Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dz3ngeotlmjwtWtRfcbR7iPnqLU.roa
File: dz3ngeotlmjwtWtRfcbR7iPnqLU.roa (raw, json)
Hash identifier: 8MInovpjH2kMLtnXonmeiwgKfn8BkHsQje6pjcZUdog=
Subject key identifier: 77:3D:E7:81:EA:2D:96:68:F0:B5:6B:51:7D:C6:D1:EE:23:E7:A8:B5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1EF9FD29
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dz3ngeotlmjwtWtRfcbR7iPnqLU.roa
Signing time: Fri 10 Jun 2022 09:45:03 +0000
ROA not before: Fri 10 Jun 2022 09:45:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34224
IP address blocks: 212.73.131.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.132.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.136.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
87.121.42.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
92.249.49.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.54.0/24 maxlen: 24
87.121.59.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.253.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.2.0/24 maxlen: 24
87.121.0.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.197.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.37.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.227.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
94.156.248.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
94.156.186.0/24 maxlen: 24
93.123.8.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.32.0/22 maxlen: 24
93.123.37.0/24 maxlen: 24
94.156.10.0/24 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.102.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
31.13.217.0/24 maxlen: 24
87.121.161.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.241.0/24 maxlen: 24
2a00:1728:35::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:1b::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:3::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 519699753 (0x1ef9fd29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 10 09:45:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=773de781ea2d9668f0b56b517dc6d1ee23e7a8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:56:2a:69:cf:d7:cc:75:1d:73:91:65:0e:d9:
e1:4f:c7:43:04:a0:1c:d5:84:5a:6c:cc:99:5c:87:
08:cf:9b:02:95:8f:3e:e8:19:04:f4:73:3f:5c:e2:
ba:75:77:aa:43:10:3e:cb:aa:70:97:b7:30:3d:04:
95:92:0c:41:bc:2c:84:fe:0c:f6:45:24:41:4f:87:
56:3d:8c:8f:72:36:39:5f:f5:3f:fc:71:7a:8b:0d:
84:8f:47:d3:66:45:8b:66:7e:10:4b:88:9f:69:d9:
b6:2a:9f:4e:bb:c1:e3:3a:0a:83:15:46:92:31:b9:
f2:d7:60:cc:58:22:55:71:c9:bc:d0:02:d0:10:77:
e0:f1:0b:9a:2a:6a:8e:40:d6:63:15:e3:af:60:24:
93:60:41:14:8a:1a:87:86:ce:31:0b:e8:b7:61:b9:
1e:9c:27:4c:29:77:3b:dd:41:8f:40:ff:a9:a7:d1:
84:67:72:39:fb:51:0a:24:c0:e5:94:5b:e8:5d:a2:
37:3d:65:11:08:b8:91:da:22:e9:c4:98:39:73:b5:
3b:c4:b4:e0:45:63:61:ac:f6:01:61:13:dc:45:d6:
40:73:5f:6f:b9:83:22:7d:00:1c:58:78:da:26:a7:
55:4a:a9:76:d3:50:d5:59:9d:ca:cc:18:aa:f0:ac:
3e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3D:E7:81:EA:2D:96:68:F0:B5:6B:51:7D:C6:D1:EE:23:E7:A8:B5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dz3ngeotlmjwtWtRfcbR7iPnqLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.195.0/24
31.13.197.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
37.60.138.0/23
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.176.0/24
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.54.0/24
87.121.59.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
92.249.49.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
94.156.10.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/24
94.156.98.0/24
94.156.100.0/24
94.156.102.0/24
94.156.106.0/24
94.156.129.0/24
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.185.0-94.156.186.255
94.156.188.0/24
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.248.0/23
94.156.251.0-94.156.252.255
212.73.128.0-212.73.134.255
212.73.136.0/24
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
37:64:af:3d:61:e2:b2:65:49:d7:93:31:f1:c2:5a:fe:b6:8f:
2a:72:51:3f:31:40:17:17:01:9b:48:cb:13:79:6d:da:55:e8:
05:1f:b8:05:88:f3:52:78:dd:44:d9:34:92:01:68:aa:5b:bd:
04:fb:14:c5:0e:63:a3:98:04:80:a9:57:1d:d3:d3:15:9d:c7:
0c:43:2b:01:2f:ab:4b:a2:91:41:1c:41:9a:46:c4:e8:c2:5b:
5a:d8:ba:97:fe:31:cf:92:64:7f:c5:35:96:fa:d3:00:fd:9d:
e5:7e:d1:97:a2:65:74:08:95:8f:1e:95:9e:51:67:8e:de:62:
95:4d:6a:6b:17:67:cd:71:c5:c4:a5:44:89:bc:45:83:1c:14:
f5:2b:92:e6:a1:7e:74:c4:34:9e:53:84:bd:62:f2:9a:d9:08:
bf:43:aa:cf:89:85:da:73:e4:fb:b6:29:2b:03:fe:1d:97:cd:
5b:ed:c0:0c:57:ea:f1:97:ad:c8:34:86:91:e0:34:f2:da:8f:
ad:31:94:c2:a0:56:6a:20:37:50:9a:1f:30:1a:55:49:47:bf:
dc:30:93:97:68:8d:25:ad:80:17:34:f8:12:ab:82:68:f2:87:
18:ff:35:bb:6c:44:ee:24:78:11:58:5a:1c:ea:e4:ff:99:ad:
ba:bb:84:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:39 2023 by rpki-client on console-ams.rpki-client.org