Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RWSqz0Nys9UBx_L6IwBA29t1Kl8.roa
File: RWSqz0Nys9UBx_L6IwBA29t1Kl8.roa (raw, json)
Hash identifier: XyPYx+iRC7GdGcVrysjVAFhLaLqlbZX/aUormtwi3dA=
Subject key identifier: 45:64:AA:CF:43:72:B3:D5:01:C7:F2:FA:23:00:40:DB:DB:75:2A:5F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01881AF9FC93C9CE78E39FF7327CB173119E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RWSqz0Nys9UBx_L6IwBA29t1Kl8.roa
Signing time: Sun 14 May 2023 15:56:10 +0000
ROA not before: Sun 14 May 2023 15:56:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34224
IP address blocks: 212.73.131.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.132.0/24 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.136.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
87.121.42.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
92.249.49.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.253.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.0.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.121.2.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.197.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.37.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.233.0/24 maxlen: 24
94.156.227.0/24 maxlen: 24
94.156.232.0/22 maxlen: 22
94.156.232.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
94.156.248.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
93.123.8.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.37.0/24 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.32.0/22 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.130.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
31.13.217.0/24 maxlen: 24
87.121.161.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.241.0/24 maxlen: 24
2a00:1728:35::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:1b::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:3::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1a:f9:fc:93:c9:ce:78:e3:9f:f7:32:7c:b1:73:11:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 14 15:56:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4564aacf4372b3d501c7f2fa230040dbdb752a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ad:1b:96:21:b4:11:91:55:bf:09:09:5b:78:
8f:08:95:14:f9:c7:fb:66:9c:84:2c:f6:c6:3d:4f:
82:08:5b:f3:da:ea:39:25:0a:a1:88:8f:f2:64:e7:
33:6b:20:c1:c7:23:e8:c5:2e:6f:af:a7:5b:9b:b6:
8e:a0:4d:93:eb:46:a1:4c:57:87:89:cd:58:c3:e5:
f1:9b:84:57:ec:25:47:5d:63:ae:ed:cf:fd:e5:da:
2a:2a:97:82:65:da:ff:1c:14:ab:ce:73:e5:1d:b9:
90:5f:10:e4:92:94:97:2e:cd:86:58:4c:2d:ab:97:
f2:57:c4:0a:99:66:ca:df:cb:e2:05:3c:9c:72:56:
63:7b:0c:44:c8:3a:e6:8f:b5:94:b6:3d:f6:6d:65:
8d:11:0a:86:28:63:d5:18:e1:37:4a:9d:b1:db:ce:
13:05:81:69:25:9d:f5:0c:b5:53:3d:31:a5:44:61:
50:41:3c:c2:e3:0c:d5:48:61:a3:82:bf:30:aa:09:
0e:a1:a0:40:7b:09:ac:3b:9b:c3:d7:6b:76:b4:db:
3f:1d:3a:66:6a:09:37:5c:52:d0:ca:ba:32:71:4c:
b7:5a:fc:2e:ec:d3:1f:53:10:f9:15:89:1b:37:d8:
b4:ef:e6:96:d6:e2:59:08:bc:89:27:5c:82:ca:cf:
99:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:64:AA:CF:43:72:B3:D5:01:C7:F2:FA:23:00:40:DB:DB:75:2A:5F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RWSqz0Nys9UBx_L6IwBA29t1Kl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.195.0/24
31.13.197.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
37.60.138.0/23
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.176.0/24
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
92.249.49.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/24
94.156.98.0/24
94.156.100.0/24
94.156.106.0/24
94.156.129.0-94.156.130.255
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.185.0/24
94.156.188.0/24
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.232.0/22
94.156.248.0/23
94.156.251.0-94.156.252.255
212.73.128.0-212.73.134.255
212.73.136.0/24
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
15:81:00:60:68:86:8f:97:8d:01:d3:f3:2d:04:9a:4a:6e:50:
a4:3a:20:6b:d9:29:54:a2:90:9d:91:0e:78:51:77:d6:42:d9:
57:48:44:b0:f2:eb:a4:5b:00:33:1c:be:af:0a:9c:7b:ba:fa:
d8:9a:ec:9c:aa:b3:c3:00:b5:78:a5:c1:58:4c:48:e7:dc:a1:
cf:65:0b:16:39:f6:f9:0c:68:56:7a:db:05:32:34:9c:a6:ee:
ed:eb:8e:c8:7f:15:8e:16:c1:ed:75:f6:59:5f:b2:8a:17:6f:
95:07:7c:d1:af:49:1d:b1:5e:ad:4f:77:2e:2e:5d:34:21:45:
1a:14:ee:f8:88:98:d9:ac:4b:a5:af:b8:3c:85:c8:05:16:34:
6c:36:b6:c4:be:d6:38:42:f0:92:9c:aa:1f:95:2b:d3:1e:49:
21:88:46:a8:d0:c3:19:43:dd:a9:49:4c:15:af:27:7b:72:89:
91:43:24:09:01:72:33:09:1a:2c:51:1f:b3:69:d3:13:f3:52:
c8:a4:76:73:5c:f6:76:6e:45:70:4a:d4:59:39:da:00:04:0d:
4a:b3:13:9d:0b:c0:75:21:51:c3:e0:49:c3:7e:ce:ee:98:82:
20:16:17:f5:c9:18:f8:31:c7:84:82:9e:ea:c6:c9:f7:d6:26:
6a:15:5e:be
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:36 2023 by rpki-client on console-ams.rpki-client.org