Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/eQKe7-5L461Ox4ho00bHDP_vvCo.roa
File: eQKe7-5L461Ox4ho00bHDP_vvCo.roa (raw, json)
Hash identifier: ps/cblylYDrQKdayiekfhWcuIXBMGJ0PIMzB9mrviKE=
Subject key identifier: 79:02:9E:EF:EE:4B:E3:AD:4E:C7:88:68:D3:46:C7:0C:FF:EF:BC:2A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0187B43E1C8BA00A96CFEBF6719BB2875C12
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/eQKe7-5L461Ox4ho00bHDP_vvCo.roa
Signing time: Mon 24 Apr 2023 17:09:42 +0000
ROA not before: Mon 24 Apr 2023 17:09:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34224
IP address blocks: 212.73.131.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.132.0/24 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.136.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
87.121.42.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
92.249.49.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.253.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.0.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.121.2.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.197.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.37.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.233.0/24 maxlen: 24
94.156.227.0/24 maxlen: 24
94.156.232.0/22 maxlen: 22
94.156.232.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
94.156.248.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
93.123.8.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.37.0/24 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.32.0/22 maxlen: 24
94.156.8.0/24 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
31.13.217.0/24 maxlen: 24
87.121.161.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.241.0/24 maxlen: 24
2a00:1728:35::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:1b::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:3::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b4:3e:1c:8b:a0:0a:96:cf:eb:f6:71:9b:b2:87:5c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 24 17:09:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79029eefee4be3ad4ec78868d346c70cffefbc2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b5:57:d1:4c:e1:bb:70:45:7f:da:45:37:4b:
ce:94:15:06:55:b2:1b:d6:f9:f9:b5:85:0b:42:b0:
02:b3:8b:72:15:26:40:1e:70:72:ac:08:99:02:2a:
af:fd:c2:9f:34:ad:e1:29:63:ba:e1:28:46:56:60:
b8:97:67:53:6c:95:1b:64:9d:a6:68:eb:c1:bd:b0:
a6:8d:00:b2:90:94:5a:de:e6:26:f9:e6:b5:a2:ec:
5c:60:b5:8d:fb:3a:72:d8:f7:02:62:d7:74:ad:fe:
a0:7c:cc:4a:17:c1:cb:6a:a5:da:a9:7e:06:28:8f:
8d:e0:07:bc:ce:38:50:fd:06:f6:b7:7a:93:b1:1f:
bf:eb:64:9a:f3:ee:7b:63:aa:24:90:aa:aa:b9:e7:
02:a5:df:c6:57:25:a7:72:b2:63:97:fa:a6:ff:a8:
6e:26:48:89:a6:6b:67:e3:4f:f6:bf:28:14:26:bb:
0d:64:04:41:09:d1:a5:99:9a:e6:c7:60:ca:57:a3:
eb:ac:ba:fe:5c:7d:c6:bf:d1:e1:ad:1a:68:00:66:
54:27:bd:aa:e4:5a:65:76:59:58:6b:35:f2:10:27:
23:81:b6:38:3e:1e:e5:b7:87:1f:a8:0a:d1:b2:ac:
6b:41:55:da:a6:ce:d8:d8:0b:a9:07:22:6a:84:ed:
e0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:02:9E:EF:EE:4B:E3:AD:4E:C7:88:68:D3:46:C7:0C:FF:EF:BC:2A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/eQKe7-5L461Ox4ho00bHDP_vvCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.195.0/24
31.13.197.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
37.60.138.0/23
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.176.0/24
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
92.249.49.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
94.156.8.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/24
94.156.98.0/24
94.156.100.0/24
94.156.106.0/24
94.156.129.0/24
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.185.0/24
94.156.188.0/24
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.232.0/22
94.156.248.0/23
94.156.251.0-94.156.252.255
212.73.128.0-212.73.134.255
212.73.136.0/24
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
34:25:13:9b:a8:06:25:79:eb:db:fb:b7:42:6f:ad:f0:58:ca:
cf:1b:b8:d9:4b:b3:7f:ed:47:ca:59:ab:27:31:ef:04:c3:db:
31:ea:8c:9b:80:75:e6:a8:9c:45:37:64:64:32:49:c1:3a:5d:
fd:0c:e6:00:79:8c:24:18:81:88:96:19:7f:25:ca:8e:2b:f5:
c9:68:d2:9c:6e:e7:0a:e3:26:b4:f6:aa:50:8b:14:1f:59:25:
58:c2:36:19:8a:75:e5:de:f2:e7:a5:08:3b:e5:e2:d3:2e:47:
28:2c:e5:19:70:b9:ee:f6:02:ba:ff:23:90:e2:37:32:6b:67:
11:4b:30:e7:e9:a5:a9:a0:55:1e:63:3a:b8:fb:36:72:75:08:
87:ef:f3:cf:d6:2b:48:64:ad:8f:1b:99:71:39:77:a8:7a:36:
52:c3:6e:61:12:f7:d2:5f:43:ea:68:0e:0c:e2:fd:f2:a6:86:
40:46:43:43:65:14:9b:b7:05:ca:43:de:d7:08:a5:c8:c4:e7:
f8:4f:2d:2a:d4:74:6d:db:21:0e:44:00:5c:cb:5c:b7:bd:47:
23:de:37:ed:91:21:5c:38:a5:81:1d:49:6d:21:9b:27:a7:fa:
0b:80:d5:d1:1c:65:27:02:82:9d:36:bd:4f:1c:d3:83:4c:ec:
40:99:19:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:40 2023 by rpki-client on console-ams.rpki-client.org