Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/WMHiH7f3FRUnqoPNwI1TsPFCKfE.roa
File: WMHiH7f3FRUnqoPNwI1TsPFCKfE.roa (raw, json)
Hash identifier: nxYI0iaVKw8s+xhsN9z2cSuSnAH9d/fI7GrpeefzmHE=
Subject key identifier: 58:C1:E2:1F:B7:F7:15:15:27:AA:83:CD:C0:8D:53:B0:F1:42:29:F1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1F169E4C
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/WMHiH7f3FRUnqoPNwI1TsPFCKfE.roa
Signing time: Fri 17 Jun 2022 14:25:44 +0000
ROA not before: Fri 17 Jun 2022 14:25:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 91.92.115.0/24 maxlen: 24
194.180.50.0/24 maxlen: 24
185.218.139.0/24 maxlen: 24
194.169.175.0/24 maxlen: 24
37.139.131.0/24 maxlen: 24
37.139.130.0/24 maxlen: 24
94.154.172.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
109.206.239.0/24 maxlen: 24
212.87.205.0/24 maxlen: 24
178.215.226.0/24 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.225.0/24 maxlen: 24
178.215.227.0/24 maxlen: 24
178.215.239.0/24 maxlen: 24
178.215.237.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
193.47.63.0/24 maxlen: 24
193.47.62.0/24 maxlen: 24
194.48.248.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
185.216.68.0/24 maxlen: 24
185.216.69.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
79.110.48.0/24 maxlen: 24
79.110.49.0/24 maxlen: 24
87.120.84.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
79.110.63.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
83.219.98.0/24 maxlen: 24
83.219.96.0/24 maxlen: 24
83.219.99.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 521576012 (0x1f169e4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 17 14:25:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58c1e21fb7f7151527aa83cdc08d53b0f14229f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a7:c8:f4:60:04:3c:89:21:4f:9c:4b:10:da:
53:bf:6c:6b:e4:01:b1:ff:46:be:6e:41:02:23:ad:
00:14:7f:5b:9c:58:04:db:58:c5:9b:98:b1:0a:d8:
66:da:23:c1:e8:e8:c0:af:7d:c6:eb:27:ec:75:e9:
22:63:65:c8:7f:80:7a:06:f6:fa:91:ba:7a:50:4c:
0a:c7:4d:9a:39:66:46:db:fa:bf:2c:2e:cf:a0:fa:
1d:98:6b:18:d6:2e:dc:06:d8:d8:9a:75:ac:a0:6b:
0a:5d:b1:31:b8:4e:24:e7:43:22:d9:5f:48:f7:98:
dd:97:5a:39:82:ce:a4:9e:f3:25:98:20:ba:b8:8e:
fb:d1:a7:8c:6a:c3:35:03:95:bb:f6:5b:ad:4f:65:
28:8a:27:73:9e:cd:86:7d:1e:89:e9:19:44:e2:73:
b8:96:f4:e9:91:04:a6:2d:22:18:9e:f7:f1:4a:95:
48:22:8a:4b:88:c8:89:a0:e9:78:a3:3c:d3:12:54:
46:19:d1:34:cf:c0:58:57:50:0a:ca:81:2e:1c:61:
1b:5b:b5:51:1f:70:91:06:62:fa:1e:f3:c8:c7:b6:
91:a6:3d:91:50:54:6b:73:b9:a1:b5:e5:f6:6e:13:
3c:84:a3:ec:48:c2:02:8e:b8:8e:38:4c:14:c9:6d:
89:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C1:E2:1F:B7:F7:15:15:27:AA:83:CD:C0:8D:53:B0:F1:42:29:F1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/WMHiH7f3FRUnqoPNwI1TsPFCKfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.130.0/23
79.110.48.0-79.110.50.255
79.110.63.0/24
80.76.51.0/24
83.219.96.0/22
87.120.84.0/24
87.120.87.0/24
91.92.115.0/24
94.154.172.0/24
109.206.239.0/24
178.215.224.0/22
178.215.237.0/24
178.215.239.0/24
185.216.68.0/23
185.218.139.0/24
185.252.176.0/24
193.35.18.0/24
193.37.47.0/24
193.47.62.0/23
194.48.248.0/24
194.48.251.0/24
194.169.175.0/24
194.180.50.0/24
212.87.205.0/24
Signature Algorithm: sha256WithRSAEncryption
52:6a:d0:68:16:69:74:ac:89:62:d3:d1:89:7d:0b:7a:8c:15:
09:c8:f6:70:74:3c:98:00:80:9a:8d:9f:30:cc:cd:d8:73:65:
cb:25:69:da:13:f2:28:1c:73:96:0f:f6:e0:3c:6d:9b:ed:74:
b6:a7:69:f1:28:1c:e4:d5:55:db:41:32:05:5f:29:04:3b:35:
7e:41:79:8a:73:da:e7:5a:ab:ca:ac:cb:aa:33:1c:de:6d:dd:
ad:a5:a7:65:6e:a6:9c:4e:a1:0f:ad:f9:6e:f0:1a:e5:d1:70:
81:ca:47:46:37:de:41:cb:34:d8:a6:25:04:ea:5e:07:cd:4e:
5a:a0:74:52:b7:7a:54:9a:fb:c1:ab:86:28:89:8b:29:33:85:
db:cc:52:e2:da:ec:34:97:f7:02:1f:05:99:ff:1f:72:90:7f:
71:b7:1a:93:8d:fc:58:d8:a6:00:2c:48:d1:9c:5d:18:f0:f9:
8c:94:5f:1c:52:09:d7:7e:90:cd:50:d8:c4:dc:9e:94:03:c5:
97:f4:73:6d:e7:f8:ff:85:fa:85:8f:17:d5:22:05:ba:70:56:
99:f2:3d:18:1b:a3:53:86:6c:71:8d:7a:c2:44:1e:b9:be:20:
ed:5e:28:e5:3b:28:26:4c:1d:4d:93:f6:bc:60:3f:25:e9:16:
97:4d:96:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:38 2023 by rpki-client on console-ams.rpki-client.org