Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EoG4l8iTCKDCAKiJL7DDdCMtdiQ.roa
File: EoG4l8iTCKDCAKiJL7DDdCMtdiQ.roa (raw, json)
Hash identifier: +K+flaWFVoaYN4ES93PTsoU9krURFcP5hLDei7LSlIg=
Subject key identifier: 12:81:B8:97:C8:93:08:A0:C2:00:A8:89:2F:B0:C3:74:23:2D:76:24
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0187B5790BFC689735E5CD9B8026B27640F6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EoG4l8iTCKDCAKiJL7DDdCMtdiQ.roa
Signing time: Mon 24 Apr 2023 22:53:41 +0000
ROA not before: Mon 24 Apr 2023 22:53:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34224
IP address blocks: 212.73.131.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.132.0/24 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.136.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
87.121.42.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
92.249.49.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.253.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.0.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.121.2.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.197.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.37.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.233.0/24 maxlen: 24
94.156.227.0/24 maxlen: 24
94.156.232.0/22 maxlen: 22
94.156.232.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
94.156.248.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
93.123.8.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.37.0/24 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.32.0/22 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
31.13.217.0/24 maxlen: 24
87.121.161.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.241.0/24 maxlen: 24
2a00:1728:35::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:1b::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:3::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b5:79:0b:fc:68:97:35:e5:cd:9b:80:26:b2:76:40:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 24 22:53:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1281b897c89308a0c200a8892fb0c374232d7624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6f:9f:61:56:39:f9:47:f0:f8:3f:76:f9:37:
7b:50:e2:98:ed:f9:89:9d:e6:7b:bf:e3:84:cb:1b:
b1:20:bd:4e:df:d4:2f:ff:2e:8f:08:e6:fe:61:61:
4d:32:d0:97:50:8f:f7:50:b4:61:d5:d6:01:bc:44:
0a:b2:03:48:73:e4:e8:16:ea:00:20:37:29:ac:b3:
93:8f:56:1b:ef:fd:ae:16:21:51:00:e9:16:e6:23:
df:85:0d:90:01:70:31:66:3a:88:30:9f:07:96:65:
e5:32:28:26:8d:a6:8c:30:35:c9:57:7a:b9:1b:34:
e2:fb:f8:73:23:2e:3b:60:36:f1:f1:2f:19:ef:90:
ec:89:2e:d5:73:b1:92:4b:63:e5:09:91:26:ac:c3:
ee:7d:37:33:96:ba:88:eb:41:bc:1f:2a:3d:b3:46:
5b:1a:8c:fc:05:1f:13:02:17:d6:bb:9f:de:c1:9c:
b0:0a:61:28:cf:29:fe:f9:bf:b7:c7:59:dd:d5:5d:
9c:5c:98:7c:e4:28:d8:7e:bb:1f:c8:8e:ad:87:d4:
b7:9c:10:0e:13:66:ab:35:8b:69:2e:a1:3d:4c:ad:
4c:29:75:c6:de:f7:e5:2d:f8:26:9f:d5:f0:b2:0f:
5a:e0:9c:e8:b2:7a:02:8e:db:2a:70:8b:6f:ad:f5:
47:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:81:B8:97:C8:93:08:A0:C2:00:A8:89:2F:B0:C3:74:23:2D:76:24
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EoG4l8iTCKDCAKiJL7DDdCMtdiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.195.0/24
31.13.197.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
37.60.138.0/23
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.176.0/24
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
92.249.49.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/24
94.156.98.0/24
94.156.100.0/24
94.156.106.0/24
94.156.129.0/24
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.185.0/24
94.156.188.0/24
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.232.0/22
94.156.248.0/23
94.156.251.0-94.156.252.255
212.73.128.0-212.73.134.255
212.73.136.0/24
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
8f:6d:7b:0b:1f:f7:91:54:d6:9f:00:bf:e8:2e:b5:2e:17:32:
6a:68:23:49:48:42:6d:61:76:a4:53:b8:58:52:1b:9d:5a:75:
12:de:50:84:78:93:2d:d1:b1:ed:8b:13:7d:54:31:08:b9:cc:
f1:23:da:1b:ee:e6:fb:5b:60:0f:8e:64:d9:d2:de:ed:0a:7b:
07:7e:d4:1a:9f:e3:d3:a4:8e:e8:eb:df:d0:42:1c:92:09:21:
f1:65:a1:73:58:51:8f:ce:ca:c8:33:9a:8d:43:91:fa:fb:e9:
40:fa:aa:4f:b5:91:97:ce:9e:0e:be:c1:07:3f:38:36:9a:ef:
bb:3d:8d:7f:1b:b0:58:b5:53:08:0d:bc:44:51:af:9a:8c:9d:
6d:5c:ba:23:37:b8:e2:5d:38:02:ef:99:ec:83:49:1b:d0:b5:
e3:9d:62:7a:c9:0d:df:6e:e0:89:2a:c5:9e:97:c5:1c:9e:17:
e0:94:af:bf:84:66:ae:c0:a2:82:58:71:c7:87:f5:f1:47:6a:
af:cc:fc:96:f8:fb:8e:0b:fe:d0:95:63:2e:3d:12:8e:f6:5e:
43:f0:b2:b3:47:59:14:0d:e6:44:8f:79:fa:34:8e:8f:92:81:
96:63:61:5d:db:54:0f:5b:1a:86:d2:cc:ed:6e:e4:84:dd:79:
6c:e3:4c:a8
-----BEGIN CERTIFICATE-----
MIIHQjCCBiqgAwIBAgISAYe1eQv8aJc15c2bgCaydkD2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwNDI0MjI1MzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjgxYjg5N2M4OTMwOGEwYzIwMGE4ODkyZmIwYzM3NDIzMmQ3NjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12+fYVY5+Ufw+D92+Td7UOKY7fmJ
neZ7v+OEyxuxIL1O39Qv/y6PCOb+YWFNMtCXUI/3ULRh1dYBvEQKsgNIc+ToFuoA
IDcprLOTj1Yb7/2uFiFRAOkW5iPfhQ2QAXAxZjqIMJ8HlmXlMigmjaaMMDXJV3q5
GzTi+/hzIy47YDbx8S8Z75DsiS7Vc7GSS2PlCZEmrMPufTczlrqI60G8Hyo9s0Zb
Goz8BR8TAhfWu5/ewZywCmEozyn++b+3x1nd1V2cXJh85CjYfrsfyI6th9S3nBAO
E2arNYtpLqE9TK1MKXXG3vflLfgmn9Xwsg9a4JzosnoCjtsqcItvrfVHwwIDAQAB
o4IETjCCBEowHQYDVR0OBBYEFBKBuJfIkwigwgCoiS+ww3QjLXYkMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvRW9HNGw4aVRDS0RDQUtpSkw3RERkQ010ZGlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICYgYIKwYBBQUHAQcBAf8EggJRMIICTTCCAjoEAgABMIIC
MgMEAB8NwwMEAB8NxQMEAx8N2AMEAR8N5gMEAh8N7AMEAB8N8QMEAB8N9QMEASU8
ijAMAwQBV3gGAwQAV3gIAwQAV3gNAwUAV3gkZAMEAFd4JQMEAFd4JwMEAFd4KwME
AFd4PQMEAFd4aAMEAFd4bQMEAVd4gAMEAld4hAMEAFd4sAMEAFd4wzAMAwQAV3jH
AwQBV3jIAwQBV3jOAwQAV3jZAwQAV3jfMAwDBABXeP0DBABXeQIDBAFXeQYDBABX
eSoDBABXeTQDBABXeUADBABXeU8DBAFXeVIDBAFXeVowDAMEAFd5bwMEAVd5cAME
AFd5dgMEAVd5lgMEAFd5oTALAwMCW1wDBABbXAIwDAMEAFtcQQMEAFtcQgMEAVtc
RAMEAFtcaQMEAFtcbQMEAFtcizAMAwQAW1zFAwQDW1zAAwQAW1zbAwQAW1zmAwQA
XPkxAwQAXXsIAwQAXXsMAwQAXXsSAwQBXXscMAwDBAVdeyADBAFdeyQDBABde0AD
BABenAwDBABenA8DBABenCoDBABenCwDBABenE0DBABenF4DBABenGIDBABenGQD
BABenGoDBABenIEDBABenJkDBAFenJ4DBAFenKwDBABenLkDBABenLwDBABenL4D
BANenNgDBABenOMDBAJenOgDBAFenPgwDAMEAF6c+wMEAF6c/DAMAwQH1EmAAwQA
1EmGAwQA1EmIMAwDBAHUSYoDBADUSZQDBADUSZsDBADUSZ0wDQQCAAIwBwMFACoA
FygwDQYJKoZIhvcNAQELBQADggEBAI9tewsf95FU1p8Av+gutS4XMmpoI0lIQm1h
dqRTuFhSG51adRLeUIR4ky3Rse2LE31UMQi5zPEj2hvu5vtbYA+OZNnS3u0Kewd+
1Bqf49Okjujr39BCHJIJIfFloXNYUY/Oysgzmo1Dkfr76UD6qk+1kZfOng6+wQc/
ODaa77s9jX8bsFi1UwgNvERRr5qMnW1cuiM3uOJdOALvmeyDSRvQteOdYnrJDd9u
4IkqxZ6XxRyeF+CUr7+EZq7AooJYcceH9fFHaq/M/Jb4+44L/tCVYy49Eo72XkPw
srNHWRQN5kSPefo0jo+SgZZjYV3bVA9bGobSzO1u5ITdeWzjTKg=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:34 2023 by rpki-client on console-ams.rpki-client.org