b1:f0:e2:91:0c:a6:93:81:fe:
a8:9d:74:8b:0d:08:05:84:b0:ce:d5:05:cd:b6:5b:
96:96:49:e1:09:7e:2a:96:97:b9:d6:32:05:16:4b:
d8:ff:a9:d0:57:b7:5c:05:b7:eb:ed:c1:07:1f:34:
5c:2f:7a:8e:33:0b:2f:3f:20:3e:62:8b:2e:30:6a:
27:15:2c:b5:9f:1d:61:02:06:ee:31:45:4f:2e:b8:
42:03:3b:39:15:ec:a8:f5:cc:a0:69:2a:6a:4f:e6:
d7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:BB:FD:21:19:8F:0F:AC:13:3D:D3:58:D5:8C:26:29:05:D9:6B:35
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DLv9IRmPD6wTPdNY1YwmKQXZazU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.252.0/22
87.120.32.0/22
87.120.46.0/23
87.120.64.0/23
87.120.68.0/23
87.120.72.0/21
87.120.88.0/23
87.120.96.0/23
87.120.100.0/22
87.120.192.0/23
87.120.218.0-87.120.221.255
87.121.36.0-87.121.38.255
87.121.44.0/22
87.121.56.0/23
87.121.60.0/22
87.121.69.0/24
87.121.100.0/23
87.121.103.0-87.121.105.255
87.121.114.0/23
87.121.146.0/23
87.121.162.0/23
91.92.6.0/24
91.92.8.0-91.92.16.255
91.92.21.0/24
91.92.24.0/22
91.92.67.0/24
93.123.22.0/24
93.123.24.0/24
93.123.26.0/23
93.123.30.0/23
93.123.39.0/24
93.123.68.0/22
93.123.76.0-93.123.81.255
93.123.84.0-93.123.95.255
93.123.112.0/21
94.156.2.0/24
94.156.6.0/24
94.156.8.0/24
94.156.78.0/23
94.156.131.0/24
94.156.136.0/21
94.156.152.0/24
94.156.154.0-94.156.157.255
94.156.160.0/23
94.156.168.0/23
94.156.176.0/21
94.156.232.0/21
Signature Algorithm: sha256WithRSAEncryption
92:cd:d7:77:ed:8b:a5:da:3b:78:78:6f:e6:2c:21:9e:06:f4:
03:4f:e7:46:49:9b:01:a7:cb:f3:8e:3c:83:ff:09:d1:26:bb:
ae:bd:a1:d3:3a:31:24:b4:b0:82:da:b7:f7:72:25:47:e8:9c:
a3:0f:fa:98:2c:30:12:ce:ad:36:70:b0:e8:09:20:99:39:c3:
50:31:1a:8b:c9:17:f7:4e:d8:db:05:a3:09:97:9f:4d:48:b6:
a9:15:79:fb:29:84:fb:94:ed:a0:d5:9d:d7:4e:63:8c:05:a6:
7e:db:b6:ff:13:33:7c:27:2e:e8:a2:d2:ca:fa:4d:82:40:b0:
27:ef:bd:24:fc:da:c6:fb:98:b9:4f:2d:63:51:d1:a3:c3:f2:
fd:df:bf:87:fb:31:bb:02:8e:e1:f2:6f:de:11:20:14:22:29:
12:4c:9d:33:f0:dc:6f:98:eb:e9:be:a0:f5:35:a9:02:52:f8:
6b:89:40:41:cd:2c:27:fe:c2:b5:8f:6a:d6:e7:92:d9:45:f2:
47:77:d6:3b:b0:8f:9e:52:a1:50:ae:99:79:fa:ac:87:fe:41:
be:31:28:03:aa:46:86:96:76:f3:fc:4f:10:fd:40:8a:62:de:
58:fe:cd:84:19:28:86:99:a5:7c:ba:56:e4:97:3e:fd:83:9d:
be:31:e0:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:39 2023 by rpki-client on console-fra.rpki-client.org