Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/JVrEF66ICHMLqmqZHrG7ipBZniM.roa
File: JVrEF66ICHMLqmqZHrG7ipBZniM.roa (raw, json)
Hash identifier: HDwT1g5LYEEYBPi44fJS26APiE1XjDfzZ8UGi+VguPg=
Subject key identifier: 25:5A:C4:17:AE:88:08:73:0B:AA:6A:99:1E:B1:BB:8A:90:59:9E:23
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1F328E5D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/JVrEF66ICHMLqmqZHrG7ipBZniM.roa
Signing time: Thu 23 Jun 2022 06:32:32 +0000
ROA not before: Thu 23 Jun 2022 06:32:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 91.92.115.0/24 maxlen: 24
194.180.50.0/24 maxlen: 24
185.218.139.0/24 maxlen: 24
194.169.175.0/24 maxlen: 24
37.139.131.0/24 maxlen: 24
37.139.130.0/24 maxlen: 24
94.154.172.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
94.154.174.0/24 maxlen: 24
109.206.239.0/24 maxlen: 24
212.87.205.0/24 maxlen: 24
178.215.226.0/24 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.225.0/24 maxlen: 24
178.215.227.0/24 maxlen: 24
178.215.239.0/24 maxlen: 24
178.215.237.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
193.222.97.0/24 maxlen: 24
193.47.63.0/24 maxlen: 24
193.47.62.0/24 maxlen: 24
193.37.42.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
185.216.69.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
79.110.48.0/24 maxlen: 24
87.120.84.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
79.110.63.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
83.219.98.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 523406941 (0x1f328e5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 23 06:32:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=255ac417ae8808730baa6a991eb1bb8a90599e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6d:6e:0e:69:45:d5:ed:d6:5d:bc:a2:db:b5:
3b:1c:5d:ff:5a:0f:b1:47:5c:80:46:97:9c:c6:d2:
80:da:e4:52:f5:f8:f3:90:7f:2c:60:76:ab:d4:6a:
7a:5a:bc:91:f3:7e:5e:99:ad:ec:51:77:03:9d:98:
8e:64:9a:68:3d:96:09:71:f5:50:14:93:99:76:e6:
62:4c:83:82:7c:cf:ae:bb:15:a3:a1:ec:80:98:cc:
cb:d2:79:f0:e5:ca:2b:43:72:3b:ef:28:03:42:3c:
1c:4c:d2:4d:ce:43:ee:9f:30:8d:64:11:bb:9b:e0:
11:bd:b2:b7:b9:37:49:ad:e0:db:05:0e:25:12:18:
47:1f:de:9d:e9:53:c4:6d:4b:43:08:26:e4:b2:38:
67:fb:5e:07:0a:dd:ba:22:4f:78:70:b4:b6:35:d5:
fe:72:2e:15:21:8f:69:5f:a1:84:02:a8:f4:44:38:
fc:34:ba:48:59:23:4d:5e:4b:5c:8d:4d:66:78:4c:
14:2a:dc:35:23:b9:58:ea:e6:f2:7d:6a:94:29:0b:
aa:1d:a3:60:ad:5a:7b:cc:bb:fd:24:ed:69:60:61:
3f:79:c7:52:22:23:8c:36:b3:85:1e:d5:0b:82:93:
6d:5a:a2:57:37:e3:b3:b9:98:22:56:21:ce:5e:0e:
ff:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5A:C4:17:AE:88:08:73:0B:AA:6A:99:1E:B1:BB:8A:90:59:9E:23
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/JVrEF66ICHMLqmqZHrG7ipBZniM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.130.0/23
79.110.48.0/24
79.110.50.0/24
79.110.63.0/24
83.219.97.0-83.219.98.255
87.120.84.0/24
87.120.87.0/24
91.92.115.0/24
94.154.172.0/24
94.154.174.0/24
109.206.239.0/24
178.215.224.0/22
178.215.237.0/24
178.215.239.0/24
185.216.69.0/24
185.218.139.0/24
185.252.176.0/24
193.35.18.0/24
193.37.42.0/24
193.37.47.0/24
193.47.62.0/23
193.222.97.0/24
194.169.175.0/24
194.180.50.0/24
212.87.205.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b0:1d:5c:d0:9d:3e:9d:ca:31:0f:2a:f2:4d:ad:1e:ea:a0:
79:0c:44:06:2e:6d:06:f0:d0:0a:30:df:3f:af:76:3d:3d:66:
07:01:e3:50:d3:ea:98:b2:75:ea:99:cb:76:df:b9:81:64:09:
ea:7d:9f:a6:7c:c1:91:c0:d3:d1:12:a3:aa:f8:3a:12:f3:04:
94:68:12:79:93:3a:58:25:72:4b:43:cb:95:4e:55:9c:2e:fd:
b3:b0:62:d4:54:db:0c:b0:49:c1:50:39:ae:e9:e4:c6:b6:40:
f8:a0:54:33:a9:b8:c1:64:ec:4e:f4:37:cf:ee:87:ae:ae:5f:
28:94:3f:91:fb:ef:6c:57:3a:d7:13:49:ff:56:91:65:c0:ad:
90:cb:3a:0c:e9:04:8f:cb:60:fb:90:5c:35:6c:4d:d2:6b:f8:
1c:51:66:af:8d:f8:75:40:31:a2:b0:18:cb:b0:4b:f1:b3:48:
bf:d2:70:e6:64:fb:df:cb:dd:25:66:e0:c7:33:61:cf:1b:eb:
aa:7b:28:73:94:c0:99:00:51:d2:ff:9e:2a:99:71:e8:05:87:
21:da:b2:51:e6:f9:d3:b1:18:21:b4:a0:f2:47:b1:7c:3a:71:
26:c9:42:82:4f:2e:bb:11:2e:31:1a:4d:48:36:a5:2d:d9:b6:
05:65:20:36
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIEHzKOXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDYy
MzA2MzIzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjU1YWM0MTdhZTg4
MDg3MzBiYWE2YTk5MWViMWJiOGE5MDU5OWUyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN5tbg5pRdXt1l28otu1Oxxd/1oPsUdcgEaXnMbSgNrkUvX4
85B/LGB2q9Rqelq8kfN+Xpmt7FF3A52YjmSaaD2WCXH1UBSTmXbmYkyDgnzPrrsV
o6HsgJjMy9J58OXKK0NyO+8oA0I8HEzSTc5D7p8wjWQRu5vgEb2yt7k3Sa3g2wUO
JRIYRx/enelTxG1LQwgm5LI4Z/teBwrduiJPeHC0tjXV/nIuFSGPaV+hhAKo9EQ4
/DS6SFkjTV5LXI1NZnhMFCrcNSO5WOrm8n1qlCkLqh2jYK1ae8y7/STtaWBhP3nH
UiIjjDazhR7VC4KTbVqiVzfjs7mYIlYhzl4O/08CAwEAAaOCAqYwggKiMB0GA1Ud
DgQWBBQlWsQXrogIcwuqapkesbuKkFmeIzAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L0pWckVGNjZJQ0hNTHFtcVpIckc3aXBCWm5pTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
uwYIKwYBBQUHAQcBAf8EgaswgagwgaUEAgABMIGeAwQBJYuCAwQAT24wAwQAT24y
AwQAT24/MAwDBABT22EDBABT22IDBABXeFQDBABXeFcDBABbXHMDBABemqwDBABe
mq4DBABtzu8DBAKy1+ADBACy1+0DBACy1+8DBAC52EUDBAC52osDBAC5/LADBADB
IxIDBADBJSoDBADBJS8DBAHBLz4DBADB3mEDBADCqa8DBADCtDIDBADUV80wDQYJ
KoZIhvcNAQELBQADggEBAEWwHVzQnT6dyjEPKvJNrR7qoHkMRAYubQbw0Aow3z+v
dj09ZgcB41DT6piydeqZy3bfuYFkCep9n6Z8wZHA09ESo6r4OhLzBJRoEnmTOlgl
cktDy5VOVZwu/bOwYtRU2wywScFQOa7p5Ma2QPigVDOpuMFk7E70N8/uh66uXyiU
P5H772xXOtcTSf9WkWXArZDLOgzpBI/LYPuQXDVsTdJr+BxRZq+N+HVAMaKwGMuw
S/GzSL/ScOZk+9/L3SVm4MczYc8b66p7KHOUwJkAUdL/niqZcegFhyHaslHm+dOx
GCG0oPJHsXw6cSbJQoJPLrsRLjEaTUg2pS3ZtgVlIDY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-ams.rpki-client.org